Internet Security

E-skimming campaign uses Unicode obfuscation to hide the Mongolian Skimmer

October 10, 2024 add comment
Jscrambler researchers found a skimming campaign using unique JavaScript obfuscation with accented characters to hide a skimmer named Mongolian Skimmer. Jscrambler researchers uncovered a skimming campaign using unique JavaScript... Read more »

U.S. CISA adds Ivanti CSA and Fortinet bugs to its Known Exploited Vulnerabilities catalog

October 10, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Ivanti CSA and Fortinet bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following... Read more »

Mozilla issued an urgent Firefox update to fix an actively exploited flaw

October 10, 2024 add comment
Mozilla released an urgent Firefox update to fix a critical use-after-free vulnerability actively exploited in ongoing attacks. Mozilla released an emergency security update for its Firefox browser to address... Read more »

Palo Alto fixed critical flaws in PAN-OS firewalls that allow for full compromise of the devices

October 10, 2024 add comment
Palo Alto fixed critical flaws in PAN-OS firewalls, warning that attackers could chain these vulnerabilities to hijack the devices. Palo Alto Networks addressed multiple vulnerabilities that an attacker can... Read more »

Cybercriminals Are Targeting AI Conversational Platforms

October 9, 2024 add comment
Resecurity reports a rise in attacks on AI Conversational platforms, targeting chatbots that use NLP and ML to enable automated, human-like interactions with consumers. Resecurity has observed a spike... Read more »

Awaken Likho APT group targets Russian government with a new implant

October 9, 2024 add comment
A threat actor tracked as Awaken Likho is targeting Russian government agencies and industrial entities, reported cybersecurity firm Kaspersky. A recent investigation by Kaspersky researchers into the APT group... Read more »

U.S. CISA adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog

October 9, 2024 add comment
U.S. Cybersecurity and Infrastructure Security Agency (CISA) adds Windows and Qualcomm bugs to its Known Exploited Vulnerabilities catalog. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) added the following vulnerabilities... Read more »

Three new Ivanti CSA zero-day actively exploited in attacks

October 8, 2024 add comment
Software company Ivanti released security patches for three new CSA zero-day vulnerabilities actively exploited in attacks. Ivanti warned of three new security vulnerabilities (CVE-2024-9379, CVE-2024-9380, and CVE-2024-9381) in its... Read more »

Ukrainian national pleads guilty in U.S. court for operating the Raccoon Infostealer

October 8, 2024 add comment
Ukrainian national pleads guilty in U.S. court for operating the Raccoon Infostealer, used to steal sensitive data globally. Ukrainian national Mark Sokolovsky has pleaded guilty in a US court... Read more »

Qualcomm fixed a zero-day exploited limited, targeted attacks

October 8, 2024 add comment
Qualcomm warns of 20 flaws in its products, including a potential zero-day vulnerability, in the DSP service that impacts multiple chipsets. Qualcomm addressed 20 vulnerabilities in its products, including... Read more »
Subscribe to our Newsletter