‘ResumeLooters’ Attackers Steal Millions of Career Records
The cyberattackers used SQL injection and XSS to target 65 retail companies and job recruiters, stealing databases with unique emails…
News
Crucial Airline Flight Planning App Open to Interception Risks
Airbus-owned NAVBLUE fixed the issue after a penetration testing firm disclosed the problem to the company.
Twin Max-Severity Bugs Open Fortinet’s SIEM to Code Execution
Full 10s on the CVSS vulnerability severity scale have been assigned to two flaws discovered in Fortinet's FortiSIEM cybersecurity operations…
World Govs, Tech Giants Sign Spyware Responsibility Pledge
France, the UK, the US, and others will work on a framework for the responsible use of tools like NSO…
Pegasus Spyware Targets Jordanian Civil Society in Wide-Ranging Attacks
As the Middle East nation enforces strict cybercrime laws, citizens face crackdowns on free speech with nearly three dozen journalists…
AnyDesk Compromised, Passwords Revoked
Production systems at the remote access company were breached, leading AnyDesk to revoke code signing certificate and reset Web portal…
Deepfake-Generating Apps Explode, Allowing Multimillion-Dollar Corporate Heists
Deepfakes are fast becoming more realistic, and access to them more democratic, enabling even ordinary attackers to enact major fraud.…
Fresh ‘Mispadu Stealer’ Variant Emerges
Latest iteration of the malware appears aimed at targets in Mexico.
Google: Govs Drive Sharp Growth of Commercial Spyware Cos
Private spyware vendors were behind nearly half of all zero-day exploits in Google products since 2014.
Microsoft Azure HDInsight Bugs Expose Big Data to Breaches
Security holes in a big data tool could lead to big data compromise.