Recent Security News
-
Google Releases Eighth Zero-Day Patch of 2023 for Chrome
December 22, 2023 at 01:12PM Google has released an urgent update to address a critical vulnerability in Chrome, identified as CVE-2023-7024. This heap buffer overflow flaw in Chrome’s WebRTC module allows remote code execution. While the threat is significant, Chrome’s sandbox and site isolation features provide some protection. The bug also extends to Microsoft Edge,…
-
Ubisoft says it is investigating reports of a new security breach
December 22, 2023 at 01:11PM Ubisoft is investigating a potential breach after images of internal software and developer tools surfaced online. VX-Underground claims an unknown threat actor breached Ubisoft and intended to exfiltrate around 900GB of data. This alleged breach involves access to various services, including MongoDB Atlas. Ubisoft is currently investigating the incident. Based…
-
Chameleon Android Malware Can Bypass Biometric Security
December 22, 2023 at 12:54PM The Chameleon Android banking trojan, detected by ThreatFabric, has expanded its reach to the UK and Italy from its initial targets in Australia and Poland. The malware employs various tactics, such as phishing pages and accessing Accessibility Services, to perform Account Takeover and Device Takeover attacks, targeting banking and cryptocurrency…
-
Rogue WordPress Plugin Exposes E-Commerce Sites to Credit Card Theft
December 22, 2023 at 12:42PM A rogue WordPress plugin discovered by threat hunters poses a Magecart campaign threat, creating bogus admin users and injecting malicious code to steal credit card data. The plugin hides in the mu-plugins directory and enables sustained access to the target. This revelation comes amid growing concerns about digital skimming and…
-
Strengthening Resilience: Navigating the Cybersecurity Landscape
December 22, 2023 at 12:07PM Businesses worldwide face a surge in cyber threats, with ransomware attacks increasing by over 1,000% since 2019. Aon’s global survey identifies cyberattacks as the top risk for organizations, leading to a shift in cybersecurity investment in the Middle East. Organizations must prioritize a holistic, proactive approach to cyber resilience, including…