Security News

Researchers Uncover Hijack Loader Malware Using Stolen Code-Signing Certificates
2024-10-15 06:43

Cybersecurity researchers have disclosed a new malware campaign that delivers Hijack Loader artifacts that are signed with legitimate code-signing certificates. French cybersecurity company...

Crypto-apocalypse soon? Chinese researchers find a potential quantum attack on classical encryption
2024-10-14 06:30

With an off-the-shelf D-Wave machine Chinese researchers claim they have found a way to use D-Wave's quantum annealing systems to develop a promising attack on classical encryption.…

Researchers Uncover Major Security Vulnerabilities in Industrial MMS Protocol Libraries
2024-10-09 15:33

Details have emerged about multiple security vulnerabilities in two implementations of the Manufacturing Message Specification (MMS) protocol that, if successfully exploited, could have severe...

Researchers Warn of Ongoing Attacks Exploiting Critical Zimbra Postjournal Flaw
2024-10-02 05:56

Cybersecurity researchers are warning about active exploitation attempts targeting a newly disclosed security flaw in Synacor's Zimbra Collaboration. Enterprise security firm Proofpoint said it...

Cybersecurity Researchers Warn of New Rust-Based Splinter Post-Exploitation Tool
2024-09-25 12:38

Cybersecurity researchers have flagged the discovery of a new post-exploitation red team tool called Splinter in the wild. Palo Alto Networks Unit 42 shared its findings after it discovered the...

Researchers Find Over 22,000 Removed PyPI Packages at Risk of Revival Hijack
2024-09-04 13:00

A new supply chain attack technique targeting the Python Package Index (PyPI) registry has been exploited in the wild in an attempt to infiltrate downstream organizations. It has been codenamed...

Security Researcher Sued for Disproving Government Statements
2024-09-04 11:03

This story seems straightforward. A city is the victim of a ransomware attack. They repeatedly lie to the media about the severity of the breach. A security researcher repeatedly proves their...

Researchers find SQL injection to bypass airport TSA security checks
2024-08-30 19:02

Security researchers have found a vulnerability in a key air transport security system that allowed unauthorized individuals to potentially bypass airport security screenings and gain access to...

Researcher sued for sharing data stolen by ransomware with media
2024-08-30 14:44

The City of Columbus, Ohio, has filed a lawsuit against security researcher David Leroy Ross, aka Connor Goodwolf, accusing him of illegally downloading and disseminating data stolen from the...

Tired of airport security queues? SQL inject yourself into the cockpit, claim researchers
2024-08-30 13:28

Infosec hounds say they spotted vulnerability during routine travel in the US Cybersecurity researchers say they've found a vulnerability that allowed them to skip US airport security checks and...