Blog
-
Malicious npm packages target Ethereum developers
Malicious npm packages target Ethereum developers, impersonating Hardhat plugins to steal private keys and sensitive data.————————————————————————————————————————–[Hardhat](https://hardhat.org/), by the [Nomic Foundation](https://nomic.foundation/),…
-
US Treasury Department sanctioned Chinese cybersecurity firm linked to Flax Typhoon APT
The U.S. Treasury Department sanctioned Chinese cybersecurity firm Integrity Tech for its involvement in attacks attributed to the Flax Typhoon…
-
Nuclei flaw lets malicious templates bypass signature verification
A now-fixed vulnerability in the open-source vulnerability scanner Nuclei could potentially allow attackers to bypass signature verification while sneaking malicious…
-
Google Chrome is making it easier to share specific parts of long PDFs
Google is adding the Text Fragment feature to its PDF reader to make it easier to share specific parts of…
-
New FireScam Android data-theft malware poses as Telegram Premium app
A new Android malware named ‘FireScam’ is being distributed as a premium version of the Telegram app via phishing websites…
-
Longtime Tenable CEO, NetWitness Head Amit Yoran Dies at 54
[Governance -& Risk Management](https://www.govinfosecurity.com/governance-risk-management-c-93) , [IT Risk Management](https://www.govinfosecurity.com/risk-management-c-431) , [Vulnerability Assessment -& Penetration Testing (VA/PT)](https://www.govinfosecurity.com/vulnerability-assessment-penetration-testing-vapt-c-433)Longtime Tenable CEO, NetWitness Head Amit…
-
Apple Settles ‘Hey Siri’ Lawsuit for $95 Million
[Governance -& Risk Management](https://www.govinfosecurity.com/governance-risk-management-c-93) , [Privacy](https://www.govinfosecurity.com/privacy-c-151)Apple Settles ‘Hey Siri’ Lawsuit for $95 Million================================================Plaintiffs Sued After Report that Apple Eavesdropped on…
-
Beware of phishing attacks by APTC01 (Poison Ivy)
APT-C-01, known as Poison Ivy, is a persistent threat group targeting defense, government, technology, and education sectors since 2007. They…
-
Iranian and Russian Entities Sanctioned for Election Interference Using AI and Cyber Tactics
The U.S. Treasury Department’s Office of Foreign…
-
U.S. Treasury sanctions Russian and Iranian entities for interfering in the presidential election
The U.S. Treasury sanctioned entities for disinformation tied to Russian and Iranian intelligence before the 2024 presidential elections.—————————————————————————————————————————————–The U.S. Treasury…