Summary: A critical security vulnerability (CVE-2025-22275) has been identified in iTerm2, a terminal emulator for macOS, allowing unauthorized access to sensitive user data due to improper logging during SSH sessions. Users are urged to update to version 3.5.11 to mitigate risks associated with thi…
Tag: MACOS
Summary: Researchers from Korea University have introduced “SysBumps,” a groundbreaking attack that successfully breaks Kernel Address Space Layout Randomization (KASLR) on macOS systems using Apple Silicon. This vulnerability exposes critical kernel memory addresses, posing significant risks to mac…
This article outlines critical vulnerabilities affecting various software products, including Citrix, Cisco, Fortinet, and Microsoft. Threat actors are exploiting these vulnerabilities, such as CVE-2023-3519 and CVE-2023-34362, to gain unauthorized access and …
Socket researchers reveal the misuse of Out-of-Band Application Security Testing (OAST) techniques by threat actors to exfiltrate sensitive data across npm, PyPI, and RubyGems ecosystems. These malicious packages leverage OAST services to perform stealthy data…
Summary: A new Android malware named FireScam has been identified as an information stealer and spyware, capable of harvesting sensitive information from various applications. It is distributed through a phishing website disguised as the legitimate ‘Telegram Premium’ application, targeting devices r…
XLab’s Cyber Threat Insight and Analysis System detected a sophisticated cyber threat known as Glutton, which utilizes an ELF-based Winnti backdoor and modular PHP payloads to execute stealthy attacks. This backdoor targets both traditional victims and cybercr…
North Korean threat actors have adopted advanced malware distribution techniques similar to those in Clickfix campaigns, using social engineering to target victims through fake recruitment processes. Their operations have led to significant cryptocurrency thef…
In an increasingly connected digital era, macOS has become an enticing target for cybercriminals. From exploiting vulnerabilities that allow malicious applications to access sensitive data without user consent to sophisticated malware attacks targeting cryptocurrency assets, these threats underscore…
In 2024, cybercriminals remained relentless, prompting analysts to enhance defenses and provide vital insights. Key events included critical vulnerabilities in ScreenConnect, the emergence of new ransomware variants, and targeted attacks on human rights activi…
Annual cybersecurity reports from major vendors analyze threat trends, techniques, and statistics based on extensive telemetry data. They highlight ongoing threats like ransomware precursors, identity attacks, and cloud vulnerabilities, providing actionable insights for defense. #Lockbit #Mimikatz
The article discusses an interview with a threat actor named Pryx, who explains the workings of server-side stealers, their methodologies for breaching companies, and clarifies misconceptions about being part of a ransomware group. Pryx emphasizes the innovati…
Summary : NotLockBit is an advanced ransomware family targeting both macOS and Windows systems, utilizing sophisticated techniques for file encryption and data exfiltration. Its ability to mimic the behavior of existing ransomware like LockBit poses a signific…
Using real-world examples and offering plenty of pragmatic tips, learn how to protect your directory services from LDAP-based attacks.
The post LDAP Enumeration: Unveiling the Double-Edged Sword of Active Directory appeared first on Unit 42….
Kandji’s Threat Research team has discovered a critical vulnerability (CVE-2024-40855) in Apple’s macOS diskarbitrationd, allowing attackers to escape the sandbox and bypass TCC by exploiting directory traversal. Apple has been notified, and the vulnerabilitie…
### #TCCBypass #AppleSecurityFlaw #DataPrivacyThreats Summary: A newly identified vulnerability in Apple’s Transparency, Consent, and Control (TCC) framework, designated as CVE-2024-44131, allows malicious applications to bypass user consent and access sensitive data on both macOS and iOS systems. T…