Security
Headlines
HeadlinesLatestCVEs

Source

Malwarebytes

Patch now! VMWare escape flaws are so serious even end-of-life software gets a fix

The flaws could allow an attacker with privileged access to a guest VM to access the hypervisor on the host.

Malwarebytes
#vulnerability#mac#vmware
Update now! JetBrains TeamCity vulnerability abused at scale

Users of JetBrains TeamCity on-prmises server need to deal with two serious vulnerabilities.

PetSmart warns customers of credential stuffing attack

Pet retail company PetSmart has emailed customers to alert them to a recent attack that used reused passwords.

Predator spyware vendor banned in US

The US Treasury Department has sanctioned Predator spyware vendor Intellexa Consortium, and banned the company from doing business in the US.

ALPHV ransomware gang fakes own death, fools no one

The ALPHV gang's attempt to cover up an exit scam isn't going well.

Update your iPhones and iPads now: Apple patches security vulnerabilities in iOS and iPadOS

Apple has released a security update for iOS and iPadOS to patch two zero-day vulnerabilities which are reported to already have been exploited.

Check your DNS! Abandoned domains used to bypass spam checks

Researchers have uncovered thousands of "subdomailing" campaigns.

American Express warns customers about third party data breach

American Express has warned affected customers about a breach at a merchant process that leaked account numbers, names, and card expiration dates.

No “Apple magic” as 11% of macOS detections last year came from malware

Last year, 11% of all detections on Macs were caused by malware. The illuminating figure gives a view into the world of Mac cyberthreats.

Pegasus spyware creator ordered to reveal code used to spy on WhatsApp users

Meta has won a court case against spyware vendor NSO Group to reveal the Pegasus spyware code that allows spying on WhatsApp users.