5 Scattered Spider Gang Members Indicted in Multi-Million Dollar Cybercrime Scheme

21/11/2024 0 Comments 0 tags

Five alleged members of the infamous Scattered Spider cybercrime crew have been indicted in the U.S. for targeting employees of companies across the country using social engineering techniques to harvest

Google’s AI-Powered OSS-Fuzz Tool Finds 26 Vulnerabilities in Open-Source Projects

21/11/2024 0 Comments 0 tags

Google has revealed that its AI-powered fuzzing tool, OSS-Fuzz, has been used to help identify 26 vulnerabilities in various open-source code repositories, including a medium-severity flaw in the OpenSSL cryptographic

NodeStealer Malware Targets Facebook Ad Accounts, Harvesting Credit Card Data

21/11/2024 0 Comments 0 tags

Threat hunters are warning about an updated version of the Python-based NodeStealer that’s now equipped to extract more information from victims’ Facebook Ads Manager accounts and harvest credit card data

Ghost Tap: Hackers Exploiting NFCGate to Steal Funds via Mobile Payments

20/11/2024 0 Comments 0 tags

Threat actors are increasingly banking on a new technique that leverages near-field communication (NFC) to cash out victim’s funds at scale. The technique, codenamed Ghost Tap by ThreatFabric, enables cybercriminals

Microsoft Launches Windows Resiliency Initiative to Boost Security and System Integrity

20/11/2024 0 Comments 0 tags

Microsoft has announced a new Windows Resiliency Initiative as a way to improve security and reliability, as well as ensure that system integrity is not compromised. The idea, the tech

NHIs Are the Future of Cybersecurity: Meet NHIDR

20/11/2024 0 Comments 0 tags

The frequency and sophistication of modern cyberattacks are surging, making it increasingly challenging for organizations to protect sensitive data and critical infrastructure. When attackers compromise a non-human identity (NHI), they

Decades-Old Security Vulnerabilities Found in Ubuntu’s Needrestart Package

20/11/2024 0 Comments 0 tags

Multiple decade-old security vulnerabilities have been disclosed in the needrestart package installed by default in Ubuntu Server (since version 21.04) that could allow a local attacker to gain root privileges

China-Backed Hackers Leverage SIGTRAN, GSM Protocols to Infiltrate Telecom Networks

20/11/2024 0 Comments 0 tags

A new China-linked cyber espionage group has been attributed as behind a series of targeted cyber attacks targeting telecommunications entities in South Asia and Africa since at least 2020 with

Oracle Warns of Agile PLM Vulnerability Currently Under Active Exploitation

20/11/2024 0 Comments 0 tags

Oracle is warning that a high-severity security flaw impacting the Agile Product Lifecycle Management (PLM) Framework has been exploited in the wild. The vulnerability, tracked as CVE-2024-21287 (CVSS score: 7.5),

Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities

20/11/2024 0 Comments 0 tags

Apple has released security updates for iOS, iPadOS, macOS, visionOS, and its Safari web browser to address two zero-day flaws that have come under active exploitation in the wild. The