Security Affairs

DECEMBER 14, 2022

The malicious HTML code is generated within the browser on the target device which is already inside the security perimeter of the victim’s network. . Once a victim receives the email and opens the attachment, their browser decodes and runs the embedded script, which then assembles a malicious payload directly on the victim’s device.

Archiving 98

Archiving Phishing Passwords Security 98

Security Affairs

SEPTEMBER 22, 2023

Citizen Lab and Google’s TAG revealed that the three recently patched Apple zero-days were used to install Cytrox Predator spyware. citizenlab in coordination with @Google ’s TAG team found that former Egyptian MP Ahmed Eltantawy was targeted with Cytrox’s #Predator #spyware through links sent via SMS and WhatsApp. .

Security 113

Security Risk Government IT 113

Security Affairs

MAY 3, 2022

China-linked Curious Gorge APT is targeting Russian government agencies, Google Threat Analysis Group (TAG) warns. Google Threat Analysis Group (TAG) reported that an APT group linked to China’s People’s Liberation Army Strategic Support Force (PLA SSF), tracked as Curious Gorge , is targeting Russian government agencies.

Manufacturing 120

Manufacturing Phishing Passwords Military 120

Security Affairs

NOVEMBER 29, 2023

Google released security updates to address a new actively exploited zero-day vulnerability, tracked as CVE-2023-6345, in the Chrome browser. Google on Wednesday released security updates to address a new actively exploited zero-day, tracked as CVE-2023-6345, in the Chrome browser. ” reads the advisory published by Google.

Libraries 120

Libraries Security Access IT 120

Security Affairs

DECEMBER 20, 2023

Google has released emergency updates to address a new actively exploited zero-day vulnerability in the Chrome browser. Google has released emergency updates to address a new zero-day vulnerability, tracked as CVE-2023-7024, in its web browser Chrome. “Google is aware that an exploit for CVE-2023-7024 exists in the wild.”

Libraries 123

Libraries Access IT Information Security 123

Security Affairs

OCTOBER 20, 2021

A Cookie Theft malware was employed in phishing attacks against YouTube creators, Google’s Threat Analysis Group (TAG) warns. According to Google’s Threat Analysis Group (TAG) researchers, who spotted the campaign, the attacks were launched by multiple hack-for-hire actors recruited on Russian-speaking forums.

Phishing 135

Phishing Archiving Encryption Authentication 135

Security Affairs

MARCH 31, 2022

The Google TAG uses uncovered phishing attacks targeting Eastern European and NATO countries, including Ukraine. “ However, for the first time, TAG has observed COLDRIVER campaigns targeting the military of multiple Eastern European countries, as well as a NATO Centre of Excellence.” In one case observed by the TAG team.

Military 89

Military Phishing Government Ransomware 89

Security Affairs

MARCH 29, 2023

Google’s Threat Analysis Group (TAG) discovered several exploit chains targeting Android, iOS, and Chrome to install commercial spyware. Google’s Threat Analysis Group (TAG) shared details about two distinct campaigns which used several zero-day exploits against Android, iOS and Chrome. links sent over SMS to users.

Archiving 96

Archiving Access Risk Security 96

Security Affairs

APRIL 9, 2024

Google announced support for a V8 Sandbox in the Chrome web browser to protect users from exploits triggering memory corruption issues. Google has announced support for what’s called a V8 Sandbox in the Chrome web browser. The company included the V8 Sandbox in Chrome’s Vulnerability Reward Program (VRP).

Access 120

Access IT Security Information Security 120

Security Affairs

JUNE 6, 2023

Google released security updates to address a high-severity zero-day flaw in the Chrome web browser that it actively exploited in the wild. Google released security updates to address a high-severity vulnerability, tracked as CVE-2023-3079, in its Chrome web browser.

Libraries 97

Libraries Security IT Information Security 97

Security Affairs

OCTOBER 25, 2023

The analysis of the email HTML source code revealed the presence of a SVG tag at the end, which contains a base64-encoded payload. The messages were sent from team.managment@outlook[.]com com and had the subject Get started in your Outlook. ” reads the analysis published by ESET. ” reads the analysis published by ESET.

Military 119

Military Government Phishing IT 119

Security Affairs

NOVEMBER 12, 2021

Google TAG researchers discovered that threat actors leveraged a zero-day vulnerability in macOS in a watering hole campaign aimed at delivering malware to users in Hong Kong. “To protect our users, TAG routinely hunts for 0-day vulnerabilities exploited in-the-wild. Follow me on Twitter: @securityaffairs and Facebook.

