CSO Online

Attackers exploit Ivanti EPMM zero-days to seize control of MDM servers

Palo Alto Networks’ Unit 42 says two critical flaws are being actively abused to gain unauthenticated access, deploy persistent backdoors, and compromise entire enterprise mobile fleets even after ...

This Find My exploit lets hackers track any Bluetooth device – here’s how you can stay safe

A new exploit can track any Bluetooth device using Apple’s Find My network The attack can be done remotely in just a few ...
Bleeping Computer

Russian phishing campaigns exploit Signal's device-linking feature

Russian threat actors have been launching phishing campaigns that exploit the legitimate “Linked Devices” feature in the Signal messaging app to gain unauthorized access to accounts of interest. Over ...
Hosted on MSN

Hackers exploit WhatsApp device-linking feature to hijack accounts

Hackers can hijack WhatsApp accounts without ever cracking passwords or encryption GhostPairing attacks exploit legitimate device-linking features to gain full account access Users are tricked by fake ...
Threat Post

Cisco Patches Critical Flaw After PoC Exploit Code Release

A critical path-traversal flaw (CVE-2020-27130) exists in Cisco Security Manager that lays bare sensitive information to remote, unauthenticated attackers. A day after proof-of-concept (PoC) exploit ...
TechSpot

New iPhone bootROM exploit might lead to permanent jailbreak on hundreds of millions of devices

Uh oh Apple: Someone discovered an "unpatchable" exploit on iPhones that may allow them to be permanently jailbroken. The vulnerability is at the hardware level, so even updating iOS will not patch ...