North Korea hackers exploit Chrome zero-day weeks before patch.
Views expressed in this cybersecurity-cybercrime summary are those of the reporters and correspondents.
Accessed on 25 March 2022, 0103 UTC.
Content provided by “BleepingComputer.com.”
Source:
https://feedly.com/i/subscription/feed%2Fhttp%3A%2F%2Fwww.bleepingcomputer.com%2Ffeed%2F
Please click link or scroll down to read your selections.
BleepingComputer
48K followers52 articles per week
MOST POPULAR
North Korean hackers exploit Chrome zero-day weeks before patch
North Korean state hackers have exploited a zero-day, remote code execution vulnerability in Google Chrome web browser for more than a month before a patch became available, in attacks targeting news media, IT companies, cryptocurrency and fintech organizations. […]
Microsoft: Recent Windows Server updates cause DNS issues
Microsoft has addressed a new known issue causing DNS stub zones loading failures that could lead to DNS resolution issues on Windows Server 2019 systems. […]
Malicious Microsoft Excel add-ins used to deliver RAT malware
Researchers report a new version of the JSSLoader remote access trojan being distributed malicious Microsoft Excel addins. […]
TODAY
Phishing kits constantly evolve to evade security software
Modern phishing kits sold on cybercrime forums as off-the-shelve packages feature multiple and sophisticated detection avoidance and traffic filtering systems to ensure that internet security solutions won’t mark them as a threat. […]
Morgan Stanley client accounts breached in social engineering attacks
Morgan Stanley Wealth Management, the wealth and asset management division of Morgan Stanley, says some of its customers had their accounts compromised following vishing attacks. […]
US charges 4 Russian govt employees with critical infrastructure hacks
The U.S. has indicted four Russian government employees for their involvement in hacking campaigns targeting hundreds of companies and organizations from the global energy sector between 2012 and 2018. […]
Western Digital My Cloud OS update fixes critical vulnerability
Western Digital has released new My Cloud OS firmware to fix a vulnerability exploited by bug hunters during the Pwn2Own 2021 hacking competition to achieve remote code execution. […]
Lapsus$ suspects arrested for Microsoft, Nvidia, Okta hacks
As Lapsus$ data extortion gang announced that several of its members are taking a vacation, the City of London Police say they have arrested seven individuals connected to the gang. […]
South Africa wants to fight SIM swapping with biometric checks
The independent communications authority of South Africa (ICASA) has submitted a radical proposal to tackle the problem of SIM swapping attacks in the country, suggesting that local service providers should keep biometric data of cellphone number owners. […]
Windows 11 22H2 almost here as it moves to the Beta channel
Windows 11 22H2 inches closer to release as Microsoft has now moved this version to the Windows Insider ‘Beta’ channel, allowing Insiders time to switch channels before a newer version is released to the ‘Dev’ channel. […]
Windows 11 22H2 almost here as it moves exclusively to Beta channel
Windows 11 22H2 inches closer to release as Microsoft has now moved this version exclusively to the Windows Insider ‘Release’ channel, while the new Preview Build 22581 released today is being offered on both the ‘Beta’ and ‘Dev’ channels. […]
GitHub explains the cause behind the past week’s outages
GitHub says recent service outages were caused by resource contention issues in their primary database cluster. […]
A Better Grasp of Cyber Attack Tactics Can Stop Criminals Faster
Recently, FortiGuard Labs released the latest Global Threat Landscape Report for the second half of 2021. There is a ton of data in it and several key takeaways. The main themes that weave through this report are about the increase in cybercriminal sophistication as well as speed. […]
—–