Notícias, Pontas, Laboratório de segurança

Critical Auth Bypass Vulnerability in Apache OFBiz: CVE-2023-5146в

Apache OFBiz Vulnerability Exposes Millions of Systems

The cyber world has been rattled by the recent discovery of a critical zero-day vulnerability in Apache OFBiz, conhecido como…

YouTube Videos Promote Software Cracks With Lumma Stealer

Pesquisadores descobriram uma ameaça à segurança cibernética que atinge usuários por meio de vídeos do YouTube. These videos offer pirated software but are being

Two Adobe ColdFusion Vulnerabilities Exploited in The Wild

Two vulnerabilities in Adobe ColdFusion are exploited in real-world attacks, a Cibersegurança & Agência de segurança de infraestrutura (CISA) avisa. Both issues

Tortilla (Babuk) Ransomware Decryptor Available

Em janeiro 9, 2024, Avast and Cisco Talos announced the release of a free decryptor for one of the Babuk

OAuth2 Session Hijack Vulnerability: Details Uncovered

Uma exploração sofisticada direcionada ao sistema de autenticação OAuth2 do Google foi descoberta pelo ator de ameaça Prisma. This exploit leverages undocumented functionalities within

What is APT43?

APT43 Funds Cybercrime With Stolen Crypto

Researchers have identified a new state-backed hacker group in North

Aspera Faspex Breach CVE-2022-47986 Is Used To Deploy Ransomware

Ransomware Actors Target IBM’s Aspera Faspex

Utilitário de transferência de arquivos Aspera Faspex, desenvolvido pela IBM, tornou-se um…

3CX Software Falls Victim To Supply Chain Attack

3CX Phone System is Struck With Chain Supply Attack

3Sistema Telefônico CX, um aplicativo de desktop para comunicação telefônica comercial,…

CFTC Lawsuit to Binance May Cause Scam Storm

Binance US Ban Scams Incoming: What to Expect?

Recent events around one of the world’s largest cryptocurrency exchanges

aCropalypse vulnerability for Windows

The aCropalypse Vulnerability Poses a Threat Not Only to Pixel, but Also to Windows

Especialistas em segurança da informação descobriram que a vulnerabilidade aCropalypse, qual…

Fake ChatGPT Plugin is Spread Through Chrome Web Store

Malicious ChatGPT Add-On Hijack Facebook Accounts

ChatGPT se tornou um fenômeno mundial nos últimos meses. GPT-4 update

BlackGuard Stealer Extends Crypto Stealing Functionality

BlackGuard Receives Update, Targets More Cryptowallets

Guarda Negra, um prolífico malware infostealer, received an update at the

Linus Tech Tips Channel Hacked, Spreads Crypto Scam

Linus Tech Tips YouTube Channel Hacked

Dicas técnicas de Linus, um canal de tecnologia de 15 milhões no YouTube, foi hackeado…

malicious NuGet packages

Attackers target .NET Developers with Malicious NuGet Packages

JFrog experts warned that attackers are targeting .NET developers through

Other people's chats in ChatGPT

ChatGPT Users Complained about Seeing Other People’s Chat Histories

Some ChatGPT users have reported on social media that their

Financial assistance department email Scam

Financial Assistance Department Email Scam to call (855)-XXX-XXXX

Email is one of the oldest ways to exchange information

Breached Forums are Not Accessible

BreachForums is down. Things got worse?

Recentemente, one of BreachForums administrators nicknamed PomPomPurin was arrested by