Security
Headlines
HeadlinesLatestCVEs

Tag

#Web Security

Critical Linux Kernel Bug Allows Remote Takeover

The bug (CVE-2021-43267) exists in a TIPC message type that allows Linux nodes to send cryptographic keys to each other.

Threatpost
Open in Source
#Government#Malware#Mobile Security#Vulnerabilities#InfoSec Insider#Malware#Cryptography#Web Security#google#Cloud Security#Web Security#google#microsoft#Critical Infrastructure#Malware#Government#Hacks#Malware#Mobile Security#Vulnerabilities#Breach#Cloud Security#Hacks#InfoSec Insider#Mobile Security#Web Security#Web Security#Vulnerabilities#linux
Predicting the Next OWASP API Security Top 10

API security risk has dramatically evolved in the last two years. Jason Kent, Hacker-in-Residence at Cequence Security, discusses the top API security concerns today and how to address them.

Squid Game Crypto Scammers Rips Off Investors for Millions

Anti-dumping code kept investors from selling SQUID while fraudsters cashed out.

Ransomware Gangs Target Corporate Financial Activities

The FBI is warning about a fresh extortion tactic: threatening to tank share prices for publicly held companies.

Android Patches Actively Exploited Zero-Day Kernel Bug

Google’s Android November 2021 security updates plug 18 flaws in the framework and system components and 18 more in the kernel and vendor components.

Apple macOS Flaw Allows Kernel-Level Compromise

‘Shrootless’ allows bypass of System Integrity Protection IT security measures to install a malicious rootkit that goes undetected and performs arbitrary device operations.

Office 365 Phishing Campaign Uses Kaspersky’s Amazon SES Token

It's a legitimate access token, stolen from a third-party contractor, that lets the attackers send phishing emails from kaspersky.com email addresses.

Pirate Sports Streamer Gets Busted, Pivots to MLB Extortion

An alleged sports content pirate is accused of not only hijacking leagues' streams but also threatening to tell reporters how he accessed their systems.