CVE-2023-48788, a critical SQL injection vulnerability in Fortinet’s FortiClient EMS product, is being exploited in the wild.
The post Recent Fortinet FortiClient EMS Vulnerability Exploited in Attacks appeared first on SecurityWeek.
New ‘GoFetch’ Apple CPU Attack Exposes Crypto Keys
Researchers detail GoFetch, a new side-channel attack impacting Apple CPUs that could allow an attacker to obtain secret keys.
The post New ‘GoFetch’ Apple CPU Attack Exposes Crypto Keys appeared first on SecurityWeek.
$200,000 Awarded at Pwn2Own 2024 for Tesla Hack
Participants earned a total of $732,500 on the first day of Pwn2Own Vancouver 2024 for hacking a Tesla, operating systems, and other software.
The post $200,000 Awarded at Pwn2Own 2024 for Tesla Hack appeared first on SecurityWeek.
300,000 Systems Vulnerable to New Loop DoS Attack
Academic researchers describe a new application-layer loop DoS attack affecting Broadcom, Honeywell, Microsoft and MikroTik.
The post 300,000 Systems Vulnerable to New Loop DoS Attack appeared first on SecurityWeek.
New Attack Shows Risks of Browsers Giving Websites Access to GPU
Researchers demonstrate remote GPU cache side-channel attack from within browsers against AMD and NVIDIA graphics cards.
The post New Attack Shows Risks of Browsers Giving Websites Access to GPU appeared first on SecurityWeek.
IMF Emails Hacked
The International Monetary Fund (IMF) detects a cybersecurity incident that involved nearly a dozen email accounts getting hacked.
The post IMF Emails Hacked appeared first on SecurityWeek.
Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate
Red Canary’s 2024 Threat Detection Report is based on analysis of almost 60,000 threats across 216 petabytes of telemetry from over 1,000 customers’ endpoints.
The post Threat Detection Report: Cloud Attacks Soar, Mac Threats and Malvertising Escalate appeared first on SecurityWeek.
Cyber Madness Bracket Challenge – Register to Play
SecurityWeek’s Cyber Madness Bracket Challenge is a contest designed to bring the community together in a fun, competitive way through one of America’s top sporting events.
The post Cyber Madness Bracket Challenge – Register to Play appeared first on SecurityWeek.
Major CPU, Software Vendors Impacted by New GhostRace Attack
CPU makers Intel, AMD, Arm and IBM, as well as software vendors, are impacted by a new speculative race condition (SRC) attack named GhostRace.
The post Major CPU, Software Vendors Impacted by New GhostRace Attack appeared first on SecurityWeek.
Exploited Building Access System Vulnerability Patched 5 Years After Disclosure
Vulnerabilities affecting a Nice Linear physical access product, including an exploited flaw, patched five years after their disclosure.
The post Exploited Building Access System Vulnerability Patched 5 Years After Disclosure appeared first on SecurityWeek.
