3CX Breach Was a Double Supply Chain Compromise
We learned some remarkable new details this week about the recent supply-chain attack on VoIP software provider 3CX, a complex,…
April 2023
The Boulet Brothers Give Us the Spooky Scoop on Their Halfway to Halloween Shudder Special
Who says it’s too early for spooky season? The Boulet Brothers are here to cast a spell on spring with…
Lazarus APT group employed Linux Malware in recent attacks and was linked to 3CX supply chain attack
North Korea-linked APT group Lazarus employed new Linux malware in attacks that are part of Operation Dream Job. North Korea-linked…
Multinational ICICI Bank leaks passports and credit card numbers
ICICI Bank leaked millions of records with sensitive data, including financial information and personal documents of the bank’s clients. In…
TikTok’s CEO Breaks Silence After Brutal Congressional Hearing
On Thursday, TikTok CEO Shou Zi Chew give his first interview since sparring with House lawmakers in a testy hearing…
‘GhostToken’ Opens Google Accounts to Permanent Infection
A bug in how Google Cloud Platform handles OAuth tokens opened the door to Trojan apps that could access anything…
The Transformers Animated Movie Will Follow the Origins of Optimus Prime and Megatron
Whether or not this summer’s Transformers: Rise of the Beasts brings the franchise back to its glory days, the robots…
VMware fixed a critical flaw in vRealize that allows executing arbitrary code as root
VMware fixed two severe flaws, tracked as CVE-2023-20864 and CVE-2023-20865, impacting the VMware Aria Operations for Logs product. The virtualization…