API security

Briefs

Novel Android banking trojan uses mobile virtualization technique
SC Staff
December 4, 2023
Previously unknown APT DarkCasino hits jackpot in WinRAR attack
SC Staff
November 17, 2023
Balada Injector campaign compromises thousands of WordPress sites
SC Staff
October 10, 2023

Cyber Av3ngers gang hacks industrial controllers across multiple US states

Simon HenderyDecember 4, 2023

Default passwords enabled the Iranian-linked APT to compromise Israeli-made control systems at water and wastewater facilities, a public aquarium and a brewery.

API security

Google 0-day browser bug under attack, patch available

Stephen WeigandNovember 30, 2023

One of the seven security updates Google released Nov. 28 for its Chrome browser is under active exploitation in the wild.

Identity

BSides Las Vegas roundup: Passwordless misconfigurations and hidden app vulnerabilities

Paul WagenseilAugust 15, 2023

Poor practices and quick shortcuts are at the root of passwordless vulnerabilities and undetectable software flaws, two researchers said at the BSides Las Vegas security conference.

API security

Page 1

Briefs

Novel Android banking trojan uses mobile virtualization technique

Previously unknown APT DarkCasino hits jackpot in WinRAR attack

Balada Injector campaign compromises thousands of WordPress sites

Cyber Av3ngers gang hacks industrial controllers across multiple US states

Google 0-day browser bug under attack, patch available

BSides Las Vegas roundup: Passwordless misconfigurations and hidden app vulnerabilities