Skip to content
Security News, Assessments & Alerts Page 299

Security News, Assessments & Alerts

Security Issues, Vulnerabilities, Exploits & Government Alerts

CISA and FBI Raise Alerts on Exploited Flaws and Expanding HiatusRAT Campaign

CISA and FBI Raise Alerts on Exploited Flaws and Expanding HiatusRAT Campaign

Dec 17, 2024Ravie LakshmananNetwork Security / IoT Security The U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Monday added two security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in… 

Read More »CISA and FBI Raise Alerts on Exploited Flaws and Expanding HiatusRAT Campaign
DeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA Pages

DeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA Pages

Dec 16, 2024Ravie LakshmananMalvertising / Threat Intelligence Cybersecurity researchers have shed light on a previously undocumented aspect associated with ClickFix-style attacks that hinge on taking advantage of a single ad network service as part of… 

Read More »DeceptionAds Delivers 1M+ Daily Impressions via 3,000 Sites, Fake CAPTCHA Pages
NoviSpy Spyware Installed on Journalist’s Phone After Unlocking It With Cellebrite Tool

NoviSpy Spyware Installed on Journalist’s Phone After Unlocking It With Cellebrite Tool

Dec 16, 2024Ravie LakshmananSpyware / Surveillance A Serbian journalist had his phone first unlocked by a Cellebrite tool and subsequently compromised by a previously undocumented spyware codenamed NoviSpy, according to a new report published by… 

Read More »NoviSpy Spyware Installed on Journalist’s Phone After Unlocking It With Cellebrite Tool
2024 Year in Review Highlights CISA’s Achievements in Reducing Risk and Building Resilience in Cybersecurity and Critical Infrastructure Security

2024 Year in Review Highlights CISA’s Achievements in Reducing Risk and Building Resilience in Cybersecurity and Critical Infrastructure Security

A year of growth and transition as America’s Cyber Defense Agency and National Coordinator for Critical Infrastructure Security and Resilience  WASHINGTON – Today, the Cybersecurity and Infrastructure Security Agency (CISA) released its 2024 Year in Review,… 

Read More »2024 Year in Review Highlights CISA’s Achievements in Reducing Risk and Building Resilience in Cybersecurity and Critical Infrastructure Security
CISA Publishes Draft National Cyber Incident Response Plan for Public Comment

CISA Publishes Draft National Cyber Incident Response Plan for Public Comment

Provides updated framework that addresses significant changes in policy and cyber operations WASHINGTON – The Cybersecurity and Infrastructure Security Agency (CISA) published the draft National Cyber Incident Response Plan (NCIRP) Update today for public comment… 

Read More »CISA Publishes Draft National Cyber Incident Response Plan for Public Comment
New Investment Scam Leverages AI, Social Media Ads to Target Victims Worldwide

New Investment Scam Leverages AI, Social Media Ads to Target Victims Worldwide

Dec 16, 2024Ravie LakshmananCryptocurrency / Phishing Attack Cybersecurity researchers are calling attention to a new kind of investment scam that leverages a combination of social media malvertising, company-branded posts, and artificial intelligence (AI) powered video… 

Read More »New Investment Scam Leverages AI, Social Media Ads to Target Victims Worldwide
New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP

New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP

Cybersecurity researchers have discovered a new PHP-based backdoor called Glutton that has been put to use in cyber attacks targeting China, the United States, Cambodia, Pakistan, and South Africa. QiAnXin XLab, which discovered the malicious… 

Read More »New Glutton Malware Exploits Popular PHP Frameworks Like Laravel and ThinkPHP