Security News

Week in review: Exploitable flaws in corporate VPN clients, malware loader created with gaming engine

2024-12-01 09:00

Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: Researchers reveal exploitable flaws in corporate VPN clients Researchers have discovered...

#engine #malware #VPN #CVE-2024-29014 #CVE-2024-5921

Cybercriminals Exploit Popular Game Engine Godot to Distribute Cross-Platform Malware

2024-11-28 09:29

A popular open-source game engine called Godot Engine is being misused as part of a new GodLoader malware campaign, infecting over 17,000 systems since at least June 2024. "Cybercriminals have...

#cybercriminal #engine #exploit #malware

Hackers abuse popular Godot game engine to infect thousands of PCs

2024-11-27 21:17

Hackers have used new GodLoader malware exploiting the capabilities of the widely used Godot game engine to evade detection and infect over 17,000 systems in just three months. [...]

#engine #hacker

Cybercriminals used a gaming engine to create undetectable malware loader

2024-11-27 18:17

Threat actors are using an ingenious new way for covertly delivering malware to a wide variety of operating systems and platforms: they have created a malware loader that uses Godot Engine, an...

#cybercriminal #engine #malware

Osmedeus: Open-source workflow engine for offensive security

2024-11-06 05:00

Osmedeus is an open-source workflow engine designed for offensive security. It serves as a versatile foundation, enabling users to easily create customized reconnaissance systems and scale them...

#engine #opensource #security

Google’s AI Tool Big Sleep Finds Zero-Day Vulnerability in SQLite Database Engine

2024-11-04 10:04

Google said it discovered a zero-day vulnerability in the SQLite open-source database engine using its large language model (LLM) assisted framework called Big Sleep (formerly Project Naptime)....

#AI #database #engine #google #vulnerability #zeroday

Gamers Tricked Into Downloading Lua-Based Malware via Fake Cheating Script Engines

2024-10-08 16:26

Users searching for game cheats are being tricked into downloading a Lua-based malware that is capable of establishing persistence on infected systems and delivering additional payloads. "These...

#engine #malware

Automattic blocks WP Engine’s access to WordPress resources

2024-09-26 13:51

WordPress.org has banned WP Engine from accessing its resources and stopped delivering plugin updates to websites hosted on the platform, urging impacted users to choose other hosting providers. [...]

#engine #wordpress

WordPress.org denies service to WP Engine, potentially putting sites at risk

2024-09-26 01:45

That escalated quickly WordPress on Wednesday escalated its conflict with WP Engine, a hosting provider, by blocking the latter's servers from accessing WordPress.org resources – and therefore...

#engine #wordpress

Critical Docker Engine Flaw Allows Attackers to Bypass Authorization Plugins

2024-07-25 05:47

Docker is warning of a critical flaw impacting certain versions of Docker Engine that could allow an attacker to sidestep authorization plugins under specific circumstances. "An attacker could exploit a bypass using an API request with Content-Length set to 0, causing the Docker daemon to forward the request without the body to the AuthZ plugin, which might approve the request incorrectly," the Moby Project maintainers said in an advisory.

#bypass #critical #docker #engine

Security News {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Security News"}]}

Security News