DazzleSpy: macOS backdoor delivered through watering hole attacks
In late 2021, a never before seen macOS backdoor was delivered to pro-democracy individuals in Hong Kong via fake and compromised sites (for example, that of local radio …
A new multi-platform backdoor is leveraged by an advanced threat actor
A novel multi-platform backdoor dubbed SysJoker has been successfully evading security solutions since mid-2021. “In the Linux and macOS versions, it masquerades as a …
Apple fixes security feature bypass in macOS (CVE-2021-30892)
Apple has delivered a barrage of security updates for most of its devices this week, and among the vulnerabilities fixed are CVE-2021-30892, a System Integrity Protection …
Prevailion Omega exposes previously undetected malware blind spots in the cloud
Prevailion launched Omega, a new cybersecurity capability for enterprises and governments that exposes and validates previously undetected active malware compromises – …
A new zero-day is being exploited to compromise Macs (CVE-2021-30869)
Another zero-day in Apple’s software (CVE-2021-30869) is being actively exploited by attackers, forcing the company to push out security updates for macOS Catalina and …
Apple fixes “zero-click” iMessage zero-day exploited to deliver spyware (CVE-2021-30860)
Apple has released security updates for macOS, iOS, iPadOS, watchOS and Safari that patch two vulnerabilities (CVE-2021-30860, CVE-2021-30858) that are being exploited in …
VanDyke Software adds support for macOS and Windows with SecureCRT 9.1 and SecureFX 9.1
VanDyke Software, a developer of multi-platform secure terminal emulation and secure file transfer software released SecureCRT 9.1 and SecureFX 9.1. Active sessions manager …
Amazon FSx for NetApp ONTAP brings data access and management capabilities to AWS cloud
Amazon Web Services (AWS) announced the general availability of Amazon FSx for NetApp ONTAP, a new storage service that allows customers to launch and run complete, fully …
Elastic acquires Cmd to bring comprehensive cloud runtime security to customers
Elastic announced it has entered into a definitive agreement to acquire Cmd to give customers deep visibility into cloud workloads and perform expert detection and prevention …
Digital Guardian enhances endpoint DLP visibility and security controls to secure a hybrid work model
Digital Guardian announced new enhancements to its endpoint DLP visibility and security controls specifically to secure a hybrid work model. “According to a recent Gallup …
ManageEngine ADSelfService Plus offers MFA for OWA and EAC to increase mailbox security
ManageEngine announced that ADSelfService Plus, its integrated Active Directory self-service password management and single sign-on solution, now offers multi-factor …
Apple security updates: iOS 14.7 fixes WiFiDemon flaw
Apple has released security updates for macOS Big Sur (11.5), Catalina (10.15) and Mojave (10.14), as well as iOS (14.7) and iPadOS (14.7). There is no indication that Apple …