Detectify explains how investigating CloudKit resulted in Shortcuts disruption for users back in March.
Source: Read More (Latest topics for ZDNet in Security)
You might be interested in …
[TheRecord] Two Eastern Europeans sentenced for providing ‘bulletproof hosting” services
Two Eastern European men who pleaded guilty to providing “bulletproof hosting” services to facilitate the distribution of malware used to attack financial institutions in the U.S. were sentenced to prison today, the Department of Justice said. Pavel Stassi, 30, of Estonia, and Aleksandr Shorodumov, 33, of Lithuania, said they acted as administrators for a bulletproof […]
Daily NCSC-FI news followup 2021-10-11
Iran-linked DEV-0343 targeting defense, GIS, and maritime sectors www.microsoft.com/security/blog/2021/10/11/iran-linked-dev-0343-targeting-defense-gis-and-maritime-sectors/ DEV-0343 is a new activity cluster that the Microsoft Threat Intelligence Center (MSTIC) first observed and began tracking in late July 2021. MSTIC has observed DEV-0343 conducting extensive password spraying against more than 250 Office 365 tenants, with a focus on US and Israeli defense technology […]
[HackerNews] Oracle Warns of Critical Remotely Exploitable Weblogic Server Flaws
Oracle on Tuesday released its quarterly Critical Patch Update for July 2021 with 342 fixes spanning across multiple products, some of which could be exploited by a remote attacker to take control of an affected system. Chief among them is CVE-2019-2729, a critical deserialization vulnerability via XMLDecoder in Oracle WebLogic Server Web Services that’s remotely exploitable without Source: […]