Amidst mitigation, Log4j one of the worst internet bugs in history is still being exploited. The Apache Software Foundation revealed a vulnerability, sending the…
open source software
APT29 Compromised the European Diplomatic Entity Network
APT29, a nation-state actor with ties to Russia, was discovered using Credential Roaming, a “lesser-known” Windows feature. In its attack on an undisclosed European…
Numerous Cyber Attacks Using IPFS Decentralized Network Seen
The decentralized Interplanetary Filesystem (IPFS) network is being used by a variety of phishing attempts to host malware, phishing kit infrastructure, and support other…
ConnectWise Server Backup Solution has a Critical RCE Vulnerability
ConnectWise, a provider of IT service management software, has published software fixes to address a serious RCE vulnerability in Recover and R1Soft Server Backup…
An unauthorized WhatsApp Android app was discovered taking user accounts.
YoWhatsApp, an unauthorized WhatsApp Android app, has a new version that has been discovered to steal account access keys from users. YoWhatsApp is a…
The Boeing 737 MAX disaster demonstrates that you can no longer avoid culpability due to improperly written code.
There are a few occasions in situational law where a single landmark ruling reshapes or reframes the legal environment. That is exactly what happened…
PHP package manager component Packagist vulnerable to compromise
A flaw in argument injection made RCE risky SonarSource researchers discovered a vulnerability in one of Composer’s key parts that might have been exploited…
SolarMarker Attack Uses Vulnerable WordPress Sites and False Chrome Updates
As part of a novel strategy in its watering-hole attacks, the SolarMarker attack organization is encouraging victims to download phoney Chrome browser updates by…
Various sectors’ search engine users are directed to JavaScript malware via SEO poisoning campaigns
The clever operation directs people looking for business templates and forms to websites that are hosting dangerous files. Researchers have found a high-effort SEO…
Reward points: Scam mobile banking incentives apps tempt users to download RATs that steal personal information on Android smartphones.
Our examination of a fresh iteration of previously disclosed Android malware that steals user information through Reward points scam. They are also distributed through…