New ZenHammer Attack Bypasses RowHammer Defenses on AMD CPUs
Cybersecurity researchers from ETH Zurich have developed a new variant of the RowHammer DRAM (dynamic random-access memory) attack that, for the first time, successfully works against AMD Zen 2 and Zen 3 systems despite mitigations such as Target Row Refresh (TRR).
"This result proves that AMD systems are equally vulnerable to Rowhammer as Intel systems, which greatly increases the attack
Darcula Phishing Network Leveraging RCS and iMessage to Evade Detection
A sophisticated phishing-as-a-service (PhaaS) platform called Darcula has set its sights on organizations in over 100 countries by leveraging a massive network of more than 20,000 counterfeit domains to help cyber criminals launch attacks at scale.
"Using iMessage and RCS rather than SMS to send text messages has the side effect of bypassing SMS firewalls, which is being used to great
The nature of bug bounty programs is changing, and their ‘auntie’ is worried
Moussouris is the founder and CEO of Luta Security, a cybersecurity company specializing in vulnerability management.
Nigerian national who laundered funds from romance and BEC scams gets 10-year sentence
A Nigerian national was sentenced on Monday to 10 years in United States prison for laundering millions obtained from internet scams.
Telecom organizations in Africa targeted by Iran-linked hackers
A cyber-espionage group linked to Iran’s intelligence service has been targeting telecommunications companies in Egypt, Sudan and Tanzania, researchers have found.
UK sets out how pornographic websites must verify users’ ages
According to Ofcom, the average age at which children first see online pornography is 13, although a tenth of children are as young as 9 when they encounter it for the first time.
Accounting software provider Tipalti investigating alleged ransomware attack
Accounting software giant Tipalti said it is investigating reports of a ransomware attack after a gang spent the weekend attempting to extort the company and its customers.
CISA warns of attacks on Unitronics tool used by water utilities, wastewater systems
The federal government is warning that hackers are targeting a specific tool used by water and wastewater systems after two utilities announced attacks this week.
North Korean supply chain attacks prompt joint warning from Seoul and London
The United Kingdom and South Korea issued a joint advisory warning about software supply chain attacks from North Korean (DPRK) state-linked hackers.
Two top Ukrainian cyber officials dismissed amid embezzlement probe
Two high-ranking cybersecurity officials in Ukraine were on Monday, according to a senior government official, amid an investigation into suspected embezzlement of state funds.