Microsoft is now blocking Windows 11 24H2 upgrades on systems with Auto HDR enabled due to a compatibility issue that causes game freezes. […]
BeyondTrust says hackers breached Remote Support SaaS instances
Privileged access management company BeyondTrust suffered a cyberattack in early December after threat actors breached some of its Remote Support SaaS instances. […]
Thousands Download Malicious npm Libraries Impersonating Legitimate Tools
Threat actors have been observed uploading malicious typosquats of legitimate npm packages such as typescript-eslint and @types/node that have racked up thousands of downloads on the package registry.
The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and retrieve second-stage payloads, respectively.
“While typosquatting attacks are
The counterfeit versions, named @typescript_eslinter/eslint and types-node, are engineered to download a trojan and retrieve second-stage payloads, respectively.
“While typosquatting attacks are
CISA Releases Mobile Security Guidance After Chinese Telecom Hacking
In light of recent Chinese hacking into US telecom infrastructure, CISA has released guidance on protecting mobile communications.
The post CISA Releases Mobile Security Guidance After Chinese Telecom Hacking appeared first on SecurityWeek.
Juniper Warns of Mirai Botnet Targeting SSR Devices with Default Passwords
Juniper Networks is warning that Session Smart Router (SSR) products with default passwords are being targeted as part of a malicious campaign that deploys the Mirai botnet malware.
The company said it’s issuing the advisory after “several customers” reported anomalous behavior on their Session Smart Network (SSN) platforms on December 11, 2024.
“These systems have been infected with the Mirai
The company said it’s issuing the advisory after “several customers” reported anomalous behavior on their Session Smart Network (SSN) platforms on December 11, 2024.
“These systems have been infected with the Mirai
Ukrainian Raccoon Infostealer Operator Sentenced to Prison in US
Raccoon Infostealer MaaS operator Mark Sokolovsky was sentenced to 60 months in prison in the US and agreed to pay over $910,000 in restitution.
The post Ukrainian Raccoon Infostealer Operator Sentenced to Prison in US appeared first on SecurityWeek.
Cisco to Acquire Threat Detection Company SnapAttack
Cisco has announced its intention to acquire threat detection company SnapAttack to boost Splunk security product capabilities.
The post Cisco to Acquire Threat Detection Company SnapAttack appeared first on SecurityWeek.
Fortinet Patches Critical FortiWLM Vulnerability
Fortinet has released patches for a critical-severity path traversal vulnerability in FortiWLM that was reported last year.
The post Fortinet Patches Critical FortiWLM Vulnerability appeared first on SecurityWeek.
SandboxAQ Raises $300 Million at $5.3 Billion Valuation
Alphabet spinoff SandboxAQ has announced raising $300 million in funding at a valuation of $5.3 billion.
The post SandboxAQ Raises $300 Million at $5.3 Billion Valuation appeared first on SecurityWeek.
Chrome 131 Update Patches High-Severity Memory Safety Bugs
Google has released a Chrome 131 update to patch multiple high-severity memory safety vulnerabilities, including three affecting the V8 JavaScript engine.
The post Chrome 131 Update Patches High-Severity Memory Safety Bugs appeared first on SecurityWeek.