Dec 14, 2023 | Podcast
Over 50% of insider attacks involve exploiting elevation of privilege flaws. A research study, based on data from January 2021 to April 2023, shows a rise in insider threats, with 55% relying on privilege escalation exploits and the remaining 45% introducing risks by...
Dec 13, 2023 | Podcast
In a significant update, Meta has announced the rollout of default end-to-end encryption for personal messages and calls on Messenger and Facebook. This means that private chats and calls across Messenger will now be automatically encrypted by default, enhancing...
Dec 12, 2023 | Podcast
A set of 14 security vulnerabilities named “5Ghoul” has been discovered in the firmware implementation of 5G mobile network modems from major chipset vendors like MediaTek and Qualcomm. The flaws impact USB and IoT modems, along with hundreds of smartphone...
Dec 11, 2023 | Podcast
Atlassian has issued an email warning customers of four critical vulnerabilities, each rated 9.0 or higher. Confluence, Jira, and Bitbucket servers, as well as a companion app for macOS are affected. The vulnerabilities, rated at least 9.0 out of 10, include a...
Dec 8, 2023 | Podcast
A Bluetooth authentication bypass vulnerability, tracked as CVE-2023-45866, has been discovered to be impacting Apple, Android, and some Linux devices. The bug allows attackers to connect to devices and inject keystrokes to execute arbitrary commands. It doesn’t...
Dec 7, 2023 | Podcast
WordPress administrators are being targeted by a fake security advisory email campaign that exploits a fictitious vulnerability (CVE-2023-45124) to install a malicious plugin on their websites. According to security researchers, the attackers sent deceptive emails to...
Dec 6, 2023 | Podcast
WhatsApp has introduced a new Secret Code feature, allowing users to add an extra layer of security to their locked chats by setting a custom password. This code is independent of the device unlock code and can include emojis. The feature helps hide the Locked Chats...
Dec 5, 2023 | Podcast
In a significant move, Queensland’s parliament has approved a mandatory data breach notification scheme, becoming the second Australian state after New South Wales to enact such legislation. The scheme is set to impact state agencies from mid-2025 and local...
Dec 4, 2023 | Podcast
Security researchers revealed a vulnerability in Zoom that allowed the unauthorized access of service accounts with potential access to confidential information. The flaw, primarily affecting Zoom tenants using email addresses from major providers like Outlook and...
Dec 1, 2023 | Podcast
Apple has urgently released security updates to address two zero-day vulnerabilities that were actively being exploited. These vulnerabilities impacts iPhones, iPads, and Mac devices. They were discovered in the WebKit browser engine (CVE-2023-42916 and...