Over Security

Over Security

33571 bookmarks
Custom sorting
WhatsApp phishing attack uses fake business docs to hack PCs
WhatsApp phishing attack uses fake business docs to hack PCs
An ongoing malware campaign is targeting WhatsApp users in multiple countries with deceptive messages that push VBScript files, leading to remote system access.
·bleepingcomputer.com·
WhatsApp phishing attack uses fake business docs to hack PCs
JaredFromSubway MEV bot hacked in $15 million crypto theft
JaredFromSubway MEV bot hacked in $15 million crypto theft
The JaredFromSubway Ethereum MEV (Maximal Extractable Value) bot suffered a $15 million loss after an attacker manipulated the opportunity-detection logic by creating fake cryptocurrency trading opportunities.
·bleepingcomputer.com·
JaredFromSubway MEV bot hacked in $15 million crypto theft
FFmpeg fixes PixelSmash flaw in widely used video decoder
FFmpeg fixes PixelSmash flaw in widely used video decoder
A newly disclosed FFmpeg flaw dubbed 'PixelSmash' could be exploited for remote code execution on Jellyfin servers under certain conditions, and can also trigger a denial-of-service  condition in applications like Kodi, Emby, Nextcloud, PhotoPrism, and OBS Studio.
·bleepingcomputer.com·
FFmpeg fixes PixelSmash flaw in widely used video decoder
FortiBleed campaign used custom FortiGate sniffer to steal credentials
FortiBleed campaign used custom FortiGate sniffer to steal credentials
Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets from compromised firewalls and steal credentials.
·bleepingcomputer.com·
FortiBleed campaign used custom FortiGate sniffer to steal credentials
8 Questions to Ask Before Choosing an Incident Response Retainer
8 Questions to Ask Before Choosing an Incident Response Retainer
Before you sign an incident response retainer, ask about SLA definitions, scope, hidden costs, threat profile fit, and post-incident support. Here is what to look for.
·group-ib.com·
8 Questions to Ask Before Choosing an Incident Response Retainer
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft has confirmed that Windows 11 version 26H2 will be the next feature update and that devices running Windows 11 24H2 and 25H2 will be able to upgrade using a small enablement package.
·bleepingcomputer.com·
Microsoft says Windows 11 26H2 is coming soon, details upgrade process
Microsoft fixes AutoGen Studio flaw that enabled code execution
Microsoft fixes AutoGen Studio flaw that enabled code execution
A vulnerability chain dubbed AutoJack in Microsoft's AutoGen Studio interface for prototyping AI agents could let attackers manipulate an agent into executing arbitrary commands on its host system simply by visiting a malicious webpage.
·bleepingcomputer.com·
Microsoft fixes AutoGen Studio flaw that enabled code execution
WhatsApp e crimeware: la convergenza tra malware, social engineering e strumenti leciti
WhatsApp e crimeware: la convergenza tra malware, social engineering e strumenti leciti
File VBScript malevoli distribuiti via messaggi diretti, tramite account WhatsApp violati, abusano di software RMM legittimi per ottenere persistenza e controllo dei sistemi compromessi. Ecco come mitigare i rischi legati al social engineering su WhatsApp Desktop e Web per diffondere malware
·cybersecurity360.it·
WhatsApp e crimeware: la convergenza tra malware, social engineering e strumenti leciti
Cyber Risk Assessment: come calcolare l’impatto economico degli incidenti IT
Cyber Risk Assessment: come calcolare l’impatto economico degli incidenti IT
Il Cyber Risk Assessment economico traduce il rischio cyber in numeri comprensibili al management: costi degli incidenti, perdite attese, ritorno sull'investimento in sicurezza. Questa guida illustra modelli, scenari numerici e framework operativi per quantificare l'esposizione e allocare il budget IT in modo difendibile
·cybersecurity360.it·
Cyber Risk Assessment: come calcolare l’impatto economico degli incidenti IT
Il blocco di Claude Mythos: le implicazioni per le aziende italiane ed europee
Il blocco di Claude Mythos: le implicazioni per le aziende italiane ed europee
Il provvedimento di divieto dell'export dell’accesso ai modelli Claude Mythos 5 e Fable 5 punta il dito sul fatto che Mythos è diverso da tutto ciò che lo ha preceduto. Ecco cosa significa questo blocco, qual è il rischio di “sovranità del vendor” e quali capacità hanno attirato l’interesse delle agenzie governative per usi difensivi e offensivi
·cybersecurity360.it·
Il blocco di Claude Mythos: le implicazioni per le aziende italiane ed europee
A Glimpse into the “Search Your Target” Market for Stolen Credentials
A Glimpse into the “Search Your Target” Market for Stolen Credentials
Attackers no longer need to sift through massive credential dumps. They can pay others to do it for them. Flare explores how an emerging underground market searches stolen credential databases for specific companies, domains, and accounts.
·bleepingcomputer.com·
A Glimpse into the “Search Your Target” Market for Stolen Credentials
Breaking Out of Chrome’s Sandbox: A Native Messaging Backdoor Observed in Italy
Breaking Out of Chrome’s Sandbox: A Native Messaging Backdoor Observed in Italy
A malicious Chrome extension observed in an Italian malspam campaign used Native Messaging to escape the browser sandbox, steal session data and execute remote PowerShell commands on Windows. This analysis explains the infection chain, its command-and-control channel and the main detection opportu
·d3lab.net·
Breaking Out of Chrome’s Sandbox: A Native Messaging Backdoor Observed in Italy
Rokarolla, il banking trojan Android che punta al controllo totale dello smartphone
Rokarolla, il banking trojan Android che punta al controllo totale dello smartphone
Si chiama Rokarolla la nuova famiglia di malware Android che si distingue per le sue avanzate capacità di compromissione e controllo remoto dei dispositivi mobili: progettato per massimizzare la persistenza sul dispositivo compromesso, garantisce agli attaccanti una visibilità completa sulle attività dell’utente. Ecco tutti i dettagli
·cybersecurity360.it·
Rokarolla, il banking trojan Android che punta al controllo totale dello smartphone
Sunil Varkey Joins Hexaware Technologies as EVP & CISO
Sunil Varkey Joins Hexaware Technologies as EVP & CISO
Sunil Varkey has been appointed EVP & CISO at Hexaware Technologies, bringing years of cybersecurity experience across global enterprises.
·thecyberexpress.com·
Sunil Varkey Joins Hexaware Technologies as EVP & CISO
Data manipulation nei sistemi OT e IoT: il rischio cyber che i CDA non stanno governando
Data manipulation nei sistemi OT e IoT: il rischio cyber che i CDA non stanno governando
Non tutti gli attacchi cyber bloccano la produzione. La data manipulation può alterare parametri, sensori e informazioni di processo senza generare allarmi immediati, compromettendo qualità, sicurezza e continuità operativa. Un rischio che i consigli di amministrazione non possono più ignorare
·cybersecurity360.it·
Data manipulation nei sistemi OT e IoT: il rischio cyber che i CDA non stanno governando