Skip to content
data breach Page 20

data breach

Gmail’s New Shielded Email Feature Lets Users Create Aliases for Email Privacy

Gmail’s New Shielded Email Feature Lets Users Create Aliases for Email Privacy

Nov 18, 2024Ravie LakshmananPrivacy / Email Security Google appears to be readying a new feature called Shielded Email that allows users to create email aliases when signing up for online services and better combat spam.… 

Read More »Gmail’s New Shielded Email Feature Lets Users Create Aliases for Email Privacy
NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta’s Lawsuit

NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta’s Lawsuit

Nov 18, 2024Ravie LakshmananMobile Security / Spyware Legal documents released as part of an ongoing legal tussle between Meta’s WhatsApp and NSO Group have revealed that the Israeli spyware vendor used multiple exploits targeting the… 

Read More »NSO Group Exploited WhatsApp to Install Pegasus Spyware Even After Meta’s Lawsuit
Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites

Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites

Nov 18, 2024Ravie LakshmananVulnerability / Website Security A critical authentication bypass vulnerability has been disclosed in the Really Simple Security (formerly Really Simple SSL) plugin for WordPress that, if successfully exploited, could grant an attacker… 

Read More »Critical WordPress Plugin Vulnerability Exposes Over 4 Million Sites
PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released

PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released

Nov 16, 2024Ravie LakshmananVulnerability / Network Security Palo Alto Networks has released new indicators of compromise (IoCs) a day after the network security vendor confirmed that a new zero-day vulnerability impacting its PAN-OS firewall management… 

Read More »PAN-OS Firewall Vulnerability Under Active Exploitation – IoCs Released
DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials

DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials

A threat actor known as BrazenBamboo has exploited an unresolved security flaw in Fortinet’s FortiClient for Windows to extract VPN credentials as part of a modular framework called DEEPDATA. Volexity, which disclosed the findings Friday,… 

Read More »DEEPDATA Malware Exploiting Unpatched Fortinet Flaw to Steal VPN Credentials
Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations

Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations

Nov 15, 2024Ravie LakshmananCyber Espionage / Malware Cybersecurity researchers have shed light on a new remote access trojan and information stealer used by Iranian state-sponsored actors to conduct reconnaissance of compromised endpoints and execute malicious… 

Read More »Iranian Hackers Deploy WezRat Malware in Attacks Targeting Israeli Organizations
Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform

Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform

Nov 15, 2024Ravie LakshmananArtificial Intelligence / Vulnerability Cybersecurity researchers have disclosed two security flaws in Google’s Vertex machine learning (ML) platform that, if successfully exploited, could allow malicious actors to escalate privileges and exfiltrate models… 

Read More »Researchers Warn of Privilege Escalation Risks in Google’s Vertex AI ML Platform
Vietnamese Hacker Group Deploys New PXA Stealer Targeting Europe and Asia

Vietnamese Hacker Group Deploys New PXA Stealer Targeting Europe and Asia

Nov 15, 2024Ravie LakshmananMalware / Credential Theft A Vietnamese-speaking threat actor has been linked to an information-stealing campaign targeting government and education entities in Europe and Asia with a new Python-based malware called PXA Stealer.… 

Read More »Vietnamese Hacker Group Deploys New PXA Stealer Targeting Europe and Asia