NFC Traffic Stealer Targets Android Users & Their Banking Info
The malware builds on a near-field communication tool in combination with phishing and social engineering to steal cash. The malware…
Google Chrome Update Fixes Flaw Exploited in the Wild
New Chrome release set to roll out over the next few days addresses 38 security issues in the browser. New…
Infostealers Waltz Through macOS to Grab Crypto Wallets, Browser Creds
Ironically, Macs’ lower risk profile may make them more susceptible to any given threat than the average Windows or Linux…
Hardcoded Credential Vulnerability Found in SolarWinds Web Help Desk
SolarWinds has issued patches to address a new security flaw in its Web Help Desk (WHD) software that could allow…
Hardware Backdoor Discovered in RFID Cards Used in Hotels and Offices Worldwide
Cybersecurity researchers have uncovered a hardware backdoor within a particular model of MIFARE Classic contactless cards that could allow authentication…
Slack Patches AI Bug That Let Attackers Steal Data From Private Channels
A prompt injection flaw in the AI feature of the workforce collaboration suite makes malicious queries of data sources appear…
Chinese Hackers Exploit Zero-Day Cisco Switch Flaw to Gain System Control
Details have emerged about a China-nexus threat group’s exploitation of a recently disclosed, now-patched security flaw in Cisco switches as…
New ‘ALBeast’ Vulnerability Exposes Weakness in AWS Application Load Balancer
As many as 15,000 applications using Amazon Web Services’ (AWS) Application Load Balancer (ALB) for authentication are potentially susceptible to…
Why End of Life for Applications Is the Beginning of Life for Hackers
In the next year, more than 35,000 applications will move to end-of-life status. To manage risk effectively, we need to…
The Facts About Continuous Penetration Testing and Why It’s Important
What is Continuous Attack Surface Penetration Testing or CASPT? Continuous Penetration Testing or Continuous Attack Surface Penetration Testing (CASPT) is…
