September Patch Tuesday handles 81 CVEs
The last round of fixes before Win 10’s final shout touches 15 product families, including Xbox
Similar Posts
Maryland Man Pleads Guilty to Conspiracy to Commit Wire Fraud
Bys sMinh Phoung Ngoc Vong Participated in a Multi-Year Fraudulent Scheme to Obtain Remote Information Technology Work With U.S. Companies and Government Agencies for Persons Based in China Minh Phuong Ngoc Vong, 40, of Bowie, Maryland, pleaded guilty today to conspiracy to commit wire fraud in connection with a scheme whereby he conspired with unknown individuals,…
New Sni5Gect Attack Crashes Phones and Downgrades 5G to 4G without Rogue Base Station
Bys sA team of academics has devised a novel attack that can be used to downgrade a 5G connection to a lower generation without relying on a rogue base station (gNB). The attack, per the ASSET (Automated Systems SEcuriTy) Research Group at the Singapore University of Technology and Design (SUTD), relies on a new open-source software…
Belgian prosecutor probes alleged Chinese hacking of intelligence service
Bys sThe Straits Times reports: The Belgian federal prosecutor said on Wednesday it had started a probe into alleged Chinese hacking of Belgium’s intelligence service VSSE in November 2023, confirming an earlier report by Belgian daily Le Soir. The prosecutor added that it had received an accusation filed by VSSE in relation to the case. The…
Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads
Bys sThe threat actor behind Rhadamanthys has also advertised two other tools called Elysium Proxy Bot and Crypt Service on their website, even as the flagship information stealer has been updated to support the ability to collect device and web browser fingerprints, among others. “Rhadamanthys was initially promoted through posts on cybercrime forums, but soon it…
US Charges 3 Russians for Operating Cryptocurrency Mixers Used by Cybercriminals
Bys sThe US Justice Department has announced charges against three Russians for operating the Blender and Sinbad cryptocurrency mixers. The post US Charges 3 Russians for Operating Cryptocurrency Mixers Used by Cybercriminals appeared first on SecurityWeek.
CISA Adds Four Actively Exploited Vulnerabilities to KEV Catalog, Urges Fixes by Feb 25
Bys sThe U.S. Cybersecurity and Infrastructure Security Agency (CISA) on Tuesday added four security flaws to its Known Exploited Vulnerabilities (KEV) catalog, citing evidence of active exploitation in the wild. The list of vulnerabilities is as follows – CVE-2024-45195 (CVSS score: 7.5/9.8) – A forced browsing vulnerability in Apache OFBiz that allows a remote attacker to…