A new attack vector exploiting vulnerabilities in Unconstrained Kerberos Delegation within Active Directory poses serious enterprise security risks. Attackers can create a “Ghost Server,” impersonate users, and escalate privileges to access sensitive resources. To mitigate risks, organizations should transition to safer delegation methods, monitor configurations, and enforce strict access controls.
Apple’s App Store pulls apps with hidden screen reading malware
Kaspersky has identified a new malware named “SparkCat” affecting iOS apps; 11 such compromised apps have been removed from the app store, with another 89
