03 April 2024PressroomMobile Security/Zero Day Google has revealed that two Android security flaws affecting its Pixel smartphones were exploited in the wild by forensics firms. High severity zero-day vulnerabilities are…
Category: Cyber Security
Clean up your cloud security law now
A federal review board called on Microsoft to prioritize its approach to cloud security and stop passing the burden on customers in the wake of a crisis July 2023 cyber…
Google Chrome Beta tests new DBSC protection against cookie theft attacks
03 April 2024PressroomBrowser Security/Session Hijacking Google on Tuesday said it is testing a new feature in Chrome called Device Session Credentials (DBSC) to protect users from session cookie theft by…
Because cybersecurity is an issue that concerns the whole of society
This emerges clearly from the comments of Jen Easterly, director of the Cybersecurity and Infrastructure Security Agency (CISA), in a recent Congressional hearing on Chinese cyber operationsand from documents leaked…
Attack surface management and vulnerability management
03 April 2024News about hackersCyber security/penetration testing Attack surface management (ASM) and vulnerability management (VM) are often confused, and while they overlap, they are not the same thing. The main…
Mispadu Trojan Targets Europe, Compromises Thousands of Credentials
The banking trojan known as Mispadu has expanded its focus beyond Latin America (LATAM) and Spanish-speaking individuals to target users in Italy, Poland, and Sweden. According to Morphisec, targets of…
The evolution of Iran’s cyber influence operations in support of Hamas
When the war between Israel and Hamas began on October 7, 2023, Iranian cyber groups immediately activated to provide support to Hamas. These Iranian-backed and Iranian-affiliated actors have combined influence…
How to counter disinformation campaigns in global elections
COMMENT In recent global election cycles, the Internet and social media have facilitated the widespread spread of fake news, misleading memes, and deepfake content, overwhelming voters. Since it is difficult…
Critical security flaw found in the popular WordPress plugin LayerSlider
03 April 2024PressroomWeb Security/Vulnerabilities A critical security flaw affecting the LayerSlider WordPress plugin could be exploited to extract sensitive information from databases, such as password hashes. The flaw, designated CVE-2024-2879,…
Attackers abuse Google’s advertising feature to target Slack and Notion users
The attackers are once again abusing Google Ads to target people with information-stealing malware, this time using an ad tracking feature to lure business users with fake ads for popular…