Month: December 2024
-
Researchers Exploit Reflected Input with HTTP Range Header To Bypass Browser Restriction
Security researchers have uncovered a technique that takes previously unexploitable reflected input vulnerabilities and turns them into fully functional attacks…
-
WhatsApp Wins NSO Pegasus Spyware Hacking Case After 5-Year Legal Battle
After five years of contentious litigation, Meta Platforms Inc., the parent company of WhatsApp, emerged victorious in its lawsuit against…
-
McDonald’s Delivery App Vulnerability Let Anyone Place an Order for Just $0.01
A critical vulnerability was found in McDonald’s McDelivery, one of India’s top food delivery apps, allowing unlimited orders for just…
-
OSS in the crosshairs: Cryptomining hacks highlight key new threat
A dozen packages associated with the popular, open source projects *rspack* and *vant* were compromised this week by threat actors…
-
LockBit Developer Rostislav Panev Charged for Billions in Global Ransomware Damages
A dual Russian and Israeli national has been charged in the United States for allegedly being the…
-
Sophos fixed critical vulnerabilities in its Firewall product
Sophos fixed three Sophos Firewall flaws that could lead to SQL injection, privileged SSH access to devices, and remote code…
-
Google Chrome uses AI to analyze pages in new scam detection feature
Google is using artificial intelligence to power a new Chrome scam protection feature that analyzes brands and the intent…
-
FTC Finalizes Order with Marriott and Starwood Requiring Them to Implement a Robust Data Security Pr
The Federal Trade Commission finalized an order requiring Marriott International, Inc. and its subsidiary Starwood Hotels -& Resorts Worldwide LLC…
-
Holiday Bonus-Themed QR Code-Based Credential Phishing
Author: Kahng AnCofense Intelligence has recently identified a series of end-of-year and holiday bonus-themed credential phishing emails. These are notable…
-
Unwrapping Christmas scams | Unlocked 403 cybersecurity podcast (ep. 9)
VideoUnwrapping Christmas scams -| Unlocked 403 cybersecurity podcast (ep. 9)========================================================================ESET’s Jake Moore reveals why the holiday season is a prime…