Facebook is warning that a FreeType vulnerability in all versions up to 2.13 can lead to arbitrary code execution, with reports that the flaw has been exploited in attacks. […] Go to Source Author: Bill Toulas
Category Archives: Security
CISA says the Medusa ransomware operation has impacted over 300 organizations in critical infrastructure sectors in the United States until last month. […] Go to Source Author: Sergiu Gatlan
A new Android spyware named ‘KoSpy’ is linked to North Korean threat actors who have infiltrated Google Play and third-party app store APKPure through at least five malicious apps. […] Go to Source Author: Bill Toulas
Indian authorities arrested Aleksej Besciokov, the co-founder and one of the administrators of the Russian Garantex crypto-exchange while vacationing with his family in Varkala, India. […] Go to Source Author: Sergiu Gatlan
Mozilla is warning Firefox users to update their browsers to the latest version to avoid facing disruption and security risks caused by the upcoming expiration of one of the company’s root certificates. […] Go to Source Author: Bill Toulas
Slovak cybersecurity company ESET says a newly patched zero-day vulnerability in the Windows Win32 Kernel Subsystem has been exploited in attacks since March 2023. […] Go to Source Author: Sergiu Gatlan
Traditional Data Loss Prevention (DLP) solutions weren’t built for today’s browser-driven workplace. Now sensitive data moves moves through SaaS apps, AI tools, and personal accounts, bypassing legacy security controls. Learn from Keep Aware how real-time browser security can stop data leaks before they happen. […] Go to Source Author: Sponsored by Keep Aware
Chinese hackers are deploying custom backdoors on Juniper Networks Junos OS MX routers that have reached end-of-life (EoL) and no longer receive security updates. […] Go to Source Author: Bill Toulas
Six malicious packages have been identified on npm (Node package manager) linked to the notorious North Korean hacking group Lazarus. […] Go to Source Author: Bill Toulas
Apple has released emergency security updates to patch a zero-day bug the company describes as exploited in “extremely sophisticated” attacks. […] Go to Source Author: Sergiu Gatlan