Security News

Filter by:

Almost 900 servers hacked using Zimbra zero-day flaw

Almost 900 servers have been hacked using a critical Zimbra Collaboration Suite (ZCS) vulnerability, which at the time was a zero-day without a patch for nearly 1.5 months. [...]
Bleepingcomputer 15 Oct 2022 1135 Views

Feature-Rich 'Alchimist' Cyberattack Framework Targets Windows, Mac, Linux Environments

The comprehensive, multiplatform framework comes loaded with weapons, and it is likely another effort by a China-based threat group to develop an alternative to Cobalt Strike and Sliver.
Dark Reading 14 Oct 2022 1132 Views

Unofficial WhatsApp Android app caught stealing users’ accounts

A new version of an unofficial WhatsApp Android application named 'YoWhatsApp' has been found stealing access keys for users' accounts.
Bleeping Computer 13 Oct 2022 1375 Views

All Windows versions can now block admin brute-force attacks

Microsoft announced today that IT admins can now configure any Windows system still receiving security updates to automatically block brute force attacks targeting local administrator accounts via a group policy. [...]
Bleepingcomputer 12 Oct 2022 1407 Views

Android leaks some traffic even when 'Always-on VPN' is enabled

Mullvad VPN has discovered that Android leaks traffic every time the device connects to a WiFi network, even if the "Block connections without VPN," or "Always-on VPN," features is enabled. [...]
Bleepingcomputer 12 Oct 2022 1539 Views

The 2020-2022 ATM/PoS malware landscape

Attacks using ATM or PoS malware are on the rise again in 2022 after the COVID-19 lockdowns. The post The 2020-2022 ATM/PoS malware landscape appeared first on TechRepublic.
TechRepublic 12 Oct 2022 1270 Views

Fortinet warns admins to patch critical auth bypass bug immediately

Fortinet has warned administrators to update FortiGate firewalls and FortiProxy web proxies to the latest versions, which address a critical severity vulnerability.
Bleeping Computer 10 Oct 2022 1282 Views

Hackers exploiting unpatched RCE bug in Zimbra Collaboration Suite

Hackers are actively exploiting an unpatched remote code execution (RCE) vulnerability in Zimbra Collaboration Suite (ZCS), a widely deployed web client and email server.
Bleeping Computer 10 Oct 2022 1269 Views

Linux kernel 5.19.12 code could cause permanent damage to some laptop displays

For desktop Linux users, updating to a new Linux kernel typically carries relatively small, contained risks: wonky drivers, GRUB pain, maybe a full wipe and reinstall. For one subset of laptop owners on rolling release distributions, however, kernel version 5.19...
arstechnica 7 Oct 2022 1426 Views

Meta sues app dev for stealing over 1 million WhatsApp accounts

Meta has sued several Chinese companies doing business as HeyMods, Highlight Mobi, and HeyWhatsApp for developing and allegedly using "unofficial" WhatsApp Android apps to steal over one million WhatsApp accounts starting May 2022.
Bleepingcomputer 7 Oct 2022 1283 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY