SolarWinds malware has “curious” ties to Russian-speaking hackers
Similarities could prove a link or might be part of a false flag operation. Enlarge (credit: Getty Images) The malware used to hack Microsoft, security company FireEye, and at least a half-dozen federal agencies has “interesting similarities.....»»
How VPNs protect you from governments, thieves, and your boss
Governments, ISPs, and even your employer can watch every online move you make. Here's how the best VPN apps can keep your online life safe.The best VPN for iPhone apps can protect you from governments, hackers, even your employerMany countries openl.....»»
Hackers infect ISPs with malware that steals customers’ credentials
Zero-day that was exploited since June to infect ISPs finally gets fixed. Enlarge (credit: Getty Images) Malicious hackers likely working on behalf of the Chinese government have been exploiting a high-severity zero-day.....»»
Android malware steals payment card data using previously unseen technique
Attacker then emulates the card and makes withdrawals or payments from victim's account. Enlarge (credit: d3sign) Newly discovered Android malware steals payment card data using an infected device’s NFC reader and rela.....»»
A new malware threat to macOS adds to the data-stealing surge
Mac users face another macOS threat that aims to steal your data and targets x86_64 and Arm architectures......»»
5 years ago, the best (and bloodiest) movie about marriage became an instant cult classic
In 2019, a horror-comedy about the ups and downs of a new marriage, and the toxic ties of family, became a sleeper hit and is now a cult classic......»»
New macOS malware impersonates popular apps then steals your data
Security researchers have discovered new macOS malware that’s built to steal your most sensitive data. Dubbed ‘Cthulhu Stealer,’ the malware targets users by impersonating popular apps so it can harvest your system password, iCloud Keychain pas.....»»
Evolved and more powerful macOS malware strain sold cheaply to criminals
Researchers have discovered another data-seizing macOS malware, with "Cthulhu Stealer" sold to online criminals for just $500 a month.Cthulhu Stealer in action [Cado Security]The Mac is becoming even more of a target for malware, with warnings surfac.....»»
This new Android malware can steal your card details via the NFC chip
Security researchers spot a sophisticated attack that steals people's NFC data and can be used to steal money, and more......»»
How human urine can disrupt soil health and water quality
Festival season is in full flow, and like any self-respecting plant-soil biogeochemist attending a local music festival, I'm curious about how these outdoor events might modify important nutrient cycles......»»
Chemists succeed in upscaling a common reagent for industrial level applications
The metallic element samarium, when bound with other elements, is an incredibly useful chemical reagent for synthesizing molecules that can lead to new pharmaceuticals. Discovered in a Russian mine in 1879, the element was named after the mineral it.....»»
Another critical SolarWinds Web Help Desk bug fixed (CVE-2024-28987)
A week after SolarWinds released a fix for a critical code-injection-to-RCE vulnerability (CVE-2024-28986) in Web Help Desk (WHD), another patch for another critical flaw (CVE-2024-28987) in the company’s IT help desk solution has been pushed o.....»»
GitHub Enterprise Server has a critical security flaw, so patch now
A newly discovered security flaw allows hackers to elevate their privileges and thus take over vulnerable endpoints......»»
Android malware uses NFC to steal money at ATMs
ESET researchers uncovered NGate malware, which can relay data from victims’ payment cards via a malicious app installed on their Android devices to the attacker’s rooted Android phone. Attack overview (Source: ESET) Unauthorized ATM withdrawals.....»»
Toyota confirms data breach after info leaked on cybercrime forum
Carmaker confirms losing hundreds of gigabytes of sensitive customer data to hackers calling themselves ZeroSevenGroup......»»
How Russian gender-based disinformation could influence the 2024 US presidential election
Most people have a general understanding of disinformation—false information that is intentionally created to cause harm. Disinformation becomes "gendered" when deliberately false information draws on common understandings of issues like masculinit.....»»
Study finds European attitudes shifted after Ukraine invasion
An ongoing survey captures how the Russian invasion of Ukraine affected attitudes in European countries not directly involved in the conflict......»»
Russian pensioners urge Vladimir Putin to rescue Starliner astronauts
"They don't know how to get back. We ask you to help them." Enlarge / Screenshot from Putin's squad video on bringing Starliner's astronauts home. (credit: Putin's Squads Z Soc Sprav) One of the odder propaganda phenome.....»»
0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193)
CVE-2024-38193, an actively exploited zero-day that Microsoft patched earlier this month, has been leveraged by North Korean hackers to install a rootkit on targets’ computers, Gen Digital researchers have revealed. About CVE-2024-38193 CVE-202.....»»
Cybercriminals exploit file sharing services to advance phishing attacks
Threat actors use popular file-hosting or e-signature solutions as a disguise to manipulate their targets into revealing private information or downloading malware, according to Abnormal Security. A file-sharing phishing attack is a unique type of ph.....»»
Vulnerability in Microsoft apps allowed hackers to spy on Mac users
A vulnerability found in Microsoft apps for macOS allowed hackers to spy on users. Security researchers from Cisco Talos reported in a blog post how the vulnerability could be exploited by attackers and what Microsoft has been doing to fix the explo.....»»