by Syndicated News Feed | Mar 17, 2025 | IT Security
A vulnerability analyst and prominent member of the infosec industry has blasted Microsoft for refusing to look at a bug report unless he submitted a video alongside a written explanation. Senior principal vulnerability analyst Will Dormann said last week he contacted...
by Syndicated News Feed | Mar 16, 2025 | IT Security
A widespread phishing campaign has targeted nearly 12,000 GitHub repositories with fake “Security Alert” issues, tricking developers into authorizing a malicious OAuth app that grants attackers full control over their accounts and code. “Security...
by Syndicated News Feed | Mar 15, 2025 | IT Security
Security researcher Yohanes Nugroho has released a decryptor for the Linux variant of Akira ransomware, which utilizes GPU power to retrieve the decryption key and unlock files for free. Nugroho developed the decryptor after being asked for help from a friend, deeming...
by Syndicated News Feed | Mar 14, 2025 | IT Security
A large-scale Coinbase phishing attack poses as a mandatory wallet migration, tricking recipients into setting up a new wallet with a pre-generated recovery phrase controlled by attackers. The emails have a subject of “Migrate to Coinbase Wallet” and state...
by Syndicated News Feed | Mar 14, 2025 | IT Security
Microsoft says it partially mitigated a week-long Exchange Online outage causing delays or failures when sending or receiving email messages. While the company didn’t publicly share information on this incident, it tagged it as a critical service issue tracked...
by Syndicated News Feed | Mar 14, 2025 | IT Security
US politicians and privacy campaigners are calling for the private hearing between Apple and the UK government regarding its alleged encryption-busting order to be aired in public. Reports suggest that Apple planned to appeal the demand at a behind-closed-doors High...
by Syndicated News Feed | Mar 14, 2025 | IT Security
Researchers are tracking a newly discovered ransomware group with suspected links to LockBit after a series of intrusions were reported starting in January. Forescout said the group it’s tracking as Mora_001 exploited two Fortinet vulnerabilities to gain an...
by Syndicated News Feed | Mar 13, 2025 | IT Security
House Democrats have sent letters to 24 federal agencies asking for assurances that Elon Musk’s DOGE team is not feeding sensitive government data into “unapproved and unaccountable” AI systems. The letters [PDF], penned by Gerald Connolly (D-VA),...
by Syndicated News Feed | Mar 13, 2025 | IT Security
Microsoft has reinstated the ‘Material Theme – Free’ and ‘Material Theme Icons – Free’ extensions on the Visual Studio Marketplace after finding that the obfuscated code they contained wasn’t actually malicious. The two VSCode extensions,...
by Syndicated News Feed | Mar 13, 2025 | IT Security
A new ransomware operator named ‘Mora_001’ is exploiting two Fortinet vulnerabilities to gain unauthorized access to firewall appliances and deploy a custom ransomware strain dubbed SuperBlack. The two vulnerabilities, both authentication bypasses, are...
