Critical Patches Issued for Microsoft Products, January 09, 2024
Multiple vulnerabilities have been discovered in Microsoft products, the most severe of which could allow for remote code execution in the context of the logged...
USN-6038-2: Go vulnerabilities
USN-6038-1 fixed several vulnerabilities in Go 1.18. This update provides the corresponding updates for Go 1.13 and Go 1.16. CVE-2022-29526 and CVE-2022-30630 only affected Go...
New Decryption Key Available for Babuk Tortilla Ransomware Victims
Cisco Talos announced that a decryption key for the Babuk Tortilla ransomware variant is available for victims to download Read More
PIN-Stealing Android Malware
This is an old piece of malware—the Chameleon Android banking Trojan—that now disables biometric authentication in order to steal the PIN: The second notable new...
Midwives clinic takes nine months to deliver news of data breach
Clients of a pregnancy care clinic in Ontario have had their personal information exposed to hackers. I'm sure I don't need to tell anyone who...
Stories from the SOC: Something smells phishy
Executive summary In the current cyber landscape, adversaries commonly employ phishing as the leading technique to compromise enterprise security. The susceptibility of human behavior makes...
USN-6570-1: PostgreSQL vulnerabilities
Pedro Gallegos discovered that PostgreSQL incorrectly handled modifying certain SQL array values. A remote attacker could use this issue to obtain sensitive information, or possibly...
Nigerian Gets 10 Years For Laundering Scam Funds
A Nigerian national has been sentenced to a decade behind bars for his role in romance and BEC scam Read More
LoanDepot Confirms Ransomware Attack in SEC Filing
Mortgage lender LoanDepot has revealed a ransomware breach resulting in stolen and encrypted data Read More
New Year, New Tech at CES — The Latest Protection for the Latest Tech
New year, new tech. That’s what hits the floor at the CES show each January in Las Vegas. Whether it’s striking, strange, or just pretty...