Vulnerable U
Infosec's favorite weekly newsletter for news, tools, and tips with 28,000+ CISOs, founders, change-makers, and straight up hackers.
Connect
The two vulnerabilities can be chained together to gain RCE
Impact limited to TestFlight users; bug fixed before public release.
Massive Cisco 0day, New Russian malware intel, 38,000 domains ID'd in crypto draining operation, NSO spyware hit with massive fine, and much more!
The new malware is called LOSTKEYS and is designed to steal files from a number of different directories
In a new advisory, the agenciesโincluding the Environmental Protection Agency and Department of Energyโsaid that they are seeing an uptick in the number of attacks against OT networks by non-APT teams
North Korean IT workers, Google zero day report, Apple AirPlay vulns, neat new malware tricks, and much more!
Microsoft alerted the company to the issue in February
Attackers are continuing to focus their efforts on valuable targets such as edge security and networking devices
A recently disclosed vulnerability in SAPโs NetWeaver product is being actively exploited by attackers
Verizon Data Breach report, Blue Cross self inflicted data breach, FBI cyber crime report stats, new Android malware targeting Russian military, and more!
The vulnerability is in the AiCloud feature in some ASUS routers, which is designed to enable users to share and manage their files across devices
DOGE whistleblower details a crazy story, The CVE saga and avoiding disaster, Chris Krebs targeted by the Trump Administration, and so much more!
