macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users

Users of Chinese instant messaging apps like DingTalk and WeChat are the target of an Apple macOS version of a backdoor named HZ RAT.
The artifacts “almost exactly replicate the functionality of the Windows version of the backdoor and differ only in the payload, which is received in the form of shell scripts from the attackers’ server,” Kaspersky researcher Sergey Puzan said.
HZ RAT was first

The Hacker News – ​Read More

LibreOffice now removes personal data from documents. Why that matters

If privacy and security are central to you or your business, this new feature from the open-source office suite LibreOffice is worth checking out. Here’s how it works.

Latest stories for ZDNET in Security – ​Read More

Google Tags a Tenth Chrome Zero-Day as Exploited This Year

The vulnerability, tracked as CVE-2024-7965 and reported by a security researcher known as TheDog, involved a bug in the compiler backend that could allow remote attackers to exploit heap corruption through a crafted HTML page.

Cyware News – Latest Cyber News – ​Read More

Top Universities to Battle in Cybersecurity at UNSW’s Upcoming Australian Cybersecurity Games

Top universities in Australia will compete in the Australian Cybersecurity Games at UNSW from September 2-30, 2024. This event, organized by SECedu, features cybersecurity experts collaborating with leading universities like UNSW.

Cyware News – Latest Cyber News – ​Read More

New Unicode QR Code Phishing Scam Bypasses Traditional Security

Cybercriminals are exploiting Unicode QR codes in a new wave of phishing attacks. This sophisticated technique bypasses traditional…

Hackread – Latest Cybersecurity, Tech, Crypto & Hacking News – ​Read More

Cribl Raises $319 Million at $3.5 Billion Valuation

The IT and data security firm raises $319 million in a Series E round led by Google Ventures and is now valued at $3.5 billion.

The post Cribl Raises $319 Million at $3.5 Billion Valuation appeared first on SecurityWeek.

SecurityWeek – ​Read More

SonicWall Patches Critical Flaw Affecting its Firewalls (CVE-2024-40766)

SonicWall has addressed a critical vulnerability (CVE-2024-40766) in its next-gen firewalls, which could be exploited by remote attackers to gain unauthorized access and potentially crash the devices.

Cyware News – Latest Cyber News – ​Read More

Two Strategies to Protect Your Business From the Next Large-Scale Tech Failure

Diversifying suppliers and systems can help minimize risks, as shown by corporations that purchase networking equipment from multiple vendors to prevent total network failure in case of vendor issues.

Cyware News – Latest Cyber News – ​Read More

Chinese Volt Typhoon Exploits Versa Director Flaw, Targets U.S. and Global IT Sectors

The China-nexus cyber espionage group tracked as Volt Typhoon has been attributed with moderate confidence to the zero-day exploitation of a recently disclosed high-severity security flaw impacting Versa Director.
The attacks targeted four U.S. victims and one non-U.S. victim in the Internet service provider (ISP), managed service provider (MSP) and information technology (IT) sectors as early

The Hacker News – ​Read More

China’s Volt Typhoon Exploits 0-day in Versa’s SD-WAN Director Servers

So far, the threat actor has compromised at least five organizations using CVE-2024-39717; CISA has added bug to its Known Exploited Vulnerability database.

darkreading – ​Read More