Roblox developers are the target of a persistent campaign that seeks to compromise systems through bogus npm packages, once again underscoring how threat actors continue to exploit the trust in the open-source ecosystem to deliver malware. “By mimicking the popular ‘noblox.js’ library, attackers have published dozens of packages designed to steal sensitive data and compromise […]
A new ransomware-as-a-service (RaaS) operation named Cicada3301 has already listed 19 victims on its extortion portal, as it quickly attacked companies worldwide. […]
GitHub is being abused to distribute the Lumma Stealer information-stealing malware as fake fixes posted in project comments. […]
The popular Docker-OSX project has been removed from Docker Hub after Apple filed a DMCA (Digital Millennium Copyright Act) takedown request, alleging that it violated its copyright. […]
A recently patched security flaw in Google Chrome and other Chromium web browsers was exploited as a zero-day by North Korean actors in a campaign designed to deliver the FudModule rootkit. The development is indicative of the persistent efforts made by the nation-state adversary, which had made a habit of incorporating rafts of Windows zero-day […]
Windows 11’s Spotlight feature is a pretty nice way to jazz up your desktop background with different wallpapers and fun facts when you hover over the image icon, but it takes up a lot of space. Microsoft is working on a new change that reduces this clutter in the Windows 11 Spotlight feature. […]
Security researchers have found a vulnerability in a key air transport security system that allowed unauthorized individuals to potentially bypass airport security screenings and gain access to aircraft cockpits. […]
A campaign that started on August 5, 2024, is spreading a previously undocumented malware named “Voldemort” to organizations worldwide, impersonating tax agencies from the U.S., Europe, and Asia. […]
30
Aug
Aug
Hello Windows Insiders, today we are releasing Windows 11 Insider Preview Build 27695 to the Canary Channel. We are also not planning to release SDKs for 27xxx series builds for the time being. What’s new with Build 27695 New position for the Widgets entry-point on left-aligned taskbars We’re beginning to roll out a new position […]
North Korean hackers have exploited a recently patched Google Chrome zero-day (CVE-2024-7971) to deploy the FudModule rootkit after gaining SYSTEM privileges using a Windows Kernel exploit. […]