Security Bulletin

CVE-2023-7024, exploited in the wild prior to patching, is a Chrome vulnerability that allows remote code execution within the browser's WebRTC component.

The significance of cybersecurity resilience has never been higher as we grow more reliant on digital infrastructure.

Organizations in the defense industrial base industry are having their employees targeted by Iranian nation-state threat operation APT33, also known as Peach Sandstorm, Refined Kitten, or HOLMIUM, in attacks involving the novel FalseFont malware...

New phishing attacks leveraging lures related to the ongoing war between Russia and Ukraine have been deployed by state-sponsored cyberespionage group Cloud Atlas against a Russian state-owned research firm and an agro-industrial enterprise...

BleepingComputer reports that some IT systems at major U.S. title insurance provider First American Financial Corporation have been taken down following a cyberattack.

Missouri-based Liberty Hospital disclosed that it has been facing continuous patient care challenges following a cyberattack that disrupted its systems earlier this week even though it has already halted patient transfers to nearby facilities as a...

Malicious ads enable crypto drainer theft of $59M Cryptocurrency wallet drainer MS Drainer distributed via malicious ads on Google and X, formerly Twitter, has exfiltrated $59 million from more than 60,000 victims since March, with malicious activity...

The FalseFont backdoor allows operators to remotely access an infected system and launch additional files.

SecurityWeek reports that New York-based online real estate education platform Real Estate Wealth Network had more than 1.5 billion records exposed due to an internet-exposed database that had 1.16 TB of data organized in numerous folders.

Over 1.6 million credit and debit card details have been exposed by dark web carding market BidenCash, Hackread reports.

Improved capabilities and expanded targeting have been integrated into the new version of the Chameleon Android banking trojan, according to The Hacker News.

Intellexa Alliance's advanced Predator spyware was discovered by Cisco Talos researchers.