News

The future of MFA is clear – but is it here yet?

Bys s March 20, 2025

Not all authentication is equal to the task in 2025, but there is a best choice within reach

News

What PCI DSS v4 Really Means – Lessons from A&F Compliance Journey
Bys s March 7, 2025

Access on-demand webinar here Avoid a $100,000/month Compliance Disaster March 31, 2025: The Clock is Ticking. What if a single overlooked script could cost your business $100,000 per month in non-compliance fines? PCI DSS v4 is coming, and businesses handling payment card data must be prepared. Beyond fines, non-compliance exposes businesses to web skimming, third-party…

Read More What PCI DSS v4 Really Means – Lessons from A&F Compliance Journey
News

ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware
Bys s December 1, 2025

A threat actor known as ShadyPanda has been linked to a seven-year-long browser extension campaign that has amassed over 4.3 million installations over time. Five of these extensions started off as legitimate programs before malicious changes were introduced in mid-2024, according to a report from Koi Security, attracting 300,000 installs. These extensions have since been…

Read More ShadyPanda Turns Popular Browser Extensions with 4.3 Million Installs Into Spyware
News

Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container Escapes
Bys s April 10, 2025

Cybersecurity researchers have detailed a case of an incomplete patch for a previously addressed security flaw impacting the NVIDIA Container Toolkit that, if successfully exploited, could put sensitive data at risk. The original vulnerability CVE-2024-0132 (CVSS score: 9.0) is a Time-of-Check Time-of-Use (TOCTOU) vulnerability that could lead to a container escape attack and allow for

Read More Incomplete Patch in NVIDIA Toolkit Leaves CVE-2024-0132 Open to Container Escapes
News

SuperCard X Android Malware Enables Contactless ATM and PoS Fraud via NFC Relay Attacks
Bys s April 21, 2025

A new Android malware-as-a-service (MaaS) platform named SuperCard X can facilitate near-field communication (NFC) relay attacks, enabling cybercriminals to conduct fraudulent cashouts. The active campaign is targeting customers of banking institutions and card issuers in Italy with an aim to compromise payment card data, fraud prevention firm Cleafy said in an analysis. There is evidence…

Read More SuperCard X Android Malware Enables Contactless ATM and PoS Fraud via NFC Relay Attacks
News

PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
Bys s July 11, 2025

Cybersecurity researchers have discovered a set of four security flaws in OpenSynergy’s BlueSDK Bluetooth stack that, if successfully exploited, could allow remote code execution on millions of transport vehicles from different vendors. The vulnerabilities, dubbed PerfektBlue, can be fashioned together as an exploit chain to run arbitrary code on cars from at least three major…

Read More PerfektBlue Bluetooth Vulnerabilities Expose Millions of Vehicles to Remote Code Execution
News

Stealing user credentials with evilginx
Bys s March 28, 2025

A malevolent mutation of the widely used nginx web server facilitates Adversary-in-the-Middle action, but there’s hope

Read More Stealing user credentials with evilginx

Similar Posts