#mac

Threat Round up for January 6 to January 13

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between Jan. 6 and Jan. 13. As with previous roundups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key

2 years ago

TALOS

Open in Source

#vulnerability #web #mac #windows #microsoft #js #git #java #backdoor #pdf

Deserialized web security roundup – Slack and Okta breaches, lax US government passwords report, and more 

Your fortnightly rundown of AppSec vulnerabilities, new hacking techniques, and other cybersecurity news

2 years ago

PortSwigger

Open in Source

#csrf #vulnerability #web #android #mac #windows #google #amazon #cisco #git #intel #c++#backdoor #rce #vmware #aws #auth #chrome #firefox

Deserialized web security roundup – Slack, Okta security breaches, lax US government passwords report, and more 

Your fortnightly rundown of AppSec vulnerabilities, new hacking techniques, and other cybersecurity news

2 years ago

PortSwigger

Open in Source

#csrf #vulnerability #web #android #mac #windows #google #amazon #cisco #git #intel #c++#backdoor #rce #vmware #aws #auth #chrome #firefox

Sneaky New Stealer Woos Corporate Workers Through Fake Zoom Downloads

Rhadamanthys spreads through Google Ads that redirect to bogus download sites for popular workforce software — as well as through more typical malicious emails.

2 years ago

DARKReading

Open in Source

#web #mac #windows #google #microsoft #git #c++#pdf #auth #chrome #firefox

CircleCI, LastPass, Okta, and Slack: Cyberattackers Pivot to Target Core Enterprise Tools

High-profile software provider compromises in the past few months show that threat actors are actively targeting the services underpinning corporate infrastructure. Here's what to do about it.

2 years ago

DARKReading

Open in Source

#mac #git #auth #ssh

Beware: Tainted VPNs Being Used to Spread EyeSpy Surveillanceware

Tainted VPN installers are being used to deliver a piece of surveillanceware dubbed EyeSpy as part of a malware campaign that started in May 2022. It uses "components of SecondEye – a legitimate monitoring application – to spy on users of 20Speed VPN, an Iranian-based VPN service, via trojanized installers," Bitdefender said in an analysis. A majority of the infections are said to originate in

2 years ago

The Hacker News

Open in Source

#web #ios #mac #git #The Hacker News

libCoreEntitlements CEContextQuery Arbitrary Entitlement Returns

On newer macOS/iOS versions, entitlements in binary signature blobs are stored in the DER format. libCoreEntitlements.dylib is the userspace library for parsing and querying such entitlements. The kernel has its own version of this library inside the AppleMobileFileIntegrity module. libCoreEntitlements exposes several functions, such as, for example, to convert entitlements to a dictionary representation (e.g. CEQueryContextToCFDictionary) or to query a specific entitlement (CEContextQuery). Unfortunately, different functions traverse the DER structure in a subtly different way, which allows one API to see one set of entitlements and another API to see a different set of entitlements.

2 years ago

Packet Storm

Open in Source

#ios #mac #apple

WebKit CSSCrossfadeValue::crossfadeChanged Use-After-Free

WebKit suffers from a RenderMathMLToken use-after-free vulnerability in CSSCrossfadeValue::crossfadeChanged.

2 years ago

Packet Storm

Open in Source

#vulnerability #web #mac #apple #google #js #java #c++#webkit

WordPress Slider Revolution 4.x.x Shell Upload

WordPress Slider Revolution plugin versions 4.x.x suffer from a remote shell upload vulnerability.