APT C-23 Spyware Targets MiddleEast
New variants of Android spyware linked to a Middle Eastern APT group have been designed to be stealthier and more persistent. This malware appears as an update app with a…
Google ClusterFuzzLite
Google has announced a new open source fuzzing project called ClusterFuzzLite, serving as a light weight version of the existing ClusterFuzz tool, which it open sourced nearly three years ago.…
GoCD Vulnerability ! FIX It
GoCD has patched a “Highly Critical” authentication vulnerability in its GoCD CI/CD tool. GoCD is an open-source Continuous Integration and Continuous Delivery system (CI/CD) tool that is used by software…
Adobe Came Up With Mammoth Security Patches
Adobe has issued a vast security update targeting 14 products, including Lightroom, Photoshop, and InDesign. Over 80 patches for vulnerabilities, including critical code execution flaws, privilege escalation, denial-of-service, and memory leaks.…
WinRar Bug to be Worried 🐞
A new weakness has been disclosed in the WinRAR archiver utility for Windows that could be abused by a remote attacker to execute arbitrary code on targeted systems. Tracked as…
Nitro Pro Pdf Vulnerability leads to RCE
Cisco Talos recently discovered multiple vulnerabilities in the Nitro Pro PDF reader that could allow an attacker to execute code in the context of the application. Nitro Pro PDF is…
Threat Mapper – An Open Source AppSec Vuln Scan Tool
Deepfence announced its making available a ThreatMapper tool that employs lightweight sensors that automatically scan, map and rank application vulnerabilities across serverless, Kubernetes, container and multi-cloud environments available as open…
WhatsApp rolls out Encryption Backup
As posted last month in Cyberthrone,WhatsApp is adding end-to-end encryption to your cloud backups on both Android and iOS starting today. WhatsApp itself has been end-to-end encrypted by default for…