Attention Apple Users: Critical Security Alert! The 3 Zero-Day Vulnerabilities Uncovered
On Thursday, Apple released security updates across its various platforms, including iOS, iPadOS, macOS, tvOS, watchOS, and Safari. These updates were aimed at addressing three newly discovered zero-day vulnerabilities that are currently being actively exploited by malicious actors. Let’s take a closer look at the three security flaws: CVE-2023-32409: This vulnerability resides in WebKit and […]
NPM Packages for Node.js Hiding Dangerous TurkoRat Malware
The security landscape continues to evolve, with threat actors constantly devising new methods to exploit vulnerabilities. In recent news, the npm package repository has fallen victim to two malicious packages that harbored an open source information stealer malware known as TurkoRat. These packages, named nodejs-encrypt-agent and nodejs-cookie-proxy-agent, were downloaded approximately 1,200 times before being identified […]
Effective Strategies to Minimize Vulnerabilities in the Manufacturing Attack Surface
Operational Technology (OT) environments with their Information Technology (IT) counterparts. This convergence has revolutionized the way machinery is connected to digital systems and data, resulting in a more efficient and streamlined manufacturing process. The introduction of computer systems dedicated to managing and monitoring industrial devices and machines has further facilitated this transformation, effectively bridging the […]
Android Cybercrime Syndicate Pre-Infected 8.9 Million: Unveiling a Global Threat
A cybercrime enterprise known as Lemon Group is leveraging millions of pre-infected Android smartphones worldwide to carry out their malicious operations, posing significant supply chain risks. “The infection turns these devices into mobile proxies, tools for stealing and selling SMS messages, social media and online messaging accounts and monetization via advertisements and click fraud,” cybersecurity […]