Google Chrome Extension Vulnerability Exposes Millions to 2FA Bypass Attacks
A sophisticated phishing campaign targeting Chrome extensions has compromised two-factor authentication protection for millions of users since December 2023. The attacks, including a major breach at Cyberhaven, allow hackers to steal and reuse authentication cookies to bypass security measures.
Chrome Extension Breach: Cyberhaven Attack Exposes Millions to Cookie Theft Risk
A sophisticated phishing attack on Cyberhaven led to the compromise of their Chrome extension, potentially affecting 400,000 corporate customers during the 2023 holiday season. The incident highlights critical vulnerabilities in two-factor authentication systems and the need for enhanced security measures like passkeys.
Massive Chrome Extension Hack Compromises Data of 600,000+ Users
Sixteen popular Chrome browser extensions were compromised through sophisticated phishing attacks, potentially exposing sensitive data of over 600,000 users. The breach, discovered by Cyberhaven, specifically targeted Facebook business accounts and involved malicious code injection into legitimate extensions.
Critical Security Flaw Exposes Thousands of Four-Faith Routers to Remote Attacks
A high-severity vulnerability in Four-Faith routers allows attackers to execute system commands on over 15,000 exposed devices still using default credentials. Security researchers have observed active exploitation attempts in the wild, with no patches currently available from the manufacturer.
Critical Fortinet Vulnerabilities Expose Cybersecurity Gaps and Corporate Responsibility
A severe vulnerability chain in Fortinet's FortiWLM system highlights industry-wide cybersecurity challenges and corporate accountability issues. The flaws, which could enable root-level Remote Code Execution, emphasize the critical importance of timely security patches and proactive protection measures.
Japan Airlines Hit by Major Cyberattack, Flight Operations at Risk
Japan Airlines faced a significant cyberattack disrupting both internal and external computer systems, potentially impacting domestic and international flights. The incident, which began early Thursday morning, highlights growing cybersecurity concerns in the aviation industry.
North Korea's Lazarus Group Targets Nuclear Sector with Advanced Malware Arsenal
North Korean state-sponsored hackers have deployed sophisticated cyber weapons against nuclear industry employees through deceptive job opportunities. The Lazarus group's latest campaign features an evolved malware toolkit including the newly discovered CookiePlus, demonstrating their growing technical capabilities.
Iranian Hackers Evolve: New C++ Variant of BellaCiao Malware Discovered
Kaspersky researchers have identified BellaCPP, a new C++ variant of Iranian state-sponsored malware targeting organizations across multiple regions. The discovery reveals how Iran's Charming Kitten hacking group continues to advance their cyber capabilities while streamlining their tools.
Critical Cloud Platform Vulnerabilities Put 50,000 Ruijie Network Devices at Risk
Security researchers discovered multiple critical flaws in Ruijie Networks' cloud platform that could enable remote control of network devices. The vulnerabilities, including a novel 'Open Sesame' attack method, exposed severe weaknesses in device authentication and command execution capabilities.
Malicious PyPI Packages Found Stealing User Data and Hijacking Social Media Accounts
Security researchers discovered two dangerous packages on PyPI repository that accumulated 300 downloads before removal. The malware captured keystrokes, screenshots, and sensitive data from major social platforms while employing sophisticated concealment techniques to avoid detection.