Suspicious Minds: Insider Threats in The SaaS World
Everyone loves the double-agent plot twist in a spy movie, but it’s a different story when it comes to securing…
North Korean Hackers Moonstone Sleet Push Malicious JS Packages to npm Registry
The North Korea-linked threat actor known as Moonstone Sleet has continued to push malicious npm packages to the JavaScript package…
A Better Investigatory Board for Cyber Incidents
When an airplane crashes, impartial investigatory bodies leap into action, empowered by law to unearth what happened and why. But…
New Android Spyware LianSpy Evades Detection Using Yandex Cloud
Users in Russia have been the target of a previously undocumented Android post-compromise spyware called LianSpy since at least 2021.…
Google Patches New Android Kernel Vulnerability Exploited in the Wild
Google has addressed a high-severity security flaw impacting the Android kernel that it has been actively exploited in the wild.…
New Zero-Day Flaw in Apache OFBiz ERP Allows Remote Code Execution
A new zero-day pre-authentication remote code execution vulnerability has been disclosed in the Apache OFBiz open-source enterprise resource planning (ERP)…
Sophisticated Android Spyware Targets Users in Russia
Researchers say “LianSpy” malware has been in use in a covert data gathering operation that’s gone undetected for at least…
FTC Slams TikTok With Lawsuit After Continued COPPA Violations
Though TikTok is expected to adhere to certain COPPA-outlined measures, the social media giant has failed to meet those expectations,…