by Syndicated News Feed | Jan 14, 2025 | IT Security
The FBI, working with French cops, obtained nine warrants to remotely wipe PlugX malware from thousands of Windows-based computers that had been infected by Chinese government-backed criminals, according to newly unsealed court documents. The Feds had been tracking a...
by Syndicated News Feed | Jan 14, 2025 | IT Security
Microsoft has released the KB5049981 cumulative update for Windows 10 22H2 and Windows 10 21H2, which contains an updated Kernel driver blocklist to prevent Bring Your Own Vulnerable Driver (BYOVD) attacks. The Windows 10 KB5049981 update is mandatory as it contains...
by Syndicated News Feed | Jan 14, 2025 | IT Security
Developer security company Snyk is at the center of allegations concerning the possible targeting or testing of Cursor, an AI code editor company, using “malicious” packages uploaded to NPM. Paul McCarty, a security researcher at SourceCodeRed.com, said he...
by Syndicated News Feed | Jan 13, 2025 | IT Security
Miscreants running a “mass exploitation campaign” against Fortinet firewalls, which peaked in December, may be using an unpatched zero-day vulnerability to compromise the equipment, according to security researchers who say they’ve observed the...
by Syndicated News Feed | Jan 13, 2025 | IT Security
Blood-donation not-for-profit OneBlood confirms that donors’ personal information was stolen in a ransomware attack last summer. OneBlood first notified the public about the attack on July 31, 2024, noting that ransomware actors had encrypted its virtual...
by Syndicated News Feed | Jan 13, 2025 | IT Security
CISA has tagged a command injection vulnerability (CVE-2024-12686) in BeyondTrust’s Privileged Remote Access (PRA) and Remote Support (RS) as actively exploited in attacks. As mandated by the Binding Operational Directive (BOD) 22-01, after being added to...
