A new malware campaign has compromised more than 5,000 WordPress sites to create admin accounts, install a malicious plugin, and steal data. […]
Adobe: Critical Code Execution Flaws in Photoshop
Patch Tuesday: Adobe ships patches for more than a dozen security defects in a wide range of software products.
The post Adobe: Critical Code Execution Flaws in Photoshop appeared first on SecurityWeek.
US govt says North Korea stole over $659 million in crypto last year
North Korean state-backed hacking groups have stolen over $659 million worth of cryptocurrency in multiple crypto-heists, according to a joint statement issued by the United States, South Korea, and Japan on Tuesday. […]
Windows 10 KB5049981 update released with new BYOVD blocklist
Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated Kernel driver blocklist to prevent Bring Your Own Vulnerable Driver (BYOVD) attacks. […]
Microsoft Patches Trio of Exploited Windows Hyper-V Zero-Days
Patch Tuesday: Microsoft has rushed out fixes for a trio of already-exploited zero-day vulnerabilities in the Windows Hyper-V platform.
The post Microsoft Patches Trio of Exploited Windows Hyper-V Zero-Days appeared first on SecurityWeek.
Biden Signs Executive Order Aimed at Growing AI Infrastructure in the US
The executive order comes on the heels of the Biden administration’s proposed restrictions on exports of AI chips, an attempt to balance national security concerns about the technology with economic interests of producers and other countries.
The post Biden Signs Executive Order Aimed at Growing AI Infrastructure in the US appeared first on SecurityWeek.
Microsoft January 2025 Patch Tuesday fixes 8 zero-days, 159 flaws
Today is Microsoft’s January 2025 Patch Tuesday, which includes security updates for 159 flaws, including eight zero-day vulnerabilities, with three actively exploited in attacks. […]
UK Considers Banning Ransomware Payment by Public Sector and CNI
Since no technical means have been found to curtail criminal extortion through prevention or attack, the new proposal is to eliminate its profitability.
The post UK Considers Banning Ransomware Payment by Public Sector and CNI appeared first on SecurityWeek.
Windows 11 KB5050009 & KB5050021 cumulative updates released
Microsoft has released the Windows 11 KB5050009 and KB5050021 cumulative updates for versions 24H2 and 23H2 to fix security vulnerabilities and issues. […]
WEF Report Reveals Growing Cyber Resilience Divide Between Public and Private Sectors
WEF’s Global Cybersecurity Outlook 2025 report highlights key challenges like the skills gap, third-party risks, and resilience disparities between businesses and private sectors.
The post WEF Report Reveals Growing Cyber Resilience Divide Between Public and Private Sectors appeared first on SecurityWeek.