BleepingComputer’s most popular technology stories of 2022
2022 is over, and it's been filled with a wide assortment of stories ranging from the impact of Russia's invasion…
Adobe, Apple, Cisco, Microsoft Flaws Make Up Half of KEV Catalog
CISA’s Known Exploited Vulnerabilities Catalog has become a valuable repository of vulnerabilities to be patched. A pair of reports analyze…
Videoconferencing Worries Grow, With SMBs in Cyberattack Crosshairs
Securing videoconferencing solutions is just one of many IT security challenges small businesses are facing, often with limited financial and…
Ghost CMS vulnerable to critical authentication bypass flaw
A critical vulnerability in the Ghost CMS newsletter subscription system could allow external users to create newsletters or modify existing…
Security on a Shoestring? Cloud, Consolidation Best Bets for Businesses
With a recession potentially coming, some companies are cutting security teams. But moving more infrastructure to the cloud and reducing…
Sophisticated DarkTortilla Malware Serves Imposter Cisco, Grammarly Pages
Sites spoofing Grammarly and a Cisco webpage are spreading the DarkTortilla threat, which is filled with follow-on malware attacks.
Attackers use SVG files to smuggle QBot malware onto Windows systems
QBot malware phishing campaigns have adopted a new distribution method using SVG files to perform HTML smuggling that locally creates…
Microsoft Squashes Zero-Day, Actively Exploited Bugs in Dec. Update
Here's what you need to patch now, including six critical updates for Microsoft's final Patch Tuesday of the year.
Clop ransomware uses TrueBot malware for access to networks
Security researchers have noticed a spike in devices infected with the TrueBot malware downloader created by a Russian-speaking hacking group…
Samsung Galaxy S22 hacked in 55 seconds on Pwn2Own Day 3
On the third day of Pwn2Own, contestants hacked the Samsung Galaxy S22 a fourth time since the start of the…