Apple has released a firmware update for AirPods that could allow a malicious actor to gain access to the headphones in an unauthorized manner. Tracked as CVE-2024-27867, the authentication issue… Read More »Apple Patches AirPods Bluetooth Vulnerability That Could Allow Eavesdropping
The heightened regulatory and legal pressure on software-producing organizations to secure their supply chains and ensure the integrity of their software should come as no surprise. In the last several… Read More »Practical Guidance For Securing Your Software Supply Chain
Threat actors with suspected ties to China and North Korea have been linked to ransomware and data encryption attacks targeting government and critical infrastructure sectors across the world between 2021… Read More »Chinese and N. Korean Hackers Target Global Infrastructure with Ransomware
Multiple content management system (CMS) platforms like WordPress, Magento, and OpenCart have been targeted by a new credit card web skimmer called Caesar Cipher Skimmer. A web skimmer refers to… Read More »New Credit Card Skimmer Targets WordPress, Magento, and OpenCart Sites
Cybersecurity researchers have discovered an updated version of an Android banking trojan called Medusa that has been used to target users in Canada, France, Italy, Spain, Turkey, the U.K., and… Read More »New Medusa Android Trojan Targets Banking Users Across 7 Countries
Google has taken steps to block ads for e-commerce sites that use the Polyfill.io service after a Chinese company acquired the domain and modified the JavaScript library (“polyfill.js”) to redirect… Read More »Over 110,000 Websites Affected by Hijacked Polyfill Supply Chain Attack
A previously undocumented threat actor dubbed Boolka has been observed compromising websites with malicious scripts to deliver a modular trojan codenamed BMANAGER. “The threat actor behind this campaign has been… Read More »New Cyberthreat ‘Boolka’ Deploying BMANAGER Trojan via SQLi Attacks
Threat actors are exploiting a novel attack technique in the wild that leverages specially crafted management saved console (MSC) files to gain full code execution using Microsoft Management Console (MMC)… Read More »New Attack Technique Exploits Microsoft Management Console Files
Browser security is becoming increasingly popular, as organizations understand the need to protect at the point of risk – the browser. Network and endpoint solutions are limited in their ability… Read More »How to Cut Costs with a Browser Security Platform
WikiLeaks founder Julian Assange has been freed in the U.K. and has departed the country after serving more than five years in a maximum security prison at Belmarsh for what… Read More »Wikileaks’ Julian Assange Released from U.K. Prison, Heads to Australia