New Microsoft Defender “RedSun” zero-day PoC grants SYSTEM privileges

A researcher known as "Chaotic Eclipse" has published a proof-of-concept exploit for a second Microsoft Defender zero-day, ...
Windows Report

RedSun Exploit Hits Microsoft Defender Zero-Day, Grants SYSTEM Access

RedSun exploit targets Microsoft Defender zero-day, granting SYSTEM access on fully patched Windows systems with no patch available.
Appuals

How To Fix Zenless Zone Zero “Unity Error” On PC

The “ZenlessZoneZero - Unity 2019.4.40f1_0d9cc85b4” message on PC is usually the title of a Unity crash window that appears ...

ZionSiphon malware designed to sabotage water treatment systems

A new malware called ZionSiphon, specifically designed for operational technology, is targeting water treatment and ...

New Phishing Attack Turns n8n Into On-Demand Malware Machine

Hackers are abusing n8n workflows to deliver malware and evade detection, according to Cisco Talos, using trusted automation ...

Do not fall for this fake Windows update support site. It’s spreading a password-stealing malware

Malwarebytes warns that a fake Microsoft support site is distributing password-stealing malware through a spoofed Windows ...
DataBreachToday

Breach Roundup: Mr. Raccoon Wants Your Password

This week, a "Raccoon"-linked actor hit help desks, Eurail exposed 308K users, Fortinet patched critical flaws, Pushpaganda ...

North Korea targets macOS users in latest heist

North Korean criminals set on stealing Apple users' credentials and cryptocurrency are using a combination of social ...
Arabian Post

Fake TestDisk lure opens remote access

The fake site reportedly offers free downloads for TestDisk 7.2 and 7.3, echoing the real project’s language about open-source partition and data recovery. Yet the authentic TestDisk site states ...
Defector

A New Space In Which To Be Stupid, With Michael Schur

It was not so long ago that the return of baseball had me in my feelings in a positive way. Kelsey McKinney and I talked ...
Arabian Post

Webhooks turn workflow tools into malware bait

Cyber attackers are abusing the low-code automation platform n8n to push malware and track targets through phishing emails, in a campaign that security researchers say gathered pace between October ...