Critical VM2 flaw lets attackers run code outside the sandbox
Researchers are warning of a critical remote code execution flaw in 'vm2', a JavaScript sandbox library downloaded over 16 million…
Fortinet says critical auth bypass bug is exploited in attacks
Fortinet has confirmed today that a critical authentication bypass security vulnerability patched last week is being exploited in the wild.…
Intel confirms leaked Alder Lake BIOS Source Code is authentic
Intel has confirmed that a source code leak for the UEFI BIOS of Alder Lake CPUs is authentic and has…
Meta Flags Malicious Android, iOS Apps Affecting 1M Facebook Users
Some 400 mobile apps have posed as legitimate software on Google Play and the Apple App Store over the past…
Patch Now: Fortinet FortiGate & FortiProxy Contain Critical Vuln
Fortinet issued a customer advisory urging customers to apply its update immediately.
Fortinet warns admins to patch critical auth bypass bug immediately
Fortinet has warned administrators to update FortiGate firewalls and FortiProxy web proxies to the latest versions, which address a critical severity vulnerability. [...]
macOS Archive Utility Bug Lets Malicious Apps Bypass Security Checks
Exploit allows unsigned and unnotarized macOS applications to bypass Gatekeeper and other security, without notifying the user.
US Consumers Are Finally Becoming More Security & Privacy Conscious
The trend, spotted by Consumer Reports, could mean good news for organizations struggling to contain remote work challenges.
Hackers Have It Out for Microsoft Email Defenses
Cybercriminals are focusing more and more on crafting special email attacks that evade Microsoft Defender and Office security.
Russia-Linked Cybercrime Group Hawks Combo of Malicious Services With LilithBot
The malware-as-a-service group Eternity is selling a one-stop shop for various malware modules it's been distributing individually via a subscription…