admin

Aug 19, 2024Ravie LakshmananVulnerability / Zero-Day A newly patched security flaw in Microsoft Windows was exploited as a zero-day by Lazarus Group, a prolific state-sponsored actor affiliated with North Korea. The security vulnerability, tracked as CVE-2024-38193 (CVSS score: 7.8), has been described as a privilege escalation bug in the Windows Ancillary Function Driver (AFD.sys) for
0 Comments
Aug 16, 2024Ravie LakshmananMobile Security / Software Security A large percentage of Google’s own Pixel devices shipped globally since September 2017 included dormant software that could be used to stage nefarious attacks and deliver various kinds of malware. The issue manifests in the form of a pre-installed Android app called “Showcase.apk” that comes with excessive
0 Comments
Recent observations from the James Webb Space Telescope (JWST) have cast doubt on the long-held belief that asteroid 16 Psyche is the core remnant of a protoplanet. The JWST detected hydrated minerals on Psyche’s surface, which include hydroxyl and possibly water. This finding complicates our understanding of the asteroid’s composition and its role in the
0 Comments
Aug 16, 2024Ravie LakshmananMalware / Browser Security Cybersecurity researchers have uncovered new stealer malware that’s designed to specifically target Apple macOS systems. Dubbed Banshee Stealer, it’s offered for sale in the cybercrime underground for a steep price of $3,000 a month and works across both x86_64 and ARM64 architectures. “Banshee Stealer targets a wide range
0 Comments
Scientists have unearthed a previously unknown marine mammal species, Ontocetus posti, which lived 2.2 million years ago. Led by Dr. Mathieu Boisville from the University of Tsukuba, this discovery provides fresh insights into the evolutionary history of walruses and the impact of environmental changes on marine life. The fossil remains, found in Norwich, UK, and
0 Comments
Aug 16, 2024The Hacker NewsSaaS Security / Threat Detection SaaS applications have become indispensable for organizations aiming to enhance productivity and streamline operations. However, the convenience and efficiency these applications offer come with inherent security risks, often leaving hidden gaps that can be exploited. Conducting thorough due diligence on SaaS apps is essential to identify
0 Comments
Aug 16, 2024Ravie LakshmananCyber Attack / Malware Chinese-speaking users are the target of an ongoing campaign that distributes malware known as ValleyRAT. “ValleyRAT is a multi-stage malware that utilizes diverse techniques to monitor and control its victims and deploy arbitrary plugins to cause further damage,” Fortinet FortiGuard Labs researchers Eduardo Altares and Joie Salvio said.
0 Comments