This sneaky phishing attack is a new take on a dirty old trick
At this time of year, an email about your annual benefits or bonus may not seem unusual. So you open the attached Word document, only for the app report that the file is corrupted but…
This Ryzen 7 mini PC just dropped to its all-time best price: $279
If you need a laptop without the portability, a mini PC is exactly what you’re looking for — small, powerful, and affordable. For example, this Beelink EQR5 mini PC is on sale for $279 on…
Critical Mitel MiCollab Flaw Exposes Systems to Unauthorized File and Admin Access
Dec 05, 2024Ravie LakshmananVulnerability / IoT Security Cybersecurity researchers have released a proof-of-concept (PoC) exploit that strings together a now-patched critical security flaw impacting Mitel MiCollab with an arbitrary file read zero-day, granting an attacker…
Europol Shuts Down Manson Market Fraud Marketplace, Seizes 50 Servers
Dec 05, 2024Ravie LakshmananOnline Fraud / Cybercrime Europol on Thursday announced the shutdown of a clearnet marketplace called Manson Market that facilitated online fraud on a large scale. The operation, led by German authorities, has…
Shock report: The foldable market really needs Apple to make a folding iPhone
A gloomy new report on the state of the foldable phones market contains one chink of light: Apple is expected to save the day in 2026. Ross Young, a well-known and impressively accurate analyst, published…
Stop putting screens on keyboards, please
I’ve been a keyboard nut for a long time. I build mechanical keyboards on my own, soldering iron and all. And I love the excessive way you can customize them, with wireless or wooden keycaps,…
Hackers Target Uyghurs and Tibetans with MOONSHINE Exploit and DarkNimbus Backdoor
A previously undocumented threat activity cluster dubbed Earth Minotaur is leveraging the MOONSHINE exploit kit and an unreported Android-cum-Windows backdoor called DarkNimbus to facilitate long-term surveillance operations targeting Tibetans and Uyghurs. “Earth Minotaur uses MOONSHINE…
Backdoor slips into popular code library, drains ~$155k from digital wallets
Hackers pocketed as much as $155,000 by sneaking a backdoor into a code library used by developers of smart contract apps that work with the cryptocurrency known as Solana. The supply-chain attack targeted solana-web3.js, a…
Planet Technology Planet WGS-804HPT | CISA
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 9.3 ATTENTION: Exploitable remotely/Low attack complexity Vendor: Planet Technology Equipment: Planet WGS-804HPT Vulnerabilities: Stack-based Buffer Overflow, Improper Neutralization of Special Elements used in an OS Command (‘OS Command…
AutomationDirect C-More EA9 Programming Software
View CSAF 1. EXECUTIVE SUMMARY CVSS v4 8.4 ATTENTION: Low attack complexity Vendor: AutomationDirect Equipment: C-More EA9 Programming Software Vulnerabilities: Stack-based Buffer Overflow 2. RISK EVALUATION Successful exploitation of these vulnerabilities could result in memory…