Security Bulletin

More threat actors have been exploiting QR codes to facilitate advanced phishing attacks, reports SiliconAngle.

Subjecting payment systems around the world to a catastrophic cyberattack could result in a $3.5 trillion loss in global gross domestic product over a five-year period, according to The Record, a news site by cybersecurity firm Recorded Future.

Major U.S. biotechnology and genetic testing firm 23andMe had 4.1 million more genetic data profiles for individuals in Great Britain and Germany compromised through credential stuffing attacks exposed by a threat actor following the leak of...

Tech companies, professional services organizations, and government entities have been subjected to attacks exploiting a critical information disclosure vulnerability in Citrix NetScaler Application Delivery Controller and NetScaler Gateway instances...

Organizations in the oil and gas and defense industries across Eastern Europe have been targeted by spear-phishing attacks leveraging a new iteration of the MATA backdoor framework from August 2022 to May 2023, according to BleepingComputer.

Vulnerable Jupyter Notebook instances have been subjected to attacks by a suspected Tunisia-based threat actor leveraging the novel Qubitstrike intrusion set, which facilitates cryptomining and cloud compromise, The Hacker News reports.

Attacks exploiting WinRAR zero-day linked to Russian, Chinese hackers TechCrunch reports that numerous Russian and Chinese state-backed hacking operations have been leveraging an already patched WinRAR vulnerability, tracked as CVE-2023-38831, in...

North Korea's Lazarus Group, also known as TEMP.Hermit or Hidden Cobra, has been continuing its Operation Dream Job campaign with new intrusions leveraging trojanized Virtual Network Computing apps targeted at defense industry and nuclear engineers...

Attacks exploiting a vulnerability impacting JetBrains TeamCity continuous integration and deployment servers, tracked as CVE-2023-42793, have been launched by North Korean state-sponsored threat operations Diamond Sleet and Onyx Sleet, reports The...