ICYMI: 2024-09-04
Latest Headlines
North Korean Hackers Targets Job Seekers with Fake FreeConference App
Android Users Urged to Install Latest Security Updates to Fix Actively Exploited Flaw
Researchers Find Over 22,000 Removed PyPI Packages at Risk of Revival Hijack
Zyxel Patches Critical OS Command Injection Flaw in Access Points and Routers
Clearview AI Faces €30.5M Fine for Building Illegal Facial Recognition Database
Hackers Use Fake GlobalProtect VPN Software in New WikiLoader Malware Attack
The Japanese Robot Controversy Lurking in Israel’s Military Supply Chain
Microsoft Tackling Windows Logfile Flaws With New HMAC-Based Security Mitigation
Crypto Vulnerability Allows Cloning of YubiKey Security Keys
Zyxel Patches Critical Vulnerabilities in Networking Devices
White House Addresses BGP Vulnerabilities in New Internet Routing Security Roadmap
D-Link Warns of Code Execution Flaws in Discontinued Router Model
Android’s September 2024 Update Patches Exploited Vulnerability
Criminal IP Secures PCI DSS v4.0 Certification, Enhancing Payment Security with Top-Level Compliance
Aembit Named Finalist in Best Identity Management Solution for 2024 SC Awards
New Emansrepo Malware Weaponizing HTML Files To Attack Windows Users
RomCom Group Exploiting Microsoft Office 0-day To Deploy Ransomware
Researchers Unpacked ViperSoftX Malware’s Evasion Tactics And Techniques
INE Security Announces 5 Practical Steps to Elevate Cyber Defense Strategies
Zyxel Critical Vulnerability Let Attackers Perform OS Command Injection
Hackers Abuse Red Team Tool MacroPack To Deliver Multiple Malicious Payloads
Microchip Technology confirms data was stolen in cyberattack
Red team tool ‘MacroPack’ abused in attacks to deploy Brute Ratel
US cracks down on Russian disinformation before 2024 election
Cisco fixes root escalation vulnerability with public exploit code
New Eucleak attack lets threat actors clone YubiKey FIDO keys
Cisco warns of backdoor admin account in Smart Licensing Utility
Hackers inject malicious JS in Cisco store to steal credit cards, credentials
Google backports fix for Pixel EoP flaw to other Android devices
Criminal IP Earns PCI DSS v4.0 Certification for Top-Level Security
Revival Hijack supply-chain attack threatens 22,000 PyPI packages
– MTZ