Russian cybercriminals are advertising a new macOS malware, Banshee Stealer, capable of stealing passwords, browser data, and crypto wallets.
The post New Banshee Stealer macOS Malware Priced at $3,000 Per Month appeared first on SecurityWeek.
SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day
The US cybersecurity agency CISA warns that a recent SolarWinds Web Help Desk vulnerability has been exploited in the wild.
The post SolarWinds Web Help Desk Vulnerability Possibly Exploited as Zero-Day appeared first on SecurityWeek.
Copy2Pwn Zero-Day Exploited to Bypass Windows Protections
ZDI details a zero-day named Copy2Pwn and tracked as CVE-2024-38213, which cybercriminals exploited to bypass MotW protections in Windows.
The post Copy2Pwn Zero-Day Exploited to Bypass Windows Protections appeared first on SecurityWeek.
Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw
Security experts are ratcheting up the urgency for Windows admins to patch a wormable, pre-auth remote code execution vulnerability in the Windows TCP/IP stack.
The post Zero-Click Exploit Concerns Drive Urgent Patching of Windows TCP/IP Flaw appeared first on SecurityWeek.
Ransomware Attacks on Industrial Firms Surged in Q2 2024
Dragos has seen a significant increase in ransomware attacks on industrial organizations in Q2 2024 compared to the previous quarter.
The post Ransomware Attacks on Industrial Firms Surged in Q2 2024 appeared first on SecurityWeek.
SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability
SolarWinds has released a hotfix for a critical Java deserialization remote code execution vulnerability in Web Help Desk.
The post SolarWinds Issues Hotfix for Critical Web Help Desk Vulnerability appeared first on SecurityWeek.
Google Disrupts Iranian Hacking Activity Targeting US Presidential Election
Google says it blocked Iranian APT42 hackers from accessing the personal email accounts of individuals affiliated with the US elections.
The post Google Disrupts Iranian Hacking Activity Targeting US Presidential Election appeared first on SecurityWeek.
Palo Alto Networks Patches Unauthenticated Command Execution Flaw in Cortex XSOAR
Palo Alto Networks has patched multiple vulnerabilities, including ones rated high severity, in several products.
The post Palo Alto Networks Patches Unauthenticated Command Execution Flaw in Cortex XSOAR appeared first on SecurityWeek.
Russian Sentenced to Prison in US for Selling Stolen Information
Georgy Kavzharadze was sentenced to prison in the US for selling stolen financial, login, and personal information on an online cybercriminal marketplace.
The post Russian Sentenced to Prison in US for Selling Stolen Information appeared first on SecurityWeek.
AutoCanada Hit by Cyberattack
AutoCanada has disclosed a disruptive cybersecurity incident after also being impacted by the recent CDK Global ransomware attack.
The post AutoCanada Hit by Cyberattack appeared first on SecurityWeek.
