Recent Security News
-
New Python-Based Snake Info Stealer Spreading Through Facebook Messages
March 7, 2024 at 03:33AM Threat actors are using Facebook messages to distribute the Python-based information stealer called Snake, aiming to capture sensitive data like credentials and cookies. The malware is designed to transmit harvested credentials to platforms like Discord, GitHub, and Telegram. It also targets Vietnamese users and reflects a concerning rise in account…
-
VMware urges emergency action to blunt hypervisor flaws
March 7, 2024 at 02:33AM Hypervisor heavyweight VMware by Broadcom disclosed vulnerabilities in its hypervisors, rated 9.3/10 and 8.4, allowing a local actor to execute code outside the virtual machine. Another vulnerability, rated 7.1, affects VMware’s older vSphere 6.x. Workarounds include removing virtual USB controllers, impacting keyboard and mouse access. Researchers from 2023’s Tianfu Cup…
-
Here’s something else AI can do: expose bad infosec to give cyber-crims a toehold in your organization
March 7, 2024 at 01:35AM Group-IB’s annual High Tech Crime Trends report revealed 225,000 stolen ChatGPT stealer logs were found for sale on the dark web between January and October 2023, with a 36% increase in the number of logs from June to October. This poses significant security risks for businesses, as compromised logins expose…
-
Watch Out for Spoofed Zoom, Skype, Google Meet Sites Delivering Malware
March 7, 2024 at 01:33AM Threat actors are using fake websites promoting popular video conferencing apps like Google Meet, Skype, and Zoom to distribute malware targeting Android and Windows users. The attackers are using typosquatting tricks to deceive users into downloading Remote Access Trojans. Additionally, a new malware called WogRAT is targeting Windows and Linux…