Category: security
Actively exploited vulnerabilities patched on Android in latest security update
Google’s new advisory details 62 vulnerabilities Some of them are deemed critical, and for some no user interaction is required At least two flaws were being actively abused in the wild Google released a new update for Android, which addresses more than 60 vulnerabilities. Among them are two that are…
Read More
Port of Seattle ransomware breach exposes data on around 90,000 people
Port of Seattle sent out notification letters to people affected in the August 2024 ransomware attack The letter was sent out to roughly 90,000 people The attack was conducted by the Rhysida ransomware group Port of Seattle, the US government agency overseeing the city’s seaport and airport, has begun sent…
Read More
Still using WinRAR? It has a worrying security flaw that could let hackers hijack your Windows device
Security researchers uncover new flaw in WinRAR The flaw allowed threat actors to bypass Mark of the Web and deploy malware to Windows devices without warning WinRAR released a new version to fix the bug, so update now Experts have uncovered a flaw in WinRAR which could allow threat actors…
Read More
Malicious Python packages are stealing vital data, and have been downloaded thousands of times already
Researchers found three malicious PyPI packages, two targeting bitcoin developers, and one WooCommerce stores Two are designed to steal data, and the third to test for valid credit cards All three have since been removed from the repository Multiple open source software packages on the Python Package Index (PyPI) repository…
Read More
Look out for tax-themed scams this month, Microsoft warns
Criminals are using the April 15 tax deadline to trick victims Phishing attacks used to deliver malware and infostealers This leaves victims at risk of fraud and identity theft, as well as monetary loss With the April 15 deadline for tax filings in the US fast approaching, a new report…
Read More
Ivanti patches serious Connect Secure flaw
Ivanti recently patched a critical severity flaw in Connect Secure VPN Mandiant says the bug is being used in the wild by Chinese actors Two new malware strains were discovered Ivanti has recently patched a critical severity vulnerability found in its Connect Secure (ICS) VPN appliances which was allegedly being…
Read More