Security Bulletin

Passwordless passkey support will be deployed by WhatsApp to all users on Android devices in the coming weeks and months, just days after Google began passkey implementation by default, according to The Verge.

SecurityWeek reports that encrypted instant messaging platform Signal has shut down reports regarding a zero-day vulnerability impacting its chat app that became viral over the weekend, saying that further investigation has revealed no evidence to...

Extensive data-gathering features have been discovered by F-Secure researchers within the SpyNote Android banking trojan, which has been distributed mainly through SMS phishing campaigns, according to The Hacker News.

Numerous Guatemalan government websites have been taken down by distributed denial-of-service attacks deployed by Anonymous hacktivist group affiliates in support of protests led by Indigenous groups related to an alleged undemocratic challenge by...

Threat actors have targeted Israeli Android users with spyware through a fake version of the widely used rocket warning app "RedAlert Rocket Alerts" amid the ongoing conflict between Israel and Palestinian military group Hamas, BleepingComputer...

Kansas had its court systems impacted by outages last week, which Judge Philip Journey of Sedgwick County attributed to a ransomware attack although no further details regarding the intrusion have been provided, according to The Record, a news site...

Governments and other entities part of the Association of Southeast Asian Nations had their x86 systems subjected to attacks with the novel BLOODALCHEMY backdoor, which is included in the REF5961 intrusion set used by a China-linked threat operation...

Phishing attacks leveraging a new high-severity WinRAR vulnerability, tracked as CVE-2023-38831, have been deployed by pro-Russian hacking operations in a bid to facilitate credential exfiltration, The Hacker News reports.

The two countries agree to share financial services information and provide cross-border training and best practices.

Just a day after Cisco disclosed CVE-2023-20198, it remains unpatched, and one vendor says a Shodan scan shows at least 10,000 Cisco devices with an implant for arbitrary code execution on them. The vendor meanwhile has updated the advisory with more...

The ClearFake campaign uses fake browser updates to lure victims and spread RedLine, Amadey, and Lumma stealers.

Security pros say developers share Confluence across their teams, so once exploited, attackers can have access to sensitive design and vulnerability information they can use to launch future attacks.