Bleeping Computer

Hackers exploited Zimbra flaw as zero-day using iCalendar files

Researchers monitoring for larger .ICS calendar attachments found that a flaw in Zimbra Collaboration Suite (ZCS) was used in zero-day attacks at the beginning of the year. ICS files, also known as ...
The Hacker News

CometJacking: One Click Can Turn Perplexity's Comet AI Browser Into a Data Thief

A single malicious URL can hijack Comet AI browser, exfiltrating emails, calendar, and user memory via encoded payloads.

CommetJacking attack tricks Comet browser into stealing emails

A new attack called 'CometJacking' exploits URL parameters to pass to Perplexity's Comet AI browser hidden instructions that allow access to sensitive data from connected services, like email and ...
The Hacker News

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer

Infoblox's analysis has revealed that at least 69% of the confirmed StarFish staging hosts were under the control of Detour Dog, and that a MikroTik botnet advertised as REM Proxy – which, in turn, is ...
ADTmag

The Worm That Ate JavaScript: Inside the Shai-Hulud Supply Chain Attack

The JavaScript development community faced one of its most sophisticated supply chain attacks in September, when a self-replicating worm infiltrated the npm registry and compromised more than 180 ...
Bitdefender

Hidden WordPress Backdoors Found Creating Admin Accounts

Researchers have uncovered two backdoors planted on compromised WordPress websites that were designed to generate administrator accounts ...
PCMag on MSN

Xecrets Ez

You can try Xecrets Ez for free. Just download the file and start using it. EncryptionSafe also offers a free edition that performs all essential encryption tasks, and Encrypto is entirely free.