Encryption 139

Encryption IT Security Information Security 139

Security Affairs

NOVEMBER 30, 2023

The flaws are actively exploited in attacks in the wild, both issues reside in the WebKit browser engine. The fact that the issues were discovered by Google TAG suggests they were exploited by a nation-state actor or by a surveillance firm. The first vulnerability, tracked as CVE-2023-42916, is an out-of-bounds read.

Security 125

Security IT Information Security 125

Security Affairs

JUNE 6, 2019

A new version of the popular Tor Browser was released by the Tor Project, it is Tor Browser 8.5.1 The Tor Project has released Tor Browser 8.5.1 for Windows, Mac, Linux, and Android, the new version of the popular anonymizing browser. “Tor Browser 8.5.1 Bwloe the full changelog since Tor Browser 8.5:

Security 93

Security IT Information Security Privacy 93

Security Affairs

MARCH 19, 2021

The lack of server-side validation for HTML tags in Elementor elements (i.e. “Many of these elements offer the option to set an HTML tag for the content within. tags in order to apply different heading sizes via the header_size parameter.” tags in order to apply different heading sizes via the header_size parameter.”

Authentication 131

Authentication Security Access IT 131

Security Affairs

DECEMBER 1, 2023

The fact that the issue was discovered by Google TAG suggests it was exploited by a nation-state actor or by a surveillance firm. Google on Wednesday released security updates to address the actively exploited zero-day CVE-2023-6345 in the Chrome browser.

IT 104

IT Libraries Cybersecurity Passwords 104

Security Affairs

OCTOBER 1, 2021

Google rolled out urgent security updates to address two new actively exploited zero-day vulnerabilities in its Chrome browser. Google this week rolled out urgent security updates for the Chrome browser to address four security flaws, including two new zero-day vulnerabilities that are being exploited in the wild.

Security 93

Security Government IT Information Security 93

Security Affairs

NOVEMBER 28, 2021

North Korea-linked APT group posed as Samsung recruiters is a spear-phishing campaign that targeted South Korean security companies that sell anti-malware solutions, Google TAG researchers reported. Google TAG researchers reported that the same group, tracked as Zinc ,” also targeted security researchers in past campaigns.

Security 133

Security Phishing Information Security Communications 133

The Last Watchdog

JUNE 30, 2021

More than 70 percent of the content that loads on an end user’s browser does not come from the website’s server at all. Enterprises are designing client heavy applications that are executed through JavaScript at runtime, and these browsers are acting as modern day OSes. So what does the average modern website look like?

IT 126

IT Risk Mining Analytics 126

Security Affairs

JANUARY 26, 2021

Google TAG is warning that North Korea-linked hackers targeting security researchers through social media. Google Threat Analysis Group (TAG) is warning that North Korea-linked hackers targeting security researchers through social media. ” reads the TAG’s report. ” reads the TAG’s report.

Security 91

Security Communications Cybersecurity Government 91

Security Affairs

APRIL 15, 2019

In this case, attackers used a common HTML5 attribute, the <a> tag ping, to trick these users to unwittingly participate in a major DDoS attack that flooded one web site with approximately 70 million requests in four hours.” This was the first case of a DDoS attack using the <a> tag ping attribute.

Security 111

Security IT 111

Security Affairs

NOVEMBER 15, 2020

Once executed, a malicious JavaScript file is requested from the a C2 server (at https[:]//tags-manager[.]com/gtags/script2 Upon loading the script from the external server, the skimmer stores in the browser’s LocalStorage its generated session-id and the client IP address. com/gtags/script2 ). ” concludes the company.

Marketing 117

Marketing Risk IT Security 117

Security Affairs

MARCH 31, 2021

Researchers from Google’s Threat Analysis Group (TAG) reported that North Korea-linked hackers are targeting security researchers via social media. ” reads the post published by Google TAG. The cyberspies used fake Twitter and LinkedIn social media accounts to get in contact with the victims.

Security 104

Security Cybersecurity IT 104

Security Affairs

AUGUST 9, 2023

Within the file, there were seven brackets of PHP tags and each of them contained an obfuscated piece of code within. The PHP tags were stacked on top of each other, having legitimate code of the website at the very bottom. com) is also accessible through the browser and has a landing page. sortyellowapples[.]com/scripts/get[.]js?

Access 98

Access IT Security Information Security 98

Security Affairs

AUGUST 28, 2022

The offer includes remote, one-click browser-based exploits that allow threat actors to compromise both Android and iOS mobile devices. Leaked documents online show the purchase (and documentation of) an $8,000,000 iOS Remote Code Execution 0day exploit pic.twitter.com/lhmc8QdfGv — vx-underground (@vxunderground) August 24, 2022.

