A threat group is distributing the little-known Sarwent Trojan via a fake website that impersonates Amnesty International and claims to deliver protection against the Pegasus mobile malware.
Source: Read More (SecurityWeek RSS Feed)
Fortinet has delayed patching a zero-day command injection vulnerability found in the FortiWeb web application firewall (WAF) until the end of August. […] Source: Read More (BleepingComputer)
Passwords are both your first line of defense and a potential weak link in your security. Now is a good time for a quick, five minute password audit Source: Read More (Latest topics for ZDNet in Security)
Apple’s personal item-tracker devices can be used to deliver malware, slurp credentials, steal tokens and more thanks to XSS. Source: Read More (Threatpost)