New LightSpy spyware version targets iPhones with destructive capabilities

New LightSpy spyware targets iPhones supporting destructive features that can block compromised devices from booting up. In May 2024, ThreatFabric researchers discovered a macOS version of LightSpy spyware that has been active in the wild since at least January 2024. ThreatFabric observed threat actors using two publicly available exploits (CVE-2018-4233, CVE-2018-4404) to deliver macOS implants. The […]

New LightSpy Spyware Targets iOS with Enhanced Capabilities

itsecuritynews.info - 29/Oct 17:31

ThreatFabric researchers have discovered significant updates to the LightSpy spyware, featuring plugins designed to interfere with device...

LightSpy iOS Malware Enhanced with 28 New Destructive Plugins

itsecuritynews.info - 01/Nov 09:40

The LightSpy threat actor exploited publicly available vulnerabilities and jailbreak kits to compromise iOS devices. The malware’s core binaries...

Fortinet Flaw CVE-2024-47575 exploited by UNC5820

thecyberthrone.in - 25/Oct 15:42

Fortinet has confirmed that the recent critical zero-day vulnerability affecting its FortiManager network management solution is being exploited...

Fortinet warns of new critical FortiManager flaw used in zero-day attacks

bleepingcomputer.com - 23/Oct 15:05

Fortinet publicly disclosed today a critical FortiManager API vulnerability, tracked as CVE-2024-47575, that was exploited in zero-day attacks to...

Sophos details five years of China-linked threat actors’ activity targeting network devices worldwide

securityaffairs.co - 02/Nov 16:12

Sophos used custom implants to monitor China-linked thret actors targeting firewall zero-days in a years-long battle. Sophos revealed a years-long...

Investigating FortiManager Zero-Day Exploitation (CVE-2024-47575)

itsecuritynews.info - 24/Oct 00:34

Written by: Foti Castelan, Max Thauer, JP Glab, Gabby Roncone, Tufail Ahmed, Jared Wilson < div class=”block-paragraph_advanced”> Summary In...

SonicWall Vulnerability exploited by Fog and Akira Ransomware

thecyberthrone.in - 30/Oct 02:24

Sonicwall SSL VPN vulnerability tracked as CVE-2024-40766 has been exploited in the recent cyberattacks involving Akira and Fog ransomware. Initial...

Cybercriminals Exploiting Docker API Servers for SRBMiner Crypto Mining Attacks

itsecuritynews.info - 22/Oct 14:34

Bad actors have been observed targeting Docker remote API servers to deploy the SRBMiner crypto miner on compromised instances, according to new...

Kaspersky IDs security flaws in Unisoc

it-online.co.za - 28/Oct 09:47

Kaspersky Industrial Control Systems Cyber Emergency Response Team (ICS CERT) experts have discovered critical vulnerabilities in Unisoc SoCs that...

Millions of Synology NAS devices vulnerable to zero-click attacks (CVE-2024-10443)

itsecuritynews.info - 14:36

Synology has released fixes for an unauthenticated “zero-click” remote code execution flaw (CVE-2024-10443, aka RISK:STATION) affecting its...

Rubriques :