February 23, 2024 at 01:09AM A high-severity security flaw in Apple’s Shortcuts app, CVE-2024-23204, was patched on January 22, 2024. The flaw allowed shortcuts to access sensitive data without user consent. Bitdefender researcher discovered the bug, stating it could bypass TCC policies and exfiltrate data to a malicious server. The vulnerability was fixed in iOS … Read more
February 9, 2024 at 11:00AM A new Rust-based macOS malware, known as RustDoor, has been spreading as a Visual Studio update, providing backdoor access to compromised systems. Linked to the ALPHV/BlackCat ransomware gang’s infrastructure, it communicates with command and control servers potentially associated with ransomware operations. The malware has advanced capabilities and is distributed under … Read more
November 15, 2023 at 01:36PM Researchers at Bitdefender have identified weaknesses in Google Workspace that could potentially lead to ransomware attacks, data exfiltration, and password decryption. These vulnerabilities could also be used to access Google Cloud Platform with custom permissions and propagate from one machine to another. Google has stated that these weaknesses are outside … Read more