News

WhatsApp compromise leads to Astaroth deployment

Bys s November 20, 2025

Another campaign targeting WhatsApp users in Brazil spreads like a worm and employs multiple payloads for credential theft, session hijacking, and persistence

News

Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages
Bys s January 13, 2026

Cybersecurity researchers have discovered a major web skimming campaign that has been active since January 2022, targeting several major payment networks like American Express, Diners Club, Discover, JCB Co., Ltd., Mastercard, and UnionPay. “Enterprise organizations that are clients of these payment providers are the most likely to be impacted,” Silent Push said in a report…

Read More Long-Running Web Skimming Campaign Steals Credit Cards From Online Checkout Pages
News

Apple to Pay Siri Users $20 Per Device in Settlement Over Accidental Siri Privacy Violations
By January 3, 2025

Apple has agreed to pay $95 million to settle a proposed class action lawsuit that accused the iPhone maker of invading users’ privacy using its voice-activated Siri assistant. The development was first reported by Reuters. The settlement applies to U.S.-based individuals current or former owners or purchasers of a Siri-enabled device who had their confidential…

Read More Apple to Pay Siri Users $20 Per Device in Settlement Over Accidental Siri Privacy Violations
News

New Security Flaws Found in VMware Tools and CrushFTP — High Risk, No Workaround
Bys s March 26, 2025

Broadcom has issued security patches to address a high-severity security flaw in VMware Tools for Windows that could lead to an authentication bypass. Tracked as CVE-2025-22230, the vulnerability is rated 7.8 on the ten-point Common Vulnerability Scoring System (CVSS). “VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control,” Broadcom said…

Read More New Security Flaws Found in VMware Tools and CrushFTP — High Risk, No Workaround
News

The ‘Worst in Show’ CES Products Put Your Data at Risk and Cause Waste, Privacy Advocates Say
Bys s January 9, 2025

Some of the innovative products presented at CES can pose a serious risk to data and privacy. The post The ‘Worst in Show’ CES Products Put Your Data at Risk and Cause Waste, Privacy Advocates Say appeared first on SecurityWeek.

Read More The ‘Worst in Show’ CES Products Put Your Data at Risk and Cause Waste, Privacy Advocates Say
News

CISA, experts warn of Crush file transfer attacks after a controversial disclosure
Bys s April 9, 2025

Jonathan Greig reports on another vulnerability affecting file transfer software that has been exploited soon after disclosure. In this case, though, there’s some contentious statements about responsible disclosure or lack thereof. Federal cybersecurity officials as well as incident responders at cyber companies say hackers are exploiting a vulnerability within the popular file transfer tool Crush….

Read More CISA, experts warn of Crush file transfer attacks after a controversial disclosure
News

US Imposes Sanctions on Russian and Iranian Groups Over Disinformation Targeting American Voters
By January 3, 2025

The United States has imposed sanctions on two groups linked to Iranian and Russian efforts to target American voters with disinformation ahead of this year’s election. The post US Imposes Sanctions on Russian and Iranian Groups Over Disinformation Targeting American Voters appeared first on SecurityWeek.

Read More US Imposes Sanctions on Russian and Iranian Groups Over Disinformation Targeting American Voters

Similar Posts