Category: Cybersecurity News
-
Security Agencies Issue Guidance on Recent China-Affiliated Telecom Hacks
U.S. security and cybersecurity agencies (along with international partners) have issued a guidance in response to confirmed infiltration on telecom communication systems by China, officially known as People’s Republic of China (PRC),-affiliated groups. While the infiltration was only able to gather meta data such as call records, it was further targeting users involved in government
-
DroidBot, a Malware-as-a-Service (MaaS), Is Targeting Banking, Crypto Apps
A new Android malware is making rounds and attempting to steal information from unsuspecting users and installs. Being classified as DroidBot, it’s a Remote Access Tool (RAT) utilized in a Malware-as-a-Service (MaaS) model and being used by hacking affiliated groups. Malware-as-a-Service is a subscription model used by hackers and cybercriminals selling their specialized tools and
-
Large Development Firm, Chemonics International, Affected By Data Breach
Chemonics International, a large development firm and USAID contractor, was impacted by a data breach affecting the data of thousands of users. According to the report they made in a notice on their website, the hack was first noticed late last year in December 2023, where they found possible hacking activity from earlier in the
-
Dangerous “SpyLoan” Apps Growing in Android App Store
Dangerous predatory loan applications, known as SpyLoan or fake loan apps, are growing in numbers in the App Store, many with millions of installs. McAfee’s mobile research team, a security software company, has raised an alarm on the growing wave of these predatory loan apps that are disguised as legitimate financial services but trick users
-
Security Bypass Vulnerability in WordPress Anti-Spam Plugin CleanTalk
A security vulnerability was recently discovered in the WordPress plugin Spam protection, Anti-Spam, FireWall plugin by CleanTalk by researchers at Wordfence, a full security plugin for WordPress. The plugin aims to keep spam at bay on WordPress websites, which power many websites on the web, by protecting forms and other features on your websites from
-
Apple Releases Updates for Zero-Days Affecting iOS, Mac, Vision Pro
Update your iOS, Mac and Vision devices as Apple has released updates to a critical vulnerability affecting different systems and software. They’re tracked as CVE-2024-44308, which presented a flaw in the JavaScriptCore, a framework for Javascript commonly used on websites, and CVE-2024-44309, which was a flaw in WebKit, the open-source web rendering engine that powers
-
Vulnerability in WordPress Really Simple Security Plugin Puts Websites at Risk
A several vulnerability has been discovered in a popular WordPress plugin used by millions of websites. Discovered by Wordfence researchers and dubbed CVE-2024-10924, the critical vulnerability affects the Really Simple Security (also known as Really Simple SSL) plugin. Plugin versions affected are 9.0.0 and 9.1.1.1 and could impact millions of websites using this plugin. The
-
Cisco Confirms Investigation Into Possible DevHub Breach Leaks
Recent data leaks online by hackers have caused concern for Cisco. The hackers early last week on October 14 announced a Cisco breach on a popular hacking forum. The data was from their DevHub resource center site, and claimed to obtain sensitive files like source code, confidential docs, keys, and other types of info, including
Categories:
Have any comments or suggestions? Feel free to let us know!
