US government warns users to patch this critical Microsoft Outlook bug
CISA adds an Outlook improper input validation bug to KEV The deadline to patch is February 27 2025 Criminals are using it for remote code execution The US Cybersecurity and…
Foh&Boh data leak leaves millions of CVs exposed – KFS, Taco Bell, Nordstrom applicants at risk
A hiring company has reportedly left millions of CVs in a publicly accessible AWS bucket Foh&Boh has partnerships with leading food and hospitality services The dataset is now closed, but…
Screen reading malware found in iOS app stores for first time – and it might steal your cryptocurrency
Apps delivering malware to users to steal crypto found on iOS app store Some of these apps have thousands of installs across iOS and Android The ‘SparkCat’ campaign has been…
Veeam backup software has a serious security flaw – here’s how to stay safe
Veeam finds security bug plaguing a number of its products The bug allows threat actors to run arbitrary commands Patches are already available, so users are instructed to update now…
Chinese hackers develop effective new hacking technique to go after business networks
Security researchers observe Chinese attackers targeting network appliances The code grants them persistent access and a number of different operations Hackers could grab system details, read sensitive user data, and…
This devious new macOS malware disguises itself as Chrome, Zoom installers
Apple has offered a patch for Ferret family malware The malware is used in associated with the ‘Contagious Interview’ campaign However some malware is still undetectable, so be on your…
Screenshot-reading malware cracks iPhone security for the first time
In the realm of smartphones, Apple’s ecosystem is deemed to be the safer one. Independent analysis by security experts has also proved that point repeatedly over the years. But Apple’s…
AMD patches high severity security flaw affecting Zen chips
AMD advisory warns about a new high-severity security flaw The bug affects Zen 1 to Zen 4 CPUs Abuse could lead to the loss of SEV-based protection of a confidential…
A cracked malicious version of a Go package lay undetected online for years
Someone forked a popular database module and fitted it with malware The malicious fork was then cached and stored indefinitely It was then creatively hidden in plain sight to target…
Millions at risk as malicious PDF files designed to steal your data are flooding SMS inboxes – how to stay safe
A new phishing campaign is targeting businesses and individuals in over 50 countries Experts warn attackers are hiding malicious links in PDFs using a never-before-seen obfuscation technique Use the best…