Skip to main content

Security News

Filter by:

Outlook app to get built-in Microsoft 365 MFA on Android, iOS

Microsoft will soon fast-track multi-factor authentication (MFA) adoption for its Microsoft 365 cloud productivity platform by adding MFA capabilities to the Outlook email client. [...]
Bleepingcomputer 14 Mar 2023 251 Views

ChatGPT Browser Extension Hijacks Facebook Business Accounts

A threat actor may have compromised thousands of Facebook accounts — including business accounts — via a sophisticated fake Chrome ChatGPT browser extension which, until earlier this week, was available on Google's official Chrome Store.
Dark Reading 13 Mar 2023 283 Views

Warning: AI-generated YouTube Video Tutorials Spreading Infostealer Malware

Threat actors have been increasingly observed using AI-generated YouTube Videos to spread a variety of stealer malware such as Raccoon, RedLine, and Vidar. "The videos lure users by pretending to be tutorials on how to download cracked versions of software such as Photoshop, Premiere...
The Hacker News 13 Mar 2023 234 Views

Xenomorph Android Banking Trojan Returns with a New and More Powerful Variant

A new variant of the Android banking trojan named Xenomorph has surfaced in the wild, latest findings from ThreatFabric reveal. Named "Xenomorph 3rd generation" by the Hadoken Security Group, the threat actor behind the operation, the updated version comes with new features that allow...
The Hacker News 13 Mar 2023 273 Views

Akamai mitigates record-breaking 900Gbps DDoS attack in Asia

Akamai reports having mitigated the largest DDoS (distributed denial of service) attack ever launched against a customer based in the Asia-Pacific region. [...]
Bleepingcomputer 10 Mar 2023 331 Views

AT&T blames marketing bods for exposing 9M subscriber account records

Tells folks not to worry, it was very old and boring data AT&T has confirmed that miscreants had access to nine million of its wireless customers' account details after one of its vendor's networks suffered a security failure in January.…
The Register 10 Mar 2023 4985 Views

SonicWall devices infected by malware that survives firmware upgrades

A suspected Chinese hacking campaign has been targeting unpatched SonicWall Secure Mobile Access (SMA) appliances to install custom malware that establish long-term persistence for cyber espionage campaigns. [...]
Bleepingcomputer 10 Mar 2023 325 Views

Bitwarden flaw can let hackers steal passwords using iframes

Bitwarden's credentials autofill feature contains a risky behavior that could allow malicious iframes embedded in trusted websites to steal people's credentials and send them to an attacker.
Bleepingcomputer 9 Mar 2023 352 Views

Microsoft Excel now blocking untrusted XLL add-ins by default

Microsoft says the Excel spreadsheet software is now blocking untrusted XLL add-ins by default in Microsoft 365 tenants worldwide. [...]
Bleepingcomputer 8 Mar 2023 383 Views

Android March 2023 update fixes two critical code execution flaws

Google has released March 2023 security updates for Android, fixing a total of 60 flaws, and among them, two critical-severity remote code execution (RCE) vulnerabilities impacting Android Systems running versions 11, 12, and 13. [...]
Bleepingcomputer 7 Mar 2023 358 Views