Security News

Researchers expose GitHub Actions workflows as risky and exploitable
2024-07-25 03:30

GitHub is an immensely popular platform, with over 100 million developers and over 90% of Fortune 100 companies utilizing it. Despite its widespread use, many GitHub Actions workflows remain insecure, often due to excessive privileges or high-risk dependencies.

Researchers Warn of Flaws in Widely Used Industrial Gas Analysis Equipment
2024-06-28 07:52

Multiple security flaws have been disclosed in Emerson Rosemount gas chromatographs that could be exploited by malicious actors to obtain sensitive information, induce a denial-of-service (DoS)...

Researchers Uncover UEFI Vulnerability Affecting Multiple Intel CPUs
2024-06-20 14:22

Cybersecurity researchers have disclosed details of a now-patched security flaw in Phoenix SecureCore UEFI firmware that affects multiple families of Intel Core desktop and mobile processors....

"Researchers" exploit Kraken exchange bug, steal $3 million in crypto
2024-06-19 14:51

The Kraken crypto exchange disclosed today that alleged security researchers exploited a zero-day website bug to steal $3 million in cryptocurrency and then refused to return the funds. The hack was disclosed by Kraken Chief Security Officer Nick Percoco on X, explaining that the exchange's security team received a vague bug report on June 9th about an "Extremely critical" that allowed anyone to increase the balances in a Kraken wallet artificially.

Researchers Uncover RAT-Dropping npm Package Targeting Gulp Users
2024-06-03 14:00

Cybersecurity researchers have uncovered a new suspicious package uploaded to the npm package registry that's designed to drop a remote access trojan (RAT) on compromised systems. The package in...

Researcher Uncovers Flaws in Cox Modems, Potentially Impacting Millions
2024-06-03 10:20

Now-patched authorization bypass issues impacting Cox modems that could have been abused as a starting point to gain unauthorized access to the devices and run malicious commands. "This series of...

Researchers warn robot cars can be crashed with tinfoil and paint daubed on cardboard
2024-06-03 05:48

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

Researchers Uncover Active Exploitation of WordPress Plugin Vulnerabilities
2024-05-30 13:49

Cybersecurity researchers have warned that multiple high-severity security vulnerabilities in WordPress plugins are being actively exploited by threat actors to create rogue administrator accounts...

Researchers Warn of CatDDoS Botnet and DNSBomb DDoS Attack Technique
2024-05-28 10:15

The threat actors behind the CatDDoS malware botnet have exploited over 80 known security flaws in various software over the past three months to infiltrate vulnerable devices and co-opt them into...

Researchers Warn of Chinese-Aligned Hackers Targeting South China Sea Countries
2024-05-22 14:15

Cybersecurity researchers have disclosed details of a previously undocumented threat group called Unfading Sea Haze that's believed to have been active since 2018. The intrusion singled out...