1.3 million Android-based TV boxes backdoored; researchers still don’t know how
1.3 million Android-based TV boxes backdoored; researchers still don’t know how
https://arstechnica.com/security/2024/09/researchers-still-dont-know-how-1-3-million-android-streaming-boxes-were-backdoored/
Infection corrals devices running AOSP-based firmware into a botnet.
Bug Left Some Windows PCs Dangerously Unpatched – Krebs on Security
Bug Left Some Windows PCs Dangerously Unpatched – Krebs on Security
https://krebsonsecurity.com/2024/09/bug-left-some-windows-pcs-dangerously-unpatched/
Transport for London staff faces systems disruptions after cyberattack
Just a moment...
https://www.bleepingcomputer.com/news/security/transport-for-london-staff-faces-systems-disruptions-after-cyberattack/
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
North Korean Threat Actors Deploy COVERTCATCH Malware via LinkedIn Job Scams
https://thehackernews.com/2024/09/north-korean-threat-actors-deploy.html
North Korean hackers target developers via LinkedIn job scams, spreading malware to infiltrate Web3 and crypto firms.
Malvertising Campaign Phishes Lowe's Employees
Malvertising Campaign Phishes Lowe's Employees
https://www.darkreading.com/threat-intelligence/malvertising-campaign-phish-lowes-employees
Retail employees are being duped into divulging their credentials by typosquatting malvertisements.
Apache fixes critical OFBiz remote code execution vulnerability
Just a moment...
https://www.bleepingcomputer.com/news/security/apache-fixes-critical-ofbiz-remote-code-execution-vulnerability/
VMWare releases Fusion vulnerability with 8.8 rating
VMWare releases Fusion vulnerability with 8.8 rating
https://cyberscoop.com/vmware-vulnerability-fushion-cve-2024-38811/
The company issued a patch for the high-severity bug that allows arbitrary code execution.
Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack
Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack
https://thehackernews.com/2024/09/hackers-use-fake-globalprotect-vpn.html
Hackers are spoofing GlobalProtect VPN software using SEO poisoning to deliver WikiLoader malware in a new cyberattack.
FTC: Over $110 million lost to Bitcoin ATM scams in 2023
Just a moment...
https://www.bleepingcomputer.com/news/security/ftc-americans-lost-over-110-million-to-bitcoin-atm-scams-in-2023/
New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access
New Flaws in Microsoft macOS Apps Could Allow Hackers to Gain Unrestricted Access
https://thehackernews.com/2024/09/new-flaws-in-microsoft-macos-apps-could.html
Eight vulnerabilities in Microsoft macOS apps allow attackers to bypass permissions, gaining unauthorized access to sensitive data.
