[ad_1] Web applications remain a prime target for cyberattacks, posing significant risks to businesses and their bottom line. So much so, in fact, that 17% of all attacks exploit vulnerabilities and security flaws found in web applications, according to Positive…

[ad_1] Image: Bing Image Creator Two new critical-severity vulnerabilities have been discovered in MegaRAC Baseboard Management Controller (BMC) software manufactured by hardware and software company American Megatrends International. MegaRAC BMC provides administrators with “out of band” and “power off” remote…

[ad_1] Google's Chrome 115 has a new feature that allows users to use Windows Mica hardware, a design element that improves user customization. To access this feature, users need to go to the Chrome flags menu and enable it manually.…

[ad_1] The Chinese state-backed hacking group APT41 is targeting Android devices with two newly discovered strains of spyware, dubbed WyrmSpy and DragonEgg by security researchers Lookout. APT41 is one of the oldest state hacking groups with a history of targeting…

[ad_1] Earlier this month, security researchers discovered new peer-to-peer (P2P) malware with self-spreading capabilities that targets Redis instances running on Windows and Linux systems exposed to the Internet. The Unit 42 researchers who spotted the Rust-based worm (named P2PInfect) on…

[ad_1] US enterprise software company JumpCloud has been hacked by North Korean hackers from the Lazarus Group, according to security researchers from SentinelOne and CrowdStrike. In a report released Thursday, SentinelOne senior threat researcher Tom Hegel linked North Korean threat…

[ad_1] Microsoft and Ukraine's CERT warn of new attacks by Russian state-sponsored hacking group Turla, targeting the defense industry and Microsoft Exchange servers with a new "DeliveryCheck" malware backdoor. Turla, aka Secret Blizzard, KRYPTON and UAC-0003, is believed to be…

[ad_1] Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim of separate attacks. In a disgruntled message to the company, the BlackCat gang mocked the security measures, saying they…

[ad_1] Two ransomware actors, ALPHV/BlackCat and Clop, have listed beauty company Estée Lauder on their data leak sites as a victim of separate attacks. In a disgruntled message to the company, the BlackCat gang mocked the security measures, saying they…

[ad_1] Adobe has released an emergency ColdFusion security update that fixes critical vulnerabilities, including a fix for a new zero-day exploit in attacks. As part of today's out-of-band update, Adobe has patched three vulnerabilities: a critical RCE tracked as CVE-2023-38204…