Security
Stay informed with the latest developments in cybersecurity through our Security category. Discover in-depth news, analysis, and updates on emerging cyber threats, malware incidents, and major data breaches. Whether you’re a cybersecurity professional or just keen on protecting your digital footprint, find insights and trends that are shaping the future of online security here.
New APT CloudSorcerer Malware Hits Russian Target
Cybersecurity researchers have uncovered a new advanced persistent threat (APT) targeting Russian government entities, dubbed CloudSorcerer. This sophisticated cyberespionage tool, discovered by Kaspersky in May 2024 and discussed in an advisory published by the firm on June 8, is designed for stealth monitoring, data collection and exfiltration, utilizing Microsoft Graph, Yandex Cloud and Dropbox for […]
Mekotio Trojan Targets Latin American Banking Credentials
A new analysis has shed light on the threat posed by the Mekotio banking trojan, a sophisticated piece of malware primarily targeting Latin American countries since at least 2015. Designed to steal sensitive information, particularly banking credentials, Mekotio has been especially active in Brazil, Chile, Mexico, Spain and Peru. This malware shares its origins with other […]
Australian police arrest hacker who created ‘Evil Twin’ wireless network to steal data during flights
Hacker faces multiple charges that carry multiple years imprisonment The Australian Federal Police recently arrested and charged a man who used an ‘Evil Twin’ free Wi-Fi access point to steal data from victims on a domestic flight. 42-year-old Michael Clapsis now faces nine cybercrime charges for the alleged attack. According to the official reports, The AFP’s […]
Your Wi-Fi can now double as a home security system — Gamgee uses home Wi-Fi networks for intruder detection
Wi-Fi presence detection taken to the next level. Dutch startup Gamgee has launched a crowdfunding campaign for a home security system that detects physical intruders using your existing Wi-Fi system. Using a home mapping app and artificial intelligence, Gamgee’s Wi-Fi Home Alarm is claimed to offer precision protection by ‘body printing’ the household’s trusted people and pets. Alarms can […]
Has your VPN failed to connect recently? Microsoft says the latest Windows security update may provide a fix
If you’ve been experiencing VPN issues, Windows may have been to blame up until now. Microsoft’s April security updates for Windows 11 and Windows 10, KB5036893 and KB5036892 respectively, were previously identified by the company as causing VPN disconnection issues for some users, leaving some without a way to hide their IP address or change […]
Microsoft patents a technique to display encrypted documents so only you can see them
It seems to be a better system than AMD’s Privacy View feature but like all of them, it can’t solve one key issue. If you’re working on an important document in a busy environment and don’t want people to see what you’re doing at a glance, then you could use a privacy screen on the […]
The biggest password leak ever: nearly 10 billion credentials exposed
Cybersecurity researchers are calling it the largest password compilation leak of all time. On July 4, a newly registered user on a popular hacking forum posted a file containing nearly 10 billion compromised passwords in plaintext. The post was first noticed by researchers at Cybernews. “Xmas came early this year,” user “ObamaCare” wrote on the […]
Cisco Patches Zero-Day Bug Used by Chinese Velvet Ant Group
A newly patched zero-day vulnerability was exploited by Chinese state-backed hackers to compromise Cisco Nexus switches, researchers have revealed. Cisco released a patch for CVE-2024-20399 on 2 July, 2024. The flaw is found in the CLI of Cisco NX-OS software and could allow an authenticated local attacker to execute arbitrary commands as root on a […]
WordPress Plugins at Risk From Polyfill Library Compromise
WordPress plugins are currently facing significant security risks due to a recent discovery detailed in a security advisory published by Patchstack today. The advisory references a Polyfill supply chain attack initially reported on June 25 by Sansec. This attack targets Polyfill.js, a widely used JavaScript library that enables modern functionality on older web browsers lacking native […]
Nvidia patches five high-severity bugs in its software
High-flying Nvidia took care of some routine business on June 6 when it reported three high-severity bugs in its GPU Display Driver and another two high-severity bugs in Nvidia’s vGPU software. In a security bulletin to customers, Nvidia said an exploit of the GPU Display Driver bugs could lead to a combination or all of […]