Microsoft releases PoC exploit for macOS sandbox escape vulnerabilityOn macOS systems that don't have Apple's recent security updates, a vulnerability identified as CVE-2022-26706 could help an attacker bypass sandbox restrictions to execute code with elevated privileges. [...]
CoinPayments to shut down in US — 5 days left to withdraw fundsGlobal crypto payments gateway, CoinPayments.net is ceasing operations in the United States soon and has advised users to withdraw their assets before July 19th, 2022. The short notice given by the exchange via a private email left some customers suspecting if this was an "exit scam" or another mysterious incident. [...]
New Retbleed speculative execution CPU attack bypasses Retpoline fixesSecurity researchers have discovered a new speculative execution attack called Retbleed that affects processors from both Intel and AMD and could be used to extract sensitive information. [...]
New Lilith ransomware emerges with extortion site, lists first victimA new ransomware operation has been launched under the name 'Lilith,' and it has already posted its first victim on a data leak site created to support double-extortion attacks. [...]
Bandai Namco confirms hack after ALPHV ransomware data leak threat•59by Lawrence Abrams / 1d
Game publishing giant Bandai Namco has confirmed that they suffered a cyberattack that may have resulted in the theft of customers' personal data. [...]
Microsoft releases tweet-size exploit for macOS sandbox escape bugOn macOS systems that don't have Apple's recent security updates, a vulnerability identified as CVE-2022-26706 could help an attacker bypass sandbox restrictions to execute code with elevated privileges. [...]
Windows 8.1 now shows full-screen 'End of Support' warnings•200+by Lawrence Abrams / 1d
Windows 8.1 is now displaying full-screen alerts when logging into the operating system, warning that the OS is reaching the end of support in January 2023 and will no longer receive security updates. [...]
New UEFI firmware flaws impact over 70 Lenovo laptop modelsThe UEFI firmware used in several laptops made by Lenovo is vulnerable to three buffer overflow vulnerabilities that could enable attackers to hijack the startup routine of Windows installations. [...]
New Android malware on Google Play installed 3 million timesA new Android malware family on the Google Play Store that secretly subscribes users to premium services was downloaded over 3,000,000 times. [...]
$8 million stolen in large-scale Uniswap airdrop phishing attackUniswap, a popular decentralized cryptocurrency exchange, lost close to $8 million worth of Ethereum in a sophisticated phishing attack yesterday. [...]
Comments
Post a Comment
Please leave a comment about our recent post.