IT 129

IT Security Information Security 129

Security Affairs

FEBRUARY 15, 2019

The removed apps are Fast-search Lite, Battery Optimizer (Tutorials), VPN Browsers+, Downloader for YouTube Videos, Clean Master+ (Tutorials), FastTube, Findoo Browser 2019, and Findoo Mobile & Desktop Search. The samples we found run on Windows 10, including Windows 10 S Mode.”

Mining 99

Mining Libraries Analytics Security 99

Security Affairs

OCTOBER 25, 2022

A new malvertising campaign, code-named Dormant Colors, is delivering malicious Google Chrome extensions that hijack targets’ browsers. The malicious browser extensions counted over a million installs. The attackers appends the affiliate tags to the URL and any purchase made on the site will generate a commission for the operators.

Phishing 97

Phishing Privacy IT Security 97

Security Affairs

JANUARY 25, 2022

The investigation started in November after Google TAG published a blogpost about watering-hole attacks targeting macOS users in Hong Kong. Google TAG researchers discovered that threat actors leveraged a zero-day vulnerability in macOS in a watering hole campaign aimed at delivering malware to users in Hong Kong.

Authentication 96

Authentication Security IT Information Security 96

Security Affairs

JANUARY 11, 2023

The flaw is a Windows Advanced Local Procedure Call (ALPC) elevation of privilege vulnerability that could lead to a browser sandbox escape. An attacker can exploit this vulnerability to gain SYSTEM privileges. The flaw was addressed by Microsoft with the release of Microsoft Patch Tuesday for January 2023.

IT 98

IT Ransomware Cloud Cybersecurity 98

Security Affairs

OCTOBER 31, 2022

“Thus, the dropper outsources the download and installation procedure to the browser, avoiding suspicious permissions.” “Obviously, such approach requires more actions from the victim, as the browser will show several messages about the downloaded file. Once the page is opened, the automatic download starts.

Authentication 95

Authentication Security IT Information Security 95

Security Affairs

OCTOBER 29, 2021

Google fixed a total of seven vulnerabilities with the latest release of the popular browser. This vulnerability was reported by Clément Lecigne from Google TAG and Samuel Groß from Google Project Zero on 2021-10-26. Google has released Chrome 95.0.4638.69 ” reads the security advisory published by Google.

Security 114

Security IT Information Security 114

Krebs on Security

AUGUST 9, 2022

Microsoft this month also issued a different patch for another MSDT flaw, tagged as CVE-2022-35743. “20 CVEs affect their Chromium-based Edge browser and 34 affect Azure Site Recovery (up from 32 CVEs affecting that product last month),” Wiseman wrote.

Authentication 230

Authentication Access IT Security 230

Security Affairs

JULY 14, 2021

Security researchers from Google Threat Analysis Group (TAG) and Google Project Zero revealed that four zero-day vulnerabilities have been exploited in the wild earlier this year. The four security flaws were discovered earlier this year and affect Google Chrome, Internet Explorer, and WebKit browser engine.

Government 144

Government Security IT Cybersecurity 144

Security Affairs

JANUARY 29, 2021

Microsoft, like Google TAG, observed a cyber espionage campaign aimed at vulnerability researchers that attributed to North Korea-linked Zinc APT group. ” This week, Google Threat Analysis Group (TAG) also warned of North Korea-linked hackers targeting security researchers through social media.

Security 122

Security Encryption Passwords Communications 122

Security Affairs

SEPTEMBER 15, 2019

“The goal of the Bug Smash Fund is to increase the Tor Project’s reserve of funds that allow us to complete maintenance work and smash the bugs necessary to keep Tor Browser, the Tor network, and the many tools that rely on Tor strong, safe, and running smoothly.” ” reads the announcement published by the Tor Project.

Privacy 87

Privacy Security IT Information Security 87

Krebs on Security

DECEMBER 11, 2018

The weakness, which is present on all support versions of Windows, is tagged tagged with the less severe “important” rating by Microsoft mainly because it requires an attacker to be logged on to the system first.

Security 158

Security IT 158

Security Affairs

APRIL 28, 2020

at the time when a page is generated) replace code and text from themes and other plugins with code and text of their choice before a page is delivered to a user’s browser. “An attacker could use this vulnerability to replace a HTML tag like with malicious Javascript. ” continues the report.

GDPR 131

GDPR Authentication IT Access 131