V8 Sandbox, a new defense against browser attacks, by Google Chrome
To address memory corruption issues, Google has announced support for the so-called V8 Sandbox in the Chrome web browser. Samuel Groß, the technical lead for V8 security, states that the sandbox is intended to stop “memory corruption in V8 from spreading within the host process.”…
0 Comments5 Minutes
“Latrodectus”: Is This Malware Lurking in Your Email?
Latrodectus is a new strain of malware recently discovered by threat researchers. It has been distributed through email phishing campaigns since at least late November 2023. In a recent collaborative analysis by experts from Proofpoint and Team Cymru, it was revealed that Latrodectus functions as a…
0 Comments5 Minutes
In “Incognito Mode,” Google will remove billions of browsing records.
As part of the settlement of a class action lawsuit, Google has agreed to delete billions of data records that show users’ browsing activity without their knowledge or consent while using its Chrome browser. The class action lawsuit, filed in 2020, claimed that the firm had deceived consumers…
0 Comments4 Minutes
How Managed IT Services Strengthen Cyber Defenses
In the fast-paced digital landscape, where cyber threats loom large, businesses find themselves in an ongoing battle to secure their sensitive data and digital assets. This article delves into the pivotal role of Managed IT Services in fortifying cyber defenses, exploring how these services act as…
0 Comments8 Minutes
Kasseika Ransomware Utilizing BYOVD Technique to Bypass Pre-Encryption Security Measures
Kasseika, a ransomware gang, has recently started using the Bring Your Own Vulnerable Driver (BYOVD) attack to disable security processes on compromised Windows hosts. This group has joined other well-known groups such as Akira, AvosLocker, BlackByte, and RobbinHood in employing this technique. In…
0 Comments6 Minutes
Malware for MacOS Hides in Cracked Applications, Aiming to Attack Cryptocurrency Wallets
It has been noted that cracked software is infecting users of Apple macOS with a stealer malware that was not previously described. This malware is capable of harvesting information about the machine as well as bitcoin wallet data. Kaspersky, which discovered the artifacts in the wild, stated that…
0 Comments6 Minutes
Security Issues Impact Citrix, VMware, and Atlassian; Apply Fixes Promptly!
Citrix has issued a security advisory regarding two publicly exploited zero-day vulnerabilities in NetScaler ADC (formerly Citrix ADC) and NetScaler Gateway (previously Citrix Gateway). The following are the shortcomings: The CVSS score for CVE-2023-6548 is 5.5. – Execution of authenticated,…
0 Comments5 Minutes
Opera Hackers Could Execute ANY File on Your Mac or Windows Due to a MyFlaw Bug
Cybersecurity researchers have identified a significant security vulnerability in the Opera web browser designed for both Windows and macOS platforms. This flaw exposes a potential threat where malicious actors could execute any file on the affected machine. The vulnerability is associated with a…
0 Comments7 Minutes
Update Chrome immediately to patch a newly discovered vulnerability that is now being exploited.
On Tuesday, Google released patches to solve four security concerns that were present in its Chrome browser. One of these flaws was a zero-day hole that was being actively exploited. The vulnerability, which has been assigned the identifier CVE-2024-0519, is related to an out-of-bounds memory…
0 Comments3 Minutes
Navigating the Depths of NIST Cybersecurity Standards
The NIST Cybersecurity Framework illuminates a realm where digital threats are abundant in the field of cybersecurity. Before delving into NIST standards, it’s crucial to have a firm grasp on the many moving parts that comprise an effective cybersecurity posture. Understanding the Basics What…
0 Comments6 Minutes