April 9, 2024 at 09:45AM LG webOS smart TVs were found to have multiple security vulnerabilities, allowing unauthorized access and root access to the devices. The flaws, discovered by Bitdefender, included bypassing authorization and gaining elevated permissions. LG released updates to fix the issues impacting various webOS versions. Over 91,000 devices globally were exposed to … Read more
February 23, 2024 at 09:27AM A high-severity vulnerability, tracked as CVE-2024-23204, in Apple Shortcuts allowed attackers to access sensitive user information and system resources without user prompting. Cybersecurity firm Bitdefender discovered the issue, which bypassed Apple’s framework governing access permissions. The vulnerability was addressed with the release of iOS 17.3, iPadOS 17.3, and macOS Sonoma … Read more
February 16, 2024 at 09:45AM Cryptocurrency companies are targeted by a new Apple macOS backdoor called RustDoor, distributed as a Visual Studio update and used in targeted attacks. Its components include first-stage downloaders masquerading as job offering PDFs, Golang-based binaries, and leaky endpoint revealing infected victims’ details. Meanwhile, a South Korean IT organization affiliated with … Read more
February 10, 2024 at 02:21AM A new Rust-based macOS backdoor, codenamed RustDoor, has been targeting users since November 2023. It masquerades as an update for Microsoft Visual Studio, affecting both Intel and Arm architectures. The malware is capable of gathering and exfiltrating information to a command-and-control server, with links to prominent ransomware families. The U.S. … Read more
February 9, 2024 at 04:09PM Bitdefender reports the discovery of the macOS backdoor RustDoor, linked to ransomware families Black Basta and Alphv/BlackCat. The malware supports Intel and Arm architectures and has been undetected since November 2023. It harvests and exfiltrates files, generates victim IDs, and has variants with different functionalities, including impersonating applications. From the … Read more
January 15, 2024 at 11:44AM Multiple security vulnerabilities have been disclosed in Bosch BCC100 thermostats and Rexroth NXA015S-36V-B smart nutrunners, allowing attackers to execute arbitrary code. Bitdefender discovered the BCC100 thermostat flaw, which Bosch addressed in November 2023. Additionally, Rexroth nutrunners have over two dozen vulnerabilities, with patches expected by January 2024. These vulnerabilities could … Read more