Lucene search
K

10 matches found

The Hacker News
The Hacker News
added 2026/04/12 5:54 a.m.8 views

CPUID Breach Distributes STX RAT via Trojanized CPU-Z and HWMonitor Downloads

Unknown threat actors compromised CPUID "cpuid.com", a website that hosts popular hardware monitoring tools like CPU-Z, HWMonitor, HWMonitor Pro, and PerfMonitor, for less than 24 hours to serve malicious executables for the software and deploy a remote access trojan called STX RAT. The incident...

6AI score
Exploits0
NCSC
NCSC
added 2023/07/25 12:0 a.m.52 views

Vulnerabilities fixed in Apple macOS

Apple has fixed vulnerabilities in macOS. A malicious party could exploit the vulnerabilities to launch attacks that can lead to the following categories of damage: Denial-of-Service DoS Manipulation of data Circumvention of security measure Remote code execution Administrator/Root rights Remote...

8.8CVSS7.8AI score0.18185EPSS
Exploits5
The Hacker News
The Hacker News
added 2023/02/16 1:42 p.m.43 views

Hackers Using Google Ads to Spread FatalRAT Malware Disguised as Popular Apps

Chinese-speaking individuals in Southeast and East Asia are the targets of a new rogue Google Ads campaign that delivers remote access trojans such as FatalRAT to compromised machines. The attacks involve purchasing ad slots to appear in Google search results and direct users looking for popular...

7.7AI score
Exploits0
NCSC
NCSC
added 2022/12/15 12:0 a.m.3 views

Vulnerabilities fixed in Apple Safari

Apple has fixed vulnerabilities in Safari. The vulnerabilities allow a malicious person to launch attacks that lead to the following categories of damage: Bypassing security measure. Remote code execution User rights Access to sensitive data Access to system data Apple states that it is aware of...

8.8CVSS7.6AI score0.34574EPSS
Exploits2
NCSC
NCSC
added 2022/12/15 12:0 a.m.4 views

Vulnerabilities fixed in Apple iOS and iPadOS

Apple has fixed vulnerabilities in iOS and iPadOS. The vulnerabilities potentially allow a malicious person to launch attacks execute attacks that result in the following categories of damage: Denial-of-Service DoS. Circumvention of authentication. Remote code execution Administrator/Root rights...

9.8CVSS8AI score0.44678EPSS
Exploits14
The Hacker News
The Hacker News
added 2022/11/04 1:43 p.m.80 views

Researchers Detail New Malware Campaign Targeting Indian Government Employees

The Transparent Tribe threat actor has been linked to a new campaign aimed at Indian government organizations with trojanized versions of a two-factor authentication solution called Kavach. "This group abuses Google advertisements for the purpose of malvertising to distribute backdoored versions ...

0.2AI score
Exploits0
NCSC
NCSC
added 2022/07/26 12:0 a.m.3 views

Vulnerabilities fixed in Google Chrome

Several vulnerabilities have been fixed in Google Chrome. A malicious party could potentially exploit the vulnerabilities to execute arbitrary code within the context of the browser, or to gain access to sensitive data within the context of the browser. To do this, the malicious party must entice...

8.8CVSS7.5AI score0.17864EPSS
Exploits0
Malwarebytes
Malwarebytes
added 2022/05/26 12:17 p.m.16 views

ChromeLoader targets Chrome Browser users with malicious ISO files

If you’re on the hunt for cracked software or games, be warned. Rogue ISO archive files are looking to infect your systems with ChromeLoader. If you think campaigns such as this only target Windows users, you’d sadly be very much mistaken. The attack sucks in several operating systems and even us...

0.3AI score
Exploits0
The Hacker News
The Hacker News
added 2021/04/20 10:41 a.m.38 views

120 Compromised Ad Servers Target Millions of Internet Users

An ongoing malvertising campaign tracked as "Tag Barnakle" has been behind the breach of more than 120 ad servers over the past year to sneakily inject code in an attempt to serve malicious advertisements that redirect users to rogue websites, thus exposing victims to scamware or malware. Unlike...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2006/12/20 12:0 a.m.23 views

Mac OS X Security Update 2006-008

The remote host is running a version of Mac OS X 10.4 that does not have Security Update 2006-008 applied. This update fixes a flaw in QuickTime that may allow a rogue website to obtain the images rendered on the user screen. By combining this flaw with Quartz Composer, an attacker may be able to...

2.6CVSS5.6AI score0.02014EPSS
Exploits0References2
Rows per page
Query Builder