Patrick C Miller :donor:
@patrickcmiller@infosec.exchange
A novel phishing attack abuses Microsoft's Word file recovery feature by sending corrupted Word documents as email attachments, allowing them to bypass security software due to their damaged state but still be recoverable by the application.
We discussed AI risks, immigration, the CHIPS Act, and the erosion of trust in science.
The scourge of “malvertising” is nothing new, but the tactic is still so effective that it's contributing to the rise of investment scams and the spread of new strains of malware.
Germany's domestic intelligence service (BfV) has created a special task force to counter cyberattacks, espionage, sabotage and disinformation campaigns ahead of federal elections in February.
Hackers strike every 39 seconds. Learn about AI-crafted phishing, malware evolution, and latest security threats.
Brands have been at the mercy of the algorithm when it comes to where their ads appear online, but they’re about to get more control.
The project mirrors Google’s efforts and could take years to complete.
Bologna FC has revealed a ransomware attack, with data on players, fans and employees thought to have been stolen
According to Oxford University Press, which publishes the Oxford English Dictionary (OED), the term "brain rot" is defined as the “supposed deterioration
A resilient, secure energy grid requires a strong foundation and unified collaboration.
ESET's discovery of the first UEFI bootkit designed for Linux sendss an important message: UEFI bootkits are no longer confined to Windows systems alone.
Advantech patches critical flaws in industrial Wi-Fi devices enabling remote code execution and persistent access.
Lidar, now used globally in a wide variety of civilian and military use cases, “stands at the center of Beijing’s bid for technological superiority,” the report says, warning that Chinese companies are taking control of the global lidar market.
Filter resulting from subject of settled defamation lawsuit could cause trouble down the road.
MOD detected 600 stolen credentials in dark web trawl, including 124 compromised this year.
AI-Powered Fake News Campaign Targets Western Support for Ukraine and U.S. Elections | Read more hacking news on The Hacker News cybersecurity news website and learn how to protect against cyberattacks and software vulnerabilities.
Piotr Pogonowski was detained to testify before Poland's parliament about how Pegasus spyware was deployed by the country’s prior government against several hundred people.
New China export curbs could hurt US chipmakers, allies more than Huawei.
The recently uncovered 'Bootkitty' UEFI bootkit, the first malware of its kind targeting Linux systems, exploits CVE-2023-40238, aka 'LogoFAIL,' to infect computers running on a vulnerable UEFI firmware.
SmokeLoader malware identified targeting Taiwanese firms via phishing, exploiting Microsoft Office vulnerabilities
Promoting better cybersecurity in an organization might mean doing things like locking user machines when they don't complete cyber training because accountability is not optional.
Over 8M users affected by SpyLoan malware in Android apps exploiting trust for financial scams.
Officials said they were forced to conduct fuel sales manually in light of the attack, which took down all of the digital systems used to facilitate payments.
A new phishing attack uses corrupted Word docs to bypass security, luring victims with fake payroll and HR emails
