Security News > 2023 > April

Google on Friday released out-of-band updates to resolve an actively exploited zero-day flaw in its Chrome web browser, making it the first such bug to be addressed since the start of the year. Tracked as CVE-2023-2033, the high-severity vulnerability has been described as a type confusion issue in the V8 JavaScript engine.

The UN Cybercrime Treaty, to the extent it gets adopted, is expected to define global norms for lawful surveillance and legal processes available to investigate and prosecute cybercriminals. What concerns Rodriguez and other representatives of advocacy groups at the briefing is that the treaty negotiators will compromise on surveillance, privacy, and human rights.

This week, theft of customer data remains the focus, with Yum! Brands sending data breach notifications for a ransomware attack in January. April 10th 2023 KFC, Pizza Hut owner discloses data breach after ransomware attack.

A suspected Nigerian fraudster is scheduled to appear in court Friday for his alleged role in a $6 million plot to scam businesses via email. Kosi Goodness Simon-Ebo, 29, is the first of three Nigerian men to have been extradited from Canada to the US after a federal grand jury charged the trio on seven counts including money laundering and wire fraud for their alleged roles in a scheme to defraud victims out of millions of dollars.

Interesting article on the colossal squid, which is larger than the giant squid. So why do we always hear about the giant squid and not the colossal squid?

This is a current list of where and when I am scheduled to speak: I’m speaking on “Cybersecurity Thinking to Reinvent Democracy” at RSA Conference 2023 in San Francisco, California, on Tuesday,...

The Vice Society ransomware gang is deploying a new, rather sophisticated PowerShell script to automate data theft from compromised networks. Stealing corporate and customer data is a standard tactic in ransomware attacks for use as further leverage when extorting victims or reselling the data to other cybercriminals for maximum profit.

Microsoft is testing new ads in the Windows Start menu, or what it describes as "New treatments," for users logged into local accounts as part of a "Badging" expansion. "We are continuing the exploration of badging on the Start menu with several new treatments for users logging in with local user accounts to highlight the benefits of signing in with a Microsoft account," said Microsoft's Amanda Langowski and Brandon LeBlanc.

You want to commit suicide, but it's a mortal sin: your soul goes straight to hell, forever. That will get you executed, but if you confess your sins to a priest beforehand you avoid hell.

Google has released an emergency Chrome security update to address the first zero-day vulnerability exploited in attacks since the start of the year. This update was immediately available when BleepingComputer checked for new updates from the Chrome menu > Help > About Google Chrome.