Apple Patches Bugs Tied to Previously Identified Zero-Days
The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices. Continue reading Apple Patches Bugs Tied to Previously Identified Zero-Days
Collaborate Disseminate
The actively exploited vulnerabilities discovered by Project Zero exist across iPhone, iPad and iPod devices. Continue reading Apple Patches Bugs Tied to Previously Identified Zero-Days
Emails try to lure victims with malicious documents claiming to have information about voting interference. Continue reading Malspam Campaign Milks Election Uncertainty
Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Continue reading Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug
Tech giant and feds this week renewed their urge to organizations to update Active Directory domain controllers. Continue reading Microsoft Warns Threat Actors Continue to Exploit Zerologon Bug
Hackers claim to have access to classified information linking the president to the origin of the coronavirus and criminal collusion with foreign actors. Continue reading Trump Campaign Website Defaced by Cryptocurrency Scam
The Cybersecurity and Infrastructure Security Agency (CISA) and the FBI issued an advisory after spotting advanced persistent threat (APT) actors exploiting multiple legacy vulnerabilities combined with a newer privilege escalation vulnerability—CVE-20… Continue reading CISA and FBI Observed APT Groups Targeting State Networks Related to US Election Systems
Bad actors are leveraging legitimate services and tools within Microsoft’s productivity suite to launch cyberattacks on COVID-19 stay-at-home workers, new research finds. Continue reading Office 365: A Favorite for Cyberattack Persistence
Spear-phishing attacks targeting VIPs and others show key malware changes and are likely linked to the current conflict with Armenia. Continue reading PoetRAT Resurfaces in Attacks in Azerbaijan Amid Escalating Conflict
Amnesty International revealed the existence of Linux and macOS variants of FinSpy, a commercially available spy suite used extensively by threat actors, as well as law enforcement agencies and government from around the world. Criminals are not respon… Continue reading Linux and macOS Versions of Commercial ‘Malware’ FinSpy Found Online by Amnesty International
Vulnerabilities ‘that have existed for years’ in WS-Trust could be exploited to attack other services such as Azure and Visual Studio. Continue reading MFA Bypass Bugs Opened Microsoft 365 to Attack