On Monday, Google released an update for Android that fixes two zero-day flaws that “may be under limited, targeted exploitation,” as the company put it. That means Google is aware that hackers have been and may still be using the bugs to compromise Android devices in real world scenarios. One of the two now-fixed zero-days, […]
Google fixes two Android zero-day bugs actively exploited by hackers Read More »
Operation Zero, a company that acquires and sells zero-days exclusively to the Russian government and local Russian companies, announced on Thursday that it’s looking for exploits for the popular messaging app Telegram, and is willing to offer up to $4 million for them. The exploit broker is offering up to $500,000 for a “one-click” remote
Russian zero-day seller is offering up to $4 million for Telegram exploits Read More »
Apple released patches for a bug that it says “may have been exploited in an extremely sophisticated attack against specific targeted individuals,” citing a report. The zero-day bug was found in WebKit, the browser engine powering Safari and other apps, and allowed hackers to break out of WebKit’s protective sandbox with “maliciously crafted web content,”
Apple fixes new security flaw used in ‘extremely sophisticated attack’ Read More »
Amnesty International said that Google fixed previously unknown flaws in Android that allowed authorities to unlock phones using forensic tools. On Friday, Amnesty International published a report detailing a chain of three zero-day vulnerabilities developed by phone-unlocking company Cellebrite, which its researchers found after investigating the hack of a student protester’s phone in Serbia. The
Researchers uncover unknown Android flaws used to hack into a student’s phone Read More »
Apple released the latest updates for its iPhone, iPad and Mac operating systems on Monday, which included switching on Apple Intelligence by default for newer devices. As part of this batch of software updates, Apple also released several patches fixing security bugs, including a zero-day bug that “may have been actively exploited” — meaning hackers
Apple fixes zero-day flaw affecting all devices Read More »
Toward the end of 2023, an Israeli security researcher from Tel Aviv said that he was approached on LinkedIn with an opportunity to work abroad with “good pay.” He said that the company’s HR department told him that it was a “legitimate” offensive security company that was starting from scratch in Barcelona, Spain. But during
How Barcelona became an unlikely hub for spyware startups Read More »
A North Korean hacking group earlier in August exploited a previously unknown bug in Chrome to target organizations with the goal of stealing cryptocurrency, according to Microsoft. In a report published on Friday, the tech giant’s cybersecurity researchers said they first saw evidence of the hackers’ activities on August 19, and said the hackers were
North Korean hackers exploited Chrome zero-day to steal crypto Read More »
A group of hackers linked to the Chinese government used a previously unknown vulnerability in software to target U.S. internet service providers, security researchers have found. The group known as Volt Typhoon was exploiting the zero-day flaw — meaning the software maker was unaware of it before having time to patch — in Versa Director,
