The Register reports that fixes have been issued by Zoom for a medium-severity security flaw, tracked as CVE-2022-22787, which could be abused to facilitate malicious code execution.
Trend Micro has addressed a Trend Micro Security DLL hijacking vulnerability, which has been actively exploited by Chinese threat group Moshen Dragon, BleepingComputer reports.
Threat actors could exploit a new unpatched security flaw in PayPal's money transfer service to facilitate clickjacking attacks, which involve deceiving targets into interacting with webpage elements that trigger malicious activity, reports The Hacker News.
Thirty-five or more of 75 widely-used online services including LinkedIn, WordPress, Zoom, Instagram, and Dropbox could be subjected to pre-hijacking attacks involving threat actors exploiting already addressed vulnerabilities to takeover online accounts prior to their creation, according to BleepingComputer.
BleepingComputer reports that General Motors had information from some of its customers compromised as a result of a credential stuffing incident last month.
Fast Five
Selected by the SC Media Editorial team every Tuesday.
Sign up now for the top five issues cybersecurity pros need to know this week.