Cybersecurity News
Unauthenticated Stored XSS Vulnerability in LiteSpeed Cache Plugin Affecting 6+ Million Sites.
WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks. The flaw, tracked as CVE-2024-47374 (CVSS score: 7.2).
Digests
Cybersecurity News
- Hardbit ransomware version 4.0 supports new obfuscation technique.
- Hackers are attacking Windows users with Internet Explorer zero-Day vulnerability.
- Apple warns iPhone users in 98 countries of more spyware attacks.
- Cri
Cybersecurity News
- Researchers have spotted exploitation attempts for the critical vulnerability impacting all D-Link DIR-859 WiFi routers.
- Brain Cipher has released decryption keys for free, allowing victims to recover their encrypted data.
- Apple’s CocoaPods platform bugs
Cybersecurity News
- Hackers use authentication tools to deliver NiceRAT malware via botnet.
- XSS flaws in multiple WordPress plugins exploited to deploy malware.
- 361 million stolen accounts leaked on Telegram were added to Have I B
Cybersecurity News
- Zoom announced a Post-Quantum End-to-End encryption for meetings.
- A spyware app has been found running on computers at several hotels around the US, which is leaking screenshots of guest information to the internet.
- 30+ Tesla cars were hacked using third-party software.
Cybersecurity News
- Cybersecurity experts have discovered a new Android banking trojan named Brokewell. It can capture every event on the device, from touches and information displayed to text input and the applications the user launches.
- Experts have uncovered a number of vulnerabilities in Chinese cloud-based pinyin keyboard apps.
Cybersecurity News
- Apple has sent a new batch of threat notifications to users in 92 countries who may have been targeted by mercenary spyware attacks.
- Cybersecurity researchers have disclosed the first native Spectre v2 exploit against the Linux kernel on Intel systems.
Cybersecurity News
- Experts has warned of info stealer malware targeting macOS users via malicious ads and rogue websites.
Cybersecurity News
- Researchers have demonstrated a new acoustic side-channel attack on keyboards. It can deduce user input based on their typing patterns, even in poor conditions, such as environments with noise.
- Three types of vulnerabilities that can possibly lead to data exposure and account takeovers have been discovered in ChatGPT.