A Monero miner-malware is leveraging RADMIN and MIMKATZ for propagation while exploiting critical vulnerabilities to spread in a worm-like behaviour to covertly target specific systems in industries in China, Taiwan, Italy, and Hong Kong.
A multi-staged malware dropping multiple payloads is infecting its victims without a clear purpose and has shown a significant uptick in activity since January 2019.
Google Play announced it will continue its crackdown on malicious apps into 2019 by focusing more on user privacy, developer integrity and harmful app contents and behaviour.
Mozilla Foundation has issued security advisories for several vulnerabilities in Firefox ESR 60.5.1 and Firefox 65.0.1.
The Xiaomi M365, a popular electric scooter used by several ride-share companies such as BIRD as well as for personal ownership, is vulnerable to remote hacking due to improper password validation.
A default password vulnerability in Network Assurance Engine (NAE) could allow an unauthenticated, local attacker to gain unauthorised access or cause a Denial of Service (DoS) condition on the server.
Researchers developed a proof of concept attack which allows them to hide malware in Intel's Software Guard eXtensions (SGX).
A critical vulnerability in the WordPress plugin Simple Social Buttons allows an attacker to completely takeover a website.
Microsoft released 77 updates, 20 of which were classified as critical, in this months patch Tuesday announcement.
The protections that chip and PIN payment card solutions offer may fall short as cyber-criminals begin installing command-and-control malware on infected EMV device readers, a new report warns.