# mac

New QR Code Phishing Campaign Exploits Microsoft Sway to Steal Credentials

#vulnerability #mac #windows #microsoft #cisco #git #intel #c++#samba #vmware #amd #auth #dell

Cybersecurity researchers are calling attention to a new QR code phishing (aka quishing) campaign that leverages Microsoft Sway infrastructure to host fake pages, once again highlighting the abuse of legitimate cloud offerings for malicious purposes. "By using legitimate cloud applications, attackers provide credibility to victims, helping them to trust the content it serves," Netskope Threat

10 months ago

macOS Version of HZ RAT Backdoor Targets Chinese Messaging App Users

#web #mac #microsoft #git #auth #The Hacker News

Users of Chinese instant messaging apps like DingTalk and WeChat are the target of an Apple macOS version of a backdoor named HZ RAT. The artifacts "almost exactly replicate the functionality of the Windows version of the backdoor and differ only in the payload, which is received in the form of shell scripts from the attackers' server," Kaspersky researcher Sergey Puzan said. HZ RAT was first

11 months ago

#mac #windows #apple #google #microsoft #git #backdoor #The Hacker News

Red Hat Security Advisory 2024-5886-03

Red Hat Security Advisory 2024-5886-03 - An update for libreoffice is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.

11 months ago

miniProxy 1.0.0 Remote File Inclusion

#vulnerability #mac #linux #red_hat #js

miniProxy version 1.0.0 suffers from a remote file inclusion vulnerability.

11 months ago

Medicine Tracker System 1.0 Insecure Settings

#vulnerability #web #mac #windows #google #git #php #auth #firefox

Medicine Tracker System version 1.0 suffers from an ignored default credential vulnerability.

11 months ago

Medical Hub Directory Site 1.0 Insecure Settings

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

Medical Hub Directory Site version 1.0 suffers from an ignored default credential vulnerability.

11 months ago

Lodging Reservation Management System 1.0 Insecure Settings

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

Lodging Reservation Management System version 1.0 suffers from an ignored default credential vulnerability.

11 months ago

Microsoft Fixes ASCII Smuggling Flaw That Enabled Data Theft from Microsoft 365 Copilot

#sql #xss #csrf #vulnerability #web #ios #mac #windows #apple #google #ubuntu #linux #debian #cisco #java #php #perl #auth #ruby #firefox

Details have emerged about a now-patched vulnerability in Microsoft 365 Copilot that could enable the theft of sensitive user information using a technique called ASCII smuggling. "ASCII Smuggling is a novel technique that uses special Unicode characters that mirror ASCII but are actually not visible in the user interface," security researcher Johann Rehberger said. "This means that an attacker

11 months ago

#vulnerability #mac #microsoft #intel #rce #perl #auth #The Hacker News

Google Warns of CVE-2024-7965 Chrome Security Flaw Under Active Exploitation

Google has revealed that a security flaw that was patched as part of a security update rolled out last week to its Chrome browser has come under active exploitation in the wild. Tracked as CVE-2024-7965, the vulnerability has been described as an inappropriate implementation bug in the V8 JavaScript and WebAssembly engine. "Inappropriate implementation in V8 in Google Chrome prior to

11 months ago