InfoSecBulletin Cybersecurity for mankind
Google fixed a serious Chrome bug known as CVE-2024-4058 in the ANGLE graphics layer engine along with four vulnerabilities in the Chrome web browser.
CVE-2024-4058 is a vulnerability in the ANGLE graphics layer engine. It allows attackers to execute arbitrary code on macOS systems. Toan Pham and Bao Pham from Qrious Secure reported a serious issue on 2024-04-02 and received a $16,000 reward for their research.
WhatsApp banned on all US House of Representatives devices
Kaspersky found “SparkKitty” Malware on Google Play, Apple App Store
OWASP AI Testing Guide Launched to Uncover Vulns in AI Systems
Axentec Launches Bangladesh’s First Locally Hosted Tier-4 Cloud Platform
Hackers Bypass Gmail MFA With App-Specific Password Reuse
Russia detects first SuperCard malware attacks via NFC
Income Property Investments exposes 170,000+ Individuals record
ALERT (CVE: 2023-28771)
Zyxel Firewalls Under Attack via CVE-2023-28771 by 244 IPs
CISA Flags Active Exploits in Apple iOS and TP-Link Routers
10K Records Allegedly from Mac Cloud Provider’s Customers Leaked Online
The IT giant fixed a serious flaw called CVE-2024-4059, an Out of Bounds read in the V8 API, discovered by Eirik on 2024-04-08. Google fixed a high-severity flaw in Dawn. The flaw, tracked as CVE-2024-4060, is a Use after Free vulnerability in Dawn. Dawn is an open-source and cross-platform implementation of the WebGPU standard. The flaw was reported by wgslfuzz on April 9, 2024.
The Stable channel has been updated to version 124.0.6367.78/.79 for Windows and Mac. The Linux version 124.0.6367.78 will be released in the next few days/weeks.
