A new malicious software targeting Mac users has been identified by Elastic Security Labs. The North Korea-originated Lazarus group created KandyKorn malware to target cryptocurrency enthusiasts. The software is written in Python and chiefly targets cryptocurrency engineers via a specialist Discord server. The malware is intended to steal information from targeted computers, with the probable goal of the group being to steal cryptocurrencies.
CISA Warns of Critical VMware vCenter RCE Vulnerability Now Exploited in Attacks
The Cybersecurity and Infrastructure Security Agency (CISA) has added a critical vulnerability affecting Broadcom’s VMware vCenter Server to its Known Exploited Vulnerabilities (KEV) catalog. This
