Malicious WhatsApp Mod Spotted Infecting Android Devices
YoWhatsApp v2.22.11.75 was distributed via ads on Android apps like Snaptube and VidMate
Cyber News, Cyber Threat Trends
- October 14, 2022
S3 Ep104: Should hospital ransomware attackers be locked up for life? [Audio + Text]
Have your say on three deep questions posed by this week’s podcast. Read or listen as suits you best…
Cyber News, Cyber Threat TrendsChinese APT WIP19 Targets IT Service Providers and Telcos
The group is characterized by the use of a stolen digital certificate issued by DEEPSoft
Cyber News, Cyber Threat Trends
- October 14, 2022
New Chinese attack framework Alchimist serves Windows, Linux, and macOS implants
Researchers have discovered a new attack framework of Chinese origin that they believe is being used in the wild. The framework is made up of a command-and-control (C2) backend dubbed Alchimist and an accompanying customizable remote access Trojan (RAT) for Windows and Linux machines. The framework can also be used to generate PowerShell-based attack shellcode […]
Cyber News, Cyber Threat TrendsSamsung unveils latest smartphones, smart devices and Galaxy Watch
At the Samsung Developer Conference 2022, the company also discussed its plans for personalized experiences, security and privacy. The post Samsung unveils latest smartphones, smart devices and Galaxy Watch appeared first on TechRepublic.
Cyber News, Cyber Threat Trends
- October 14, 2022
PoC Exploit Released for Critical Fortinet Auth Bypass Bug Under Active Attacks
A proof-of-concept (PoC) exploit code has been made available for the recently disclosed critical security flaw affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager, making it imperative that users move quickly to apply the patches. “FortiOS exposes a management web portal that allows a user to configure the system,” Horizon3.ai researcher James Horseman said. “Additionally, a user can
Cyber News, Cyber Threat TrendsMicrosoft Addresses Zero-Days, but Exchange Server Exploit Chain Remains Unpatched
The computing giant didn’t fix ProxyNotLogon in October’s Patch Tuesday, but it disclosed a rare 10-out-of-10 bug and patched two other zero-days, including one being exploited.
Cyber NewsFacebook warns of 400 malicious apps that tried to steal your account credentials
Previously available on Apple’s App Store and Google Play, the phony apps impersonated photo editors, games, VPN services and utilities to trick users into sharing their Facebook credentials. The post Facebook warns of 400 malicious apps that tried to steal your account credentials appeared first on TechRepublic.
Cyber NewsResearchers extract master encryption key from Siemens PLCs
Security researchers have found a way to extract a global encryption key that was hardcoded in the CPUs of several Siemens programmable logic controller (PLC) product lines, allowing them to compromise their secure communications and authentication. Siemens advises all customers to upgrade both the firmware of the impacted devices as well as the TIA Portal […]
Cyber News