Recent Security News
-
Google: Russian FSB hackers deploy new Spica backdoor malware
January 18, 2024 at 11:03AM Google’s Threat Analysis Group (TAG) has uncovered a Russian-backed hacking group, ColdRiver, spreading previously unknown backdoor malware through fake PDF decryption tools. The malware, named Spica, allows attackers to establish control over compromised devices and steal sensitive information. Google has taken action to protect users and has linked ColdRiver to…
-
Stealthy New macOS Backdoor Hides on Chinese Websites
January 18, 2024 at 10:51AM Researchers from Jamf Threat Labs discovered a sneaky macOS backdoor hidden in trojanized apps on Chinese websites. The malware, “.fseventsd,” can compromise victims’ machines. It evades detection by imitating legitimate processes and uses a malicious library. The campaign highlights the risk from pirated apps and the increasing macOS targeting. Protection…
-
Two more Citrix NetScaler bugs exploited in the wild
January 18, 2024 at 10:38AM Two vulnerabilities in Citrix’s NetScaler ADC and Gateway products, CVE-2023-6548 and CVE-2023-6549, have been patched. The first allows remote code execution with authentication and access to specific IPs, while the second can lead to a denial-of-service attack. Customers are advised to update their affected products promptly to prevent exploitation. Key…
-
‘Chaes’ Infostealer Code Contains Hidden Threat Hunter Love Notes
January 18, 2024 at 10:29AM The latest version of the Chaes infostealer code contains secret messages praising threat hunters for analyzing their work. Additionally, intricate ASCII art pieces are hidden within the code. The malware developers also express gratitude to security researchers, including a special shout-out message to Morphisec researcher Arnold Osipov. The code mentions…
-
Building AI That Respects Our Privacy
January 18, 2024 at 10:07AM The passage discusses the author’s experience with AI and the need to integrate privacy into AI technologies. The author highlights the potential benefits and risks of AI and suggests steps to protect privacy, such as individualized models, closed systems, transparency, and data removal rights. It also advises current actions to…