Exploit available for critical bug in VM2 JavaScript sandbox library
Proof-of-concept exploit code has been released for a recently disclosed critical vulnerability in the popular VM2 library, a JavaScript sandbox that…
MSI confirms security breach following ransomware attack claims
Following reports of a ransomware attack, Taiwanese PC vendor MSI (short for Micro-Star International) confirmed today that its network was…
Printers Pose Persistent Yet Overlooked Threat
Vulnerabilities in the device firmware and drivers underscore how printers cannot be set-and-forget technology and need to be managed.
Fight AI With AI
By developing new tools to defend against adversarial AI, companies can help ensure that artificial intelligence is developed and used…
Twitter ‘Shadow Ban’ Bug Gets Official CVE
A flaw in Twitter code allows bot abuse to trick the algorithm into suppressing certain accounts.
Hackers use Rilide browser extension to bypass 2FA, steal crypto
A new malware strain called Rilide has been targeting Chromium-based web browsers like Google Chrome, Brave, Opera, and Microsoft Edge,…
Microsoft and Fortra crack down on malicious Cobalt Strike servers
Microsoft, Fortra, and the Health Information Sharing and Analysis Center (Health-ISAC) have announced a broad legal crackdown against servers hosting…
What to Discuss at RSA Conference — and It’s Not ChatGPT
In-person conversations are a productive way to understand the state of the industry and learn new techniques. Take advantage of…
Money Message ransomware gang claims MSI breach, demands $4 million
Taiwanese PC parts maker MSI (Micro-Star International) has been listed on the extortion portal of a new ransomware gang known…
Typhon info-stealing malware devs upgrade evasion capabilities
The developers of the Typhon info-stealer announced on a dark web forum that they have updated the malware to a…