ToddyCat APT Is Stealing Data on ‘Industrial Scale’
The threat actor is deploying multiple connections into victim environments to maintain persistence and steal data.
Palo Alto Networks zero-day exploited since March to backdoor firewalls
Suspected state-sponsored hackers have been exploiting a zero-day vulnerability in Palo Alto Networks firewalls tracked as CVE-2024-3400 since March 26,…
Chrome Enterprise gets Premium security but you have to pay for it
Google has announced a new version of its browser for organizations, Chrome Enterprise Premium, which comes with extended security controls…
New Windows driver blocks software from changing default web browser
Microsoft is now using a Windows driver to prevent users from changing the configured Windows 10 and Windows 11 default…
New Chrome feature aims to stop hackers from using stolen cookies
Google announced a new Chrome security feature called 'Device Bound Session Credentials' that ties cookies to a specific device, blocking…
Google agrees to delete Chrome browsing data of 136 million users
Google has agreed to delete billions of data records collected from 136 million Chrome users in the United States, as…
Google fixes Chrome zero-days exploited at Pwn2Own 2024
Google fixed seven security vulnerabilities in the Chrome web browser on Tuesday, including two zero-days exploited during the Pwn2Own Vancouver…
Hackers poison source code from largest Discord bot platform
The Top.gg Discord bot community with over 170,000 members has been impacted by a supply-chain attack aiming to infect developers…
Mozilla fixes two Firefox zero-day bugs exploited at Pwn2Own
Mozilla has released security updates to fix two zero-day vulnerabilities in the Firefox web browser exploited during the Pwn2Own Vancouver…
Hackers earn $1,132,500 for 29 zero-days at Pwn2Own Vancouver
Pwn2Own Vancouver 2024 has ended with security researchers collecting $1,132,500 after demoing 29 zero-days (and some bug collisions). [...]