Critical Flaws in CocoaPods Expose iOS and macOS Apps to Supply Chain Attacks

/in

A trio of security flaws has been uncovered in the CocoaPods dependency manager for Swift and Objective-C Cocoa projects that could be exploited to stage software supply chain attacks, putting downstream customers at severe risks.
The vulnerabilities allow “any malicious actor to claim ownership over thousands of unclaimed pods and insert malicious code into many of the most popular iOS and

The Hacker News – ​Read More

Australian Man Arrested for “Evil Twin” Wi-Fi Scam Targeting Travelers

/in

An Australian man faces charges for setting up fake Wi-Fi networks (“evil twins”) to steal data from unsuspecting…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Do you still need to pay for antivirus software in 2024?

/in

Landlines. Checkbooks. AM radio. Let’s add third-party antivirus software to the list of things you can stop using.

Latest stories for ZDNET in Security – ​Read More

Apple CocoaPods Bugs Expose Millions of Apps to Code Injection

/in

Critical dependency manager supply chain vulnerabilities have exposed millions and millions of devices to arbitrary malware for the better part of decade.

darkreading – ​Read More

HubSpot Warns of Ongoing Cyberattacks Targeting Customer Accounts

/in

HubSpot is “actively investigating and blocking attempts” to hack into customer accounts but some targets have already been compromised.

The post HubSpot Warns of Ongoing Cyberattacks Targeting Customer Accounts appeared first on SecurityWeek.

SecurityWeek – ​Read More

Hacker Conversations: Chris Evans, Hacker and CISO

/in

Chris Evans, CISO and chief hacking officer at HackerOne, challenges the common perception of both hackers and their motivation.

The post Hacker Conversations: Chris Evans, Hacker and CISO appeared first on SecurityWeek.

SecurityWeek – ​Read More

Startup Odaseva Raises $54M to Bolster Global Expansion, R&D

/in

The Series C funding will allow San Francisco-based Odaseva to provide more robust support to clients dealing with stringent data residency regulations and evolving privacy laws around the globe, according to founder and CEO Sovan Bin.

Cyware News – Latest Cyber News – ​Read More

Russian Hacker Wanted for Crippling Cyberattacks on Ukraine, $10M Reward

/in

A Russian hacker is indicted for crippling cyberattacks on Ukraine before the 2022 invasion. He’s accused of working…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

TeamViewer Says Russia’s ‘Cozy Bear’ Hackers Attacked Corporate IT System

/in

Remote access solution provider TeamViewer confirmed that the Russian hacking group APT29 breached its corporate IT environment. The hack on TeamViewer was traced back to an employee account.

Cyware News – Latest Cyber News – ​Read More

Google Offering $250,000 for Full VM Escape in New KVM Bug Bounty Program

/in

Google has announced a new KVM bug bounty program named kvmCTF with rewards of up to $250,000 for a full VM escape.

The post Google Offering $250,000 for Full VM Escape in New KVM Bug Bounty Program appeared first on SecurityWeek.

SecurityWeek – ​Read More