News
News (2850)
Tuesday, 30 May 2023 10:46
Google’s New Zip Domains Can be Easily Abused for Phishing and Malware Payloads
Written by Sean Kalinich
This one will get filed in the “you knew it was going to happen” file. After the announcement of a few new top-level domains (TLDs) including .zip and .mov by Google the security world silently shook its head. The concept…
Read 678 times
Published in
News
Thursday, 25 May 2023 16:02
Indirect Prompt Injection Attacks, The least Acknowledged Flaw in AI Today
Written by Sean Kalinich
Wait, another danger of AI article? Yes, another one. Since far too many people and companies are ok with ignoring the dangers simply for the sake of the next big shiny thing, we thought we would at least be part…
Read 640 times
Published in
News
Thursday, 25 May 2023 10:52
Leaked LockBit and Babuk Ransomware repurposed by Buhti in new Payloads
Written by Sean Kalinich
The leak of tools used by threat groups, and spying agencies are events of inestimable importance in both the threat group and security worlds. To threat groups this is like free money. They now have access to someone else’s development…
Read 983 times
Published in
News
Wednesday, 24 May 2023 12:13
More Malware Discovered in Google Play Store this Time in a Popular Screen Recording App
Written by Sean Kalinich
The Google Play Store is and has always been something of a playground for mobile malware groups. Over the past few years hundreds of malicious apps have been uncovered with tens of thousands of downloads. Everything from banking malware to…
Read 832 times
Published in
News
Wednesday, 24 May 2023 10:25
Microsoft Announces AI Run Moderation System to Prevent “harmful” Content
Written by Sean Kalinich
With some of the news around AI I feel like I should just create a “what could go wrong” series of articles. After all, as we see the term “AI” pushed around as the savior for all the things, we…
Read 1340 times
Published in
News
Tuesday, 23 May 2023 15:28
China Targets US Based Micron with a Sales Ban Citing National Security Concerns
Written by Sean Kalinich
In what seems to be a tit-for-tat move, Chin has announced a ban on products from US chip maker, Micro. The reasons for this are vague with the Cybersecurity Administration of China (CAC) saying it is for National Security reasons.…
Read 890 times
Published in
News
Tuesday, 23 May 2023 12:59
Ransomware Group BlackCat Appears to be Developing a New Attack Using Signed Kernel Drivers
Written by Sean Kalinich
In the never-ending saga of Ransomware, the threat groups that deploy or leverage this tool for financial gain are always looking for a new method of installation and ways to avoid increasingly sophisticated security measures. Although most organizations might not…
Read 440 times
Published in
News
Monday, 22 May 2023 12:44
ByteDance’s TikTok Video Editor/Maker CapCut Being Impersonated to Spread Malware
Written by Sean Kalinich
Video editing software CapCut users are being targeted by attackers to push different strains of malware. For those that are not aware of that CapCut is, it is a video editor and maker for TikTok and is the official one…
Read 1128 times
Published in
News
Monday, 22 May 2023 11:33
Samsung Discloses Medium Vulnerability Exploited in the Wild First Identified in January 2023
Written by Sean Kalinich
First identified in January of 2023, Samsung has put a warning about a CVSS 4.4 vulnerability (CVE-2023-21492) that Is actively being exploited in the wild. The flaw, which impacts Samsung devices that are running Android 11, 12, and 13, was…
Read 440 times
Published in
News
Monday, 22 May 2023 10:22
PyPI Stops New Users and Uploads to Deal with Malicious User Increase
Written by Sean Kalinich
PyPI (the Python Package Index) has stopped allowing the creation of new accounts and the upload of new packages. This move has been put in place to deal with a massive increase in identified malicious users and packages. This decision…
Read 568 times
Published in
News
Friday, 19 May 2023 16:15
Millions of Android Devices Loaded with Malware Infected OEM Images.
Written by Sean Kalinich
TrendMicro made a shocking revelation at Black Hat Asia 2023 where they disclosed an operation that has been running since 2018 targeting Android devices. The scheme was uncovered in 2021 while researchers at TrendMicro were looking into SMS PVA (Phone…
Read 1577 times
Published in
News
Friday, 19 May 2023 13:57
Apple Pushes Out Patches for Three Zero-Day Vulnerabilities Exploited in the Wild
Written by Sean Kalinich
Apple has rushed to release patches for CVE-2023-32409, CVE-2023-28204, and CVE-2023-32373 all of which are in the WebKit Browser engine and across all Apple platforms (IOS, IpadOS and macOS). These three flaws have also been seen to be actively exploited…
Read 1460 times
Published in
News
Friday, 19 May 2023 13:12
Apple Launches ChatGPT app Wile Banning it from Use by Employees
Written by Sean Kalinich
After learning that there were malicious ads containing links to ChatGPT apps (for Windows), Apple launched a legitimate app for IOS. The app brings the very popular LLM to Apple users at a time when some are becoming more hesitant…
Read 1261 times
Published in
News
Friday, 19 May 2023 11:51
Well Crap, New Flaw in KeePass Allows Attackers to Recover Master Password via Memory Dump
Written by Sean Kalinich
KeePass has a bit of a memory issue. It seems that the master password is passed in clear text through memory. This tiny little (sarcasm) bug was identified by a security researcher who goes by the name as vdohney. A…
Read 1030 times
Published in
News
Friday, 19 May 2023 10:56
More Repo Issues as Malware Found in NPM Node.js Packages
Written by Sean Kalinich
Popular open-source repository NPM is back in the news as a pair of packages were found to have malware in them. The malware in question is TurkoRat. TurkoRat is an open-source information stealer that has a few features attached to…
Read 524 times
Published in
News
Thursday, 18 May 2023 15:08
Apple Rolling out a Feature that Lets Your iPhone Sound Just Like You, What Could Go Wrong
Written by Sean Kalinich
I’ll take stupid features for $500 Alex. It seems that Apple is looking to deploy a feature that would allow your phone to sound and reply just like you do. The feature called “Personal Voice” uses a form of AI…
Read 1509 times
Published in
News
Page 4 of 179