Large-Scale Ad Fraud Exposed: Konfety Exploiting Google Play Store for Malicious Activities
A large-scale ad fraud operation named Konfety exploited both legitimate “bait” and malicious “evil twin” applications on the Google Play Store.
Security
CISA Warning: Critical GeoServer Vulnerability Actively Exploited
CISA warns federal agencies to promptly patch CVE-2024-36401 in GeoServer due to active exploitation risks and severe impact potential.
CISA Warning: Critical GeoServer Vulnerability Actively Exploited Read More »
Global Data Breach Crisis: How to Secure Apps While Protecting Your Personal Privacy
Recently, a shocking news about the exposure of personal data of users of the world’s most popular applications has rocked
Global Data Breach Crisis: How to Secure Apps While Protecting Your Personal Privacy Read More »
High-Risk Overflow Vulnerability in Intel Chips Could Affect Hundreds of PC Models
A new vulnerability in Intel processors, CVE-2024-0762, also known as “UEFIcanhazbufferoverflow,” could impact numerous computers.
High-Risk Overflow Vulnerability in Intel Chips Could Affect Hundreds of PC Models Read More »
Microsoft Delays Recall Feature to Enhance Security
Microsoft has decided to delay the preview release of the Windows Recall feature, which allows users to periodically capture screenshots of their activities to easily find content they have previously seen on their PC.
Microsoft Delays Recall Feature to Enhance Security Read More »
ZKTeco Biometric Systems Found with 24 Severe Security Vulnerabilities
Kaspersky has recently analyzed hybrid biometric access systems manufactured by Chinese company ZKTeco, uncovering 24 severe security vulnerabilities.
ZKTeco Biometric Systems Found with 24 Severe Security Vulnerabilities Read More »
Arid Viper Uses AridSpy Malware for Espionage Operations
The threat actor known as Arid Viper is suspected of being part of a mobile espionage campaign that spreads a spyware called AridSpy through trojanized Android applications.
Arid Viper Uses AridSpy Malware for Espionage Operations Read More »
Google Warns of Exploited Zero-Day Vulnerability in Pixel Firmware
Google has launched a large-scale Pixel security update and warned that one of the patched vulnerabilities has already been exploited.
Google Warns of Exploited Zero-Day Vulnerability in Pixel Firmware Read More »
A New Type of Phishing Attack Disguised as Job Seekers
Cybersecurity researchers have identified a new type of phishing attack that spreads the More_eggs malware by masquerading as resumes. This technique was first discovered over two years ago.
A New Type of Phishing Attack Disguised as Job Seekers Read More »
PyTorch’s Distributed RPC Framework Vulnerable to Remote Code Execution
A critical vulnerability has been found in the PyTorch machine learning library, allowing remote code execution. Designated CVE-2024-5480, the issue affects PyTorch’s Distributed RPC framework due to lack of function validation during RPC operations.
PyTorch’s Distributed RPC Framework Vulnerable to Remote Code Execution Read More »
Researchers Warn of Security Risks in VSCode Extensions
Researchers have identified numerous risky extensions in the Visual Studio Code marketplace.
Researchers Warn of Security Risks in VSCode Extensions Read More »
Critical Security Vulnerability Affecting PHP
A new critical security vulnerability, CVE-2024-4577, has been disclosed, which can be exploited under specific circumstances to achieve remote code execution.
Critical Security Vulnerability Affecting PHP Read More »