SecurityWeek1h
27 DDoS Attack Services Taken Down by Law Enforcement
Law enforcement agencies in 15 countries cooperated in taking down 27 websites selling DDoS-for-hire services.
SecurityWeek2h
Cleo Patches Exploited Flaw as Security Firms Detail Malware Pushed in Attacks
Cleo has released patches for the exploited vulnerability and security firms have detailed the malware delivered in attacks.
SecurityWeek3h
Hunk Companion, WP Query Console Vulnerabilities Chained to Hack WordPress Sites
Two vulnerabilities in the Hunk Companion and WP Query Console WordPress plugins allow attackers to backdoor websites.
SecurityWeek15m
Mobile Surveillance Tool EagleMsgSpy Used by Chinese Law Enforcement
Lookout details EagleMsgSpy, a surveillance tool used by Chinese law enforcement to collect data from Android devices.
SecurityWeek24m
Microsoft MFA Bypassed via AuthQuake Attack
Oasis Security has disclosed AuthQuake, a method for bypassing Microsoft MFA within an hour without user interaction.
SecurityWeek18h
Apple Pushes Major iOS, macOS Security Updates
Cupertino ships iOS 18.2 and macOS Sequoia 15.2 patches to fix data leakage, sandbox escapes and code exection ...
SecurityWeek22h
Google Pays $55,000 for High-Severity Chrome Browser Bug
Google has released two Chrome 131 updates in a week to resolve multiple high-severity memory safety vulnerabilities.
SecurityWeek23h
Now on Demand: Inside a Hacker’s Playbook – How Cybercriminals Use Deepfakes
Live Attack Demonstration: A step-by-step walkthrough of a deepfake and BEC attack, where hackers use email, video, and voice ...
SecurityWeek19h
No Doughnuts Today? Cyberattack Puts Krispy Kreme in a Sticky Situation
The doughnut and coffeehouse chain confirmed a cyberattack took out parts of its online ordering system in parts of the United States.
SecurityWeek21h
BadRAM Attack Uses $10 Equipment to Break AMD Processor Protections
Academic researchers devise BadRAM, a new attack that uses $10 equipment to break AMD’s latest trusted execution environment protections.