It's déjà vu all over again! New month, new Chrome zero-day bug being exploited in the wild....

Okta will acquire fellow identity provider Auth0 in an all-stock transaction worth approximately US$6.5 billion (A$8.3 billion). Under the agreement, Auth0 “will operate as an independent business unit inside of Okta, and both platforms will be supported, invested in, and integrated over time”, the companies said. “As a result, organisations...

We're sticking to our "patch early, peath often" mantra, although in this case it means you can't jailbreak....

Wireless mouse-utility lacks proper authentication and opens Windows systems to attack....

Researchers Say About 100 Institutions AffectedPayment card information and other data for customers of at least 100 Italian banks and one payment processor were compromised using the Ursnif banking Trojan, according to Avast Threat Labs....

Watchdog Says Nation's Cybersecurity Readiness Regressed Over Last 2 YearsA lack of centralized leadership, especially at the White House level, is hindering the federal government's ability to address numerous cybersecurity issues, including the SolarWinds supply chain attack that affected federal agencies and others, according to a new GAO report....

A flaw (CVE-2021-21166) in the Audio component of Google Chrome is fixed in a new update being pushed out to Windows, Mac and Linux users....

A third-party IT provider exposed valuable airline data that experts say could be a goldmine for cybercriminals. ...

Threat actors can use personal information gleaned from images to craft targeted scams, putting personal and corporate data at risk....

The Russian-speaking RTM threat group is targeting organizations in an ongoing campaign that leverages a well-known banking trojan, brand new ransomware strain and extortion tactics....

Attackers have weaponized code dependency confusion to target internal apps at tech giants....

Sygnia Researchers Say Hackers Using Their MATA Framework to Deliver MalwareThe Lazarus Group, a North Korean hacking operation also known as Hidden Cobra, is deploying TFlower ransomware using its MATA malware framework, security firm Sygnia reports....

Ace infosec biz aware and investigating, we're told Infosec outfit Qualys, its cloud-based vuln detection tech, and its SSL server test webpage, have seemingly fallen victim to a ransomware attack.…...

Any user could become root, warns Immersive Labs researcher Proof of concept code has been published for a vulnerability in popular data centre security management tool Saltstack, which was discovered after a developer at Immersive Labs found a privilege escalation bug allowing any old user to become root.…...