These phishing attacks are now terrorizing Mac browsers – here’s how to protect yourself

/in

After Windows defenses improved, the attackers switched to targeting Mac and Safari users with these very effective scams.

Latest stories for ZDNET in Security – ​Read More

In Other News: Critical Chrome Bug, Capital One Hacker Resententencing, Story of Expat Flaw

/in

Noteworthy stories that might have slipped under the radar: Capital One hacker’s sentence reversed, Google patches critical Chrome vulnerability, the story of an Expat flaw. 

The post In Other News: Critical Chrome Bug, Capital One Hacker Resententencing, Story of Expat Flaw appeared first on SecurityWeek.

SecurityWeek – ​Read More

US Treasury removes sanctions on Tornado Cash after appellate court loss

/in

Tornado Cash, which the U.S. sanctioned in 2022, was dropped from that list by the Trump administration following a court decision favoring the cryptocurrency mixer in November.

The Record from Recorded Future News – ​Read More

Google Maps yanks over 10,000 fake business listings – how to spot the scam

/in

The fake listings were part of a scam that used the old bait-and-switch tactic to prey on people – and there may be more lurking out there.

Latest stories for ZDNET in Security – ​Read More

Ransomware Group Claims Attack on Virginia Attorney General’s Office

/in

The Cloak ransomware group has claimed responsibility for a February cyberattack on Virginia Attorney General’s Office.

The post Ransomware Group Claims Attack on Virginia Attorney General’s Office appeared first on SecurityWeek.

SecurityWeek – ​Read More

Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates

/in

The threat actors behind the Medusa ransomware-as-a-service (RaaS) operation have been observed using a malicious driver dubbed ABYSSWORKER as part of a bring your own vulnerable driver (BYOVD) attack designed to disable anti-malware tools.
Elastic Security Labs said it observed a Medusa ransomware attack that delivered the encryptor by means of a loader packed using a packer-as-a-service (PaaS

The Hacker News – ​Read More

Why Cyber Quality Is the Key to Security

/in

The time to secure foundations, empower teams, and make cyber resilience the standard is now — because the cost of waiting is far greater than the investment in proactive security.

darkreading – ​Read More

New Attacks Exploit Year-Old ServiceNow Flaws – Israel Hit Hardest

/in

ServiceNow vulnerability alert: Hackers are actively exploiting year-old flaws (CVE-2024-4879, CVE-2024-5217, CVE-2024-5178) for database access. Learn how to…

Hackread – Latest Cybersecurity, Tech, AI, Crypto & Hacking News – ​Read More

Russian zero-day seller is offering up to $4 million for Telegram exploits

/in

Two sources in the zero-day industry say Operation Zero’s prices for exploits against the popular messaging app Telegram will depend on different factors.

Security News | TechCrunch – ​Read More

Industry Reactions to Google Buying Wiz: Feedback Friday

/in

Industry professionals comment on Google acquiring cloud security giant Wiz for $32 billion in cash.

The post Industry Reactions to Google Buying Wiz: Feedback Friday appeared first on SecurityWeek.

SecurityWeek – ​Read More