repository hosting services GitHub, GitLab and Microsoft VSTS were all impacted by a serious vulnerability that could lead to arbitrary code execution when a developer uses a malicious repository, Threatpost reports. Each of the hosting services patched the bug on Tuesday.
A new US-CERT Technical Alert (TA) warned cyber actors are using Joanap and Brambul malware to target multiple victims worldwide.
Google has patched a reCAPTCHA security vulnerability that allows an attacker to bypass a system.
Google has released Chrome 67 (version 67.0.3396.62) for Windows, Mac and Linux OS. The update includes 34 security fixes that address numerous vulnerabilities that could allow a remote attacker to take control of a victim's computer.
Two Canadian banks released statements on Monday that cyber criminals may have stolen data of nearly 90,000 customers from Bank of Montreal and Canadian Imperial Bank of Commerce.
For the past several months, Cisco's Talos security group has been researching a new advanced malware system dubbed "VPNFilter" that has compromised nearly 500,000 networking devices worldwide.
The PCI Security Standards Council (PCI SSC) has published a minor revision to the PCI Data Security Standard (PCI DSS) many businesses use to safeguard payment card data. The latest version 3.2.1 replaces the previous version 3.2 to mainly account for migrations to newer and more secure versions of Secure Socket Layer (SSL) and early Transport Layer Security (TLS), given previous migration deadlines have passed.
New variants of the side-channel central processing unit (CPU) hardware vulnerabilities (aka Meltdown/Spectre) have been discovered. The new variants dubbed 3A and 4 have been found by Microsoft and Google researchers.
A new botnet called 'Brain Food' has been compromising websites using WordPress and Joomla content management systems.
Users should be on the lookout for tragedy-related scams taking advantage of tragic events, such as recent Texas school shooting.