Google has released an emergency update for Chrome to fix a vulnerability (CVE-2022-3075) that has been actively exploited.
Dennis Fisher talks with Meg Gardiner, the coauthor of Heat 2, the bestselling sequel and prequel to Heat, the greatest crime movie ever made. They discuss the infosec and hacking subplot of the novel, where that idea came from, and how the research into the hacking scene worked.
Welcome back to Source Code, Decipher’s weekly news podcast with input from our sources.
CISA is warning customers about several locally exploitable flaws in Contec Health CMS8000 devices.
Microsoft quietly fixed the elevation of privilege flaw in June.
Apple has released an update for older iOS devices and iPhones to address an actively exploited WebKit zero day (CVE-2022-32893).
Google will reward the discoveries of flaws found in its open source software projects, such as Golang, Angular and Fuchsia.
The group activity has overlaps with APT40, which has continued its “operational tempo” despite a previous indictment by the U.S. Department of Justice in 2021.
The lawsuit against data broker Kochava is another step by the FTC to crack down on invasive data collection and sharing practices.
An attacker was able to compromise a developer account and steal a portion of the LastPass source code recently, the company said. But no customer data was affected.
The PyPI maintainers say a new phishing campaign is targeting Python project maintainers and aiming to steal credentials and compromise projects.
The Iranian APT group known as Charming Kitten has been using a new tool called HYPERSCRAPE to steal the contents of Gmail, Yahoo, and Outlook 365 inboxes.
Researchers have disclosed a bug in some versions of CrowdStrike Falcon that allows an attacker with admin privileges to uninstall the security agent.
Microsoft has been tracking a recent cryptojacking campaign that abuses Windows binaries to stay hidden.
APT29, the threat actor linked to the SolarWinds hack, is abusing various Azure features in recent attacks against organizations that influence the foreign policy of NATO countries.