/f/threats

CISA warns of hackers exploiting ZK Java Framework RCE flaw _bleepingcomputer.com

| posted on March 1, 2023 at 3:08 PM in rouiejay12 No comments |

Indian transport ministry flaws potentially allowed creation of counterfeit driving licenses _portswigger.net

| posted on March 1, 2023 at 3:03 PM in rouiejay12 No comments |

CISA: Beware of DDoS, Web Defacements on Anniversary of Russian Invasion of Ukraine _darkreading.com

| posted on February 28, 2023 at 3:15 PM in rouiejay12 No comments |

Chromium bug allowed SameSite cookie bypass on Android devices _portswigger.net

| posted on February 27, 2023 at 1:47 PM in rouiejay12 No comments |

ChromeLoader campaign uses VHD files disguised as cracked games and pirated software _securityaffairs.com

| posted on February 27, 2023 at 1:28 PM in rouiejay12 No comments |

Critical vulnerabilities hidden in hundreds of popular open source containers _scmagazine.com

| posted on February 27, 2023 at 1:23 PM in rouiejay12 No comments |

Beware rogue 2FA apps in App Store and Google Play – don’t get hacked! _nakedsecurity.sophos.com

| posted on February 27, 2023 at 1:08 PM in rouiejay12 No comments |

Defenders on high alert as backdoor attacks become more common _helpnetsecurity.com

| posted on February 24, 2023 at 2:42 PM in rouiejay12 No comments |

Stealthy Mac Malware Delivered via Pirated Apps _securityweek.com

| posted on February 24, 2023 at 2:39 PM in rouiejay12 No comments |

Fake ChatGPT apps spread Windows and Android malware _tripwire.com

| posted on February 24, 2023 at 2:11 PM in rouiejay12 No comments |

Stealc, a new advanced infostealer appears in the threat landscape _securityaffairs.com

| posted on February 23, 2023 at 2:35 PM in rouiejay12 No comments |

Report: Overwhelming majority of codebases have open source vulnerabilities, half deemed high-risk _scmagazine.com

| posted on February 23, 2023 at 2:17 PM in rouiejay12 No comments |

Hackers Ran Amok Inside GoDaddy for Nearly 3 Years _wired.com

| posted on February 23, 2023 at 2:12 PM in rouiejay12 No comments |

Researchers warn of 'Havoc' command and control tool _theregister.com

| posted on February 17, 2023 at 12:04 PM in rouiejay12 No comments |

Crypto Buyers Beware: 1 in 4 New Tokens of Any Value Is a Scam _wired.com

| posted on February 17, 2023 at 11:45 AM in rouiejay12 No comments |

High-risk users may be few, but the threat they pose is huge _helpnetsecurity.com

| posted on February 16, 2023 at 2:50 PM in rouiejay12 No comments |

BEC groups are using Google Translate to target high value victims _csoonline.com

| posted on February 16, 2023 at 2:31 PM in rouiejay12 No comments |

Dragos Report Identifies Two New Threat Groups _itsecurityguru.org

| posted on February 16, 2023 at 2:22 PM in rouiejay12 No comments |

Pig Butchering Scams Are Evolving Fast _wired.com

| posted on February 15, 2023 at 2:20 PM in rouiejay12 No comments |

Enigma, Vector, and TgToxic: The New Threats to Cryptocurrency Users _thehackernews.com

| posted on February 14, 2023 at 2:41 PM in rouiejay12 No comments |

Microsoft OneNote Abuse for Malware Delivery Surges _securityweek.com

| posted on February 11, 2023 at 1:09 PM in rouiejay12 No comments |

Flaws in industrial wireless IoT solutions can give attackers deep access into OT networks _csoonline.com

| posted on February 11, 2023 at 12:58 PM in rouiejay12 No comments |

AWS malvertising campaign a “potent threat” to users, researchers warn _itpro.com

| posted on February 10, 2023 at 3:04 PM in rouiejay12 No comments |

The Medusa botnet returns as a Mirai-based variant _en.secnews.gr

| posted on February 8, 2023 at 1:55 PM in rouiejay12 No comments |

Exploit Released for GoAnywhere File Transfer Zero-Day Flaw _gbhackers.com

| posted on February 8, 2023 at 1:53 PM in rouiejay12 No comments |

Attackers increasingly use Microsoft’s OneNote to deliver QakBot malware _scmagazine.com

| posted on February 8, 2023 at 12:59 PM in rouiejay12 No comments |

FormBook Malware Spreads via Malvertising Using MalVirt Loader to Evade Detection _thehackernews.com

| posted on February 8, 2023 at 12:39 PM in rouiejay12 No comments |

OpenSSF Head Delivers AI Warning for Application Security _securityboulevard.com

| posted on February 6, 2023 at 1:32 PM in rouiejay12 No comments |

Nevada Ransomware has released upgraded locker _helpnetsecurity.com

| posted on February 6, 2023 at 1:20 PM in rouiejay12 No comments |

Legacy VMware Bug Exploited in Global Ransomware Campaign _infosecurity-magazine.com

| posted on February 6, 2023 at 12:52 PM in rouiejay12 No comments |

Serious security hole plugged in infosec tool binwalk _portswigger.net

| posted on February 5, 2023 at 1:51 AM in rouiejay12 No comments |

Prilex POS malware evolves to block contactless transactions _techrepublic.com

| posted on February 3, 2023 at 12:56 PM in rouiejay12 No comments |

GoAnywhere MFT Users Warned of Zero-Day Exploit _securityweek.com

| posted on February 3, 2023 at 12:51 PM in rouiejay12 No comments |

Remote code execution exploit chain available for VMware vRealize Log Insight _csoonline.com

| posted on February 3, 2023 at 12:42 PM in rouiejay12 No comments |

Cybercrime groups offer six-figure salaries, bonuses, paid time off to attract talent on dark web _cyberscoop.com

| posted on February 1, 2023 at 12:05 PM in rouiejay12 No comments |

Ordered Something From JD Sports? Hackers Might Have Your Data. _sea.mashable.com

| posted on February 1, 2023 at 11:32 AM in rouiejay12 No comments |

UNC2565 threat actors continue to improve the GOOTLOADER malware _securityaffairs.com

| posted on February 1, 2023 at 11:28 AM in rouiejay12 No comments |

Serious Security: The Samba logon bug caused by outdated crypto _nakedsecurity.sophos.com

| posted on February 1, 2023 at 11:17 AM in rouiejay12 No comments |

Titan Stealer: A New Golang-Based Information Stealer Malware Emerges _thehackernews.com

| posted on February 1, 2023 at 11:07 AM in rouiejay12 No comments |

VMware vRealize Log Contains Critical Vulnerabilities (CVE-2022-31706) _sensorstechforum.com

| posted on January 30, 2023 at 12:29 PM in rouiejay12 No comments |