Exploitable Flaws in QuickBlox Framework Expose Millions of User Records
The flaws were discovered while examining an intercom mobile application from Israeli vendor Rozcom, which is based on the QuickBlox framework.
RomCom RAT Targets Pro-Ukraine Guests at Upcoming NATO Summit
The RomCom RAT is also tracked as Tropical Scorpius, Void Rabisu, and UNC2596.
New Phishing Attack Spoofs Microsoft 365 Authentication System
Vade, a provider of email security and threat detection services, has released a report on a recently discovered…
Advanced Vishing Attack Campaign “LetsCall” Targets Android Users
In a newly detected muli-stage vishing campaign attackers are using an advanced toolset dubbed LetsCall, featuring strong evasion tactics.
Technician Indicted for Hacking California Water Treatment Facility
The jury has charged Rambler Gallo with one count of transmitting a program, information, code, and command to cause damage to a protected computer.
Critical RCE Vulnerability Puts 330,000 Fortinet Firewalls at Risk
The vulnerability has a CVSS score of 9.8 out of 10, is a critical security bug that affects Fortinet appliances and has been actively exploited in the wild.
SmugX: Chinese Hackers Targeting Embassies in Europe
The researchers believe that the SmugX attack is an extension of a previously discovered campaign linked to Mustang Panda.
New Meduza Malware Targets Wallets, Passwords and Browsers on Windows
Meduza malware is being fiercely marketed across different Telegram channels, cybercrime and dark web forums.
Researchers Use Power LED to Extract Encryption Keys in Groundbreaking Attack
This attack method can help attackers surpass all barriers to exploit side channels, which so far were not possible.
Fake Super Mario 3 Installers Drop Crypto Miner, Data Stealer
The malware has the potential to target large-scale victims since games like Super Mario 3 are famous among…