SEARCH
SEC: SIM Swapping Attack Led to Twitter Account Compromise
New revelations from the investigation into the SEC's Twitter account compromise reveal that it stemmed from a SIM swapping attack and that MFA had been disabled on the account.
Apple Patches WebKit Zero Day, Adds Stolen Device Protection in iOS
Apple has fixed a actively exploited WebKit bug (CVE-2024-23222) in iOS and macOS. and added a new security feature called Stolen Device Protection.
CISA Issues Emergency Directive For Ivanti Flaws, Warns of ‘Widespread Exploitation’
CISA said its new emergency directive for Ivanti zero-days is “based on widespread exploitation of vulnerabilities by multiple threat actors."
Exploitation of Recently Patched VMware Bug Started in 2021
Threat actors exploited a critical-severity VMware flaw for almost two years before patches were released in October.
Decipher Podcast: Source Code 1/19
Welcome back to Source Code, Decipher's weekly news wrap podcast with input from our sources.