Microsoft’s latest Patch Tuesday update addressed 60 vulnerabilities, including critical bugs affecting Windows Hyper-V, allowing attackers to escape from a Hyper-V guest VM and execute remote code on the host.
Salt Security Inc and researchers at Salt Labs have identified critical security vulnerabilities in ChatGPT plugins that could potentially lead to unauthorized access to users’ accounts and services, such as sensitive repositories on platforms like GitHub.
12.8 million secrets leaked, impacting over 3 million repositories worldwide, with Google API keys, MongoDB credentials, and OpenWeatherMap tokens among the most commonly leaked credentials.
Internet security experts have detected and blocked nearly 13,000 fake investment platform domains targeting consumers and institutions, posing a significant global threat.
Cloud account threats increased 16-fold in 2023, with attackers utilizing new techniques in cloud environments, such as stealing short-term tokens for privilege escalation and using malicious email forwarding rules to redirect sensitive communications.
Ransomware, keyloggers, spyware, stealers, and macOS-targeting malware pose significant risks to small- and medium-sized businesses, emphasizing the need for enhanced cybersecurity measures.
