Skip to main content

Security News

Filter by:

Outlook app to get built-in Microsoft 365 MFA on Android, iOS

Microsoft will soon fast-track multi-factor authentication (MFA) adoption for its Microsoft 365 cloud productivity platform by adding MFA capabilities to the Outlook email client. [...]
Bleepingcomputer 14 Mar 2023 456 Views

ChatGPT Browser Extension Hijacks Facebook Business Accounts

A threat actor may have compromised thousands of Facebook accounts — including business accounts — via a sophisticated fake Chrome ChatGPT browser extension which, until earlier this week, was available on Google's official Chrome Store.
Dark Reading 13 Mar 2023 470 Views

Warning: AI-generated YouTube Video Tutorials Spreading Infostealer Malware

Threat actors have been increasingly observed using AI-generated YouTube Videos to spread a variety of stealer malware such as Raccoon, RedLine, and Vidar. "The videos lure users by pretending to be tutorials on how to download cracked versions of software such as Photoshop, Premiere...
The Hacker News 13 Mar 2023 414 Views

Xenomorph Android Banking Trojan Returns with a New and More Powerful Variant

A new variant of the Android banking trojan named Xenomorph has surfaced in the wild, latest findings from ThreatFabric reveal. Named "Xenomorph 3rd generation" by the Hadoken Security Group, the threat actor behind the operation, the updated version comes with new features that allow...
The Hacker News 13 Mar 2023 435 Views

Akamai mitigates record-breaking 900Gbps DDoS attack in Asia

Akamai reports having mitigated the largest DDoS (distributed denial of service) attack ever launched against a customer based in the Asia-Pacific region. [...]
Bleepingcomputer 10 Mar 2023 489 Views

AT&T blames marketing bods for exposing 9M subscriber account records

Tells folks not to worry, it was very old and boring data AT&T has confirmed that miscreants had access to nine million of its wireless customers' account details after one of its vendor's networks suffered a security failure in January.…
The Register 10 Mar 2023 6013 Views

SonicWall devices infected by malware that survives firmware upgrades

A suspected Chinese hacking campaign has been targeting unpatched SonicWall Secure Mobile Access (SMA) appliances to install custom malware that establish long-term persistence for cyber espionage campaigns. [...]
Bleepingcomputer 10 Mar 2023 475 Views

Bitwarden flaw can let hackers steal passwords using iframes

Bitwarden's credentials autofill feature contains a risky behavior that could allow malicious iframes embedded in trusted websites to steal people's credentials and send them to an attacker.
Bleepingcomputer 9 Mar 2023 490 Views

IceFire Ransomware Exploits IBM Aspera Faspex to Attack Linux-Powered Enterprise Networks

A previously known Windows-based ransomware strain known as IceFire has expanded its focus to target Linux enterprise networks belonging to several media and entertainment sector organizations across the world. The intrusions entail the exploitation of a recently disclosed deserialization vulnerability in IBM Aspera Faspex file-sharing...
The Hacker News 9 Mar 2023 7 Views

Microsoft Excel now blocking untrusted XLL add-ins by default

Microsoft says the Excel spreadsheet software is now blocking untrusted XLL add-ins by default in Microsoft 365 tenants worldwide. [...]
Bleepingcomputer 8 Mar 2023 524 Views