Rust rolls out critical fix for Windows vulnerability and urges immediate updating
A critical vulnerability has been identified in the programming language Rust, potentially allowing attackers to execute malicious commands on Windows machines. The Rust team quickly released version 1.77.2 to address the vulnerability, although it affects more languages than just Rust.
The vuln... Read more
Screen recording app was spying on its users
ESET reports that an Android app was secretly spying on its users. iRecorder - Screen Recorder introduced malicious code through an app update almost a year after its initial listing on Google Play. ESET's research exposed that this code enabled the app to covertly upload one minute of ambient audi... Read more
Adobe urges customers to upgrade to Adobe Commerce after a massive Magento 1 breach
Adobe is beseeching its Magento 1 eCommerce platform user to upgrade to the latest version of Adobe Commerce after a massive breach of over 500 stores built on the platform. Security company Sansec discovered the breach.
Speaking with tech publication ZDNet, Adobe said that it ended support for ... Read more
Sophisticated malware from PyPI was downloaded more than 41,000 times
PyPI, the open-source repository used by both large and small organizations to download code libraries, was hosting 11 malicious packages that were downloaded more than 41k times in one of the latest reports of an incident of this nature.
JFrog found the software supply chain risk. This security... Read more