-
Signed Microsoft Drivers Used in Attacks Against Businesses
PRIVACY PRIVACY In some cases, the threat actor’s intent was to ultimately provide SIM-swapping services Read More
-
Microsoft Patch Tuesday, December 2022 Edition
PRIVACY PRIVACY Microsoft has released its final monthly batch of security updates for 2022, fixing more than four dozen security holes in its various Windows operating systems and related software. The most pressing patches include a zero-day in a Windows feature that tries to flag malicious files from the Web, a critical bug in PowerShell,…
-
AgentTesla Remains Most Prolific Malware in November, Emotet and Qbot Grow
PRIVACY PRIVACY These are some of the key findings from the latest Check Point Research Most Wanted report Read More
-
Apple Fixes Actively Exploited iPhone Zero-Day Vulnerability
PRIVACY PRIVACY The vulnerability could allow remote code execution (RCE) on a victim’s device Read More
-
Lacework adds new capabilities to its CSPM solution
PRIVACY PRIVACY Lacework on Wednesday released new cloud security posture management (CSPM) capabilities, designed to help organizations create custom policies for AWS, Google Cloud, and Azure to secure their cloud infrastructure. The new CSPM solution offers three key enhancements. First, it allows organizations to customize policies and ensure configurations align with an organization’s specific needs.…
-
Wiz debuts PEACH tenant isolation framework for cloud applications
PRIVACY PRIVACY Cloud security vendor Wiz has announced PEACH, a tenant isolation framework for cloud applications designed to evaluate security posture and outline areas of improvement. The firm stated that the framework has been developed on the back of its cloud vulnerability research to tackle security challenges impacting tenant isolation. Security boundaries, incohesion, transparency impacting…
-
New Royal ransomware group evades detection with partial encryption
PRIVACY PRIVACY A new ransomware group dubbed Royal that formed earlier this year has significantly ramped up its operations over the past few months and developed its own custom ransomware program that allows attackers to perform flexible and fast file encryption. “The Royal ransomware group emerged in early 2022 and has gained momentum since the…
-
Hacking Boston’s CharlieCard
PRIVACY PRIVACY Interesting discussion of vulnerabilities and exploits against Boston’s CharlieCard. Read More
-
New Google Tool Helps Devs Root Out Open Source Bugs
PRIVACY PRIVACY Free OSV-Scanner searches transitive dependencies Read More
-
Loan Fee Fraud Surges by a Fifth as Christmas Approaches
PRIVACY PRIVACY FCA warns of pressure tactics as cost of living bites Read More