Bleeping Computer

QR codes bypass browser isolation for malicious C2 communication

Mandiant has identified a novel method to bypass browser isolation technology and achieve command-and-control operations through QR codes. Browser isolation is an increasingly popular security ...
Bizcommunity

Hackers using text-based QR codes to bypass email security tools

The tactic was uncovered by cybersecurity firm Kaspersky, which said attackers are constructing QR codes using text symbols rather than image files. QR-code phishing attacks, often known as "quishing" ...
csis.org

AI-Driven Code Analysis: What Claude Code Security Can—and Can’t—Do

Q1: How does Claude Code Security function—and how does it differ from traditional static application security testing (SAST)? A1: Conventional rule-based static analysis uses pattern matching, ...
Dark Reading

Attackers