Category Added in a WPeMatico Campaign
Security researchers have discovered that threat actors are using a serious zero-day flaw in the MOVEit file transfer product in a number of client scenarios. ADVERTISEMENT According to BleepingComputer, MoveIt Transfer from Progress Software has a serious vulnerability that is being exploited by threat actors. The website reported that multiple organizations have been compromised and their […]
Millions of PC devices with Gigabyte motherboards are in danger. Researchers at Eclypsium have discovered backdoor-like tools in hundreds of Gigabyte motherboard models. The legitimate tools are used by Gigabyte for updating purposes, but they may be abused by threat-actors to attack systems and install persistent malware. ADVERTISEMENT The implementation by Gigabyte is designed to […]
Password management service 1Password has deleted the classic browser extensions from the Google Chrome Web Store and Mozilla’s Firefox Add-ons repository. ADVERTISEMENT The company announced the end of support for the classic browser extensions in April, citing Google’s push of Manifest v3 for browser extensions as the reason. While Google has postponed the launch of […]
Google has released a new update for its Google Authenticator application. The changelog reveals that Google “added device encryption to storage of secret value”. Users who have hoped that Google would integrate end-to-end encryption to the application will be disappointed, as this is still not the case. ADVERTISEMENT Google Authenticator was updated about a month […]
Bitwarden users will be able to save, store and manage passkeys in the password manager this summer, according to a new announcement on the official Bitwarden blog. ADVERTISEMENT Passkeys is a new authentication standard that promises improved security over traditional use of passwords for authentication. Passkeys are generated on user devices for websites and applications. […]
In today’s digital landscape, the security of personal information is an ever-present concern. The ubiquity of data breaches raises questions about the extent to which identities are exposed and vulnerable. While high-profile incidents involving companies like Optus and Medibank may be familiar, the broader landscape of data breaches remains largely hidden from public view, perpetuating […]
A recently disclosed vulnerability in the KeePass password manager may be exploited to retrieve the master password. The vulnerability, CVE-2023-32784. indicates that the master password may be recovered from system memory dumps, even if the system is not running or locked. ADVERTISEMENT Dominik Reichl, the developer of KeePass, will release a patch in the upcoming […]
According to a recent report, a data breach at the United States Department of Transportation (USDOT) led to the leak of personal information of 237,000 current and past federal government employees. ADVERTISEMENT A data breach has leaked 237,000 federal government workers’ personal information, who are related to the United States Department of Transportation (USDOT). According […]
Google launched VirusTotal Code Insight in April 2023 to expand the functionality of its malware detection and analysis platform. Up until now, VirusTotal could tell its users whether antivirus engines considered a file malicious, but it could not really tell users why. ADVERTISEMENT The introduction of Code Insight changed that. The feature analyses the code […]
Microsoft cloud services, including OneDrive and SharePoint, have started to scan password protected ZIP archives that users upload or share using these services. ADVERTISEMENT Internet users have a number of options when it comes to hosting files online or sharing them. Archive formats, such as ZIP or RAR, are popular options when it comes to […]