Threat & Detection Research Team, Author at SECURITYICT

April 8, 2023April 24, 2023Apple, MacOS, Zero-Day Vulnerability

Apple fixes two zero-days exploited to hack iPhones and Macs

Apple has released emergency security updates to address two new zero-day vulnerabilities exploited in attacks to compromise iPhones, Macs, and iPads. “Apple […]

March 28, 2023News

Microsoft brings GPT-4-powered Security Copilot to incident response

Microsoft today announced Security Copilot, a new ChatGPT-like assistant powered by artificial intelligence that takes advantage of Microsoft’s threat intelligence footprint to […]

March 28, 2023April 24, 2023InfoStealer, MacOS

New MacStealer macOS malware steals passwords from iCloud Keychain

A new info-stealing malware named MacStealer is targeting Mac users, stealing their credentials stored in the iCloud KeyChain and web browsers, cryptocurrency wallets, […]

March 24, 2023March 24, 2023Vulnerabilities

OpenAI: ChatGPT payment data leak caused by open-source bug

OpenAI says a Redis client open-source library bug was behind Monday’s ChatGPT outage and data leak, where users saw other users’ personal […]

March 24, 2023April 24, 2023Security Bugs, Wordpress

Critical WooCommerce Payments Plugin Flaw Patched for 500,000+ WordPress Sites

Automattic, the company behind the WordPress content management system, is force installing a security update on hundreds of thousands of websites running […]

March 23, 2023March 23, 2023InfoStealer, Malware

North Korean hackers using Chrome extensions to steal Gmail emails

A joint cybersecurity advisory from the German Federal Office for the Protection of the Constitution (BfV) and the National Intelligence Service of […]

March 22, 2023April 23, 2023CISA, Critical Infrastructure, ICS

CISA Alerts on Critical Security Vulnerabilities in Industrial Control Systems

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has released eight Industrial Control Systems (ICS) advisories on Tuesday, warning of critical flaws […]

March 21, 2023March 21, 2023InfoStealer, Malware

DotRunpeX: The Malware That Infects Systems with Multiple Families

Currently, DotRunpeX malware appears to be primarily distributed through phishing emails and malicious Google Ads, presenting a significant threat to users’ systems. […]

March 21, 2023March 21, 2023InfoStealer

Hackers target .NET developers with malicious NuGet packages

Threat actors are targeting and infecting .NET developers with cryptocurrency stealers delivered through the NuGet repository and impersonating multiple legitimate packages via […]

March 21, 2023March 21, 2023Ransomware

Emotet malware now distributed in Microsoft OneNote files to evade defenses

The Emotet malware is now distributed using Microsoft OneNote email attachments, aiming to bypass Microsoft security restrictions and infect more targets. Emotet […]