Explore
One malicious car could trick smart traffic control systems in the US
Academics from the University of Michigan have shown that one single malicious car could trick US-based...
PyPI package backdoors Macs using the Sliver pen-testing suite
A new package mimicked the popular 'requests' library on the Python Package Index (PyPI) to target...
Dell API abused to steal 49M customer records in data breach
The threat actor behind the recent Dell data breach revealed they scraped information of 49 million...
Dell warns of data breach, 49M customers allegedly affected
Dell is warning customers of a data breach after a threat actor claimed to have stolen...
Android bug can leak DNS traffic with VPN kill switch enabled
Image: Midjourney A Mullvad VPN user has discovered that Android devices leak DNS queries when switching...
Google rolls back reCaptcha update to fix Firefox issues
Google has rolled back a recent release of its reCaptcha captcha script after a bug caused...
Microsoft says April Windows updates break VPN connections
Microsoft has confirmed that the April 2024 Windows security updates break VPN connections across client and...
Fake job interviews target developers with new Python backdoor
Fake Job Interviews Target Devs With New Python Backdoor “A new campaign tracked as “Dev Popper”...
Muddling Meerkat Hackers Manipulate DNS Using China's Great Firewall
A new cluster of activity tracked as "Muddling Meerkat" is believed to be linked to a...
US Post Office phishing sites get as much traffic as the real one
Security researchers analyzing phishing campaigns that target United States Postal Service (USPS) saw that the traffic...
Okta warns of "unprecedented" credential stuffing attacks on customers
Okta warns of an "unprecedented" spike in credential stuffing attacks targeting its identity and access management...
Mitre says state hackers breached its network via Ivanti zero-days
The MITRE Corporation says that a state-backed hacking group breached its systems in January 2024 by...
HelloKitty ransomware rebrands, releases CD Projekt and Cisco data
An operator of the HelloKitty ransomware operation announced they changed the name to 'HelloGookie,' releasing passwords...
GitHub comments abused to push malware via Microsoft repo URLs
A GitHub flaw, or possibly a design decision, is being abused by threat actors to distribute...
Medium bans AI-generated content from its paid Partner Program
Medium is banning AI-generated content from its paid Partner program, notifying users that the new policy...
OpenTable is adding your first name to previously anonymous reviews
Restaurant reservation platform OpenTable says that all reviews on the platform will no longer be fully...
Critical Rust flaw enables Windows command injection attacks
Link URL: https://www.bleepingcomputer.com/news/security/critical-rust-flaw-enables-windows-command-injection-attacks/ Comments URL: https://tildes.net/~comp/1fjh/critical_vulnerability_in_rusts_command_library_allows_for_command_injection_when_using_its_api_to Votes: 15 Comments: 4
Critical RCE bug in 92,000 D-Link NAS devices now exploited in attacks
Image: Midjourney Attackers are now actively targeting over 92,000 end-of-life D-Link Network Attached Storage (NAS) devices...
Notepad++ wants your help in "parasite website" shutdown
The Notepad++ project is seeking the public's help in taking down a copycat website that closely...
Over 92,000 exposed D-Link NAS devices have a backdoor account
A threat researcher has disclosed a new arbitrary command injection and hardcoded backdoor flaw in multiple...
Microsoft warns that Gmail blocks some Outlook emails as 'spam'
Microsoft has confirmed that some Outlook.com users are experiencing issues with emails being blocked and marked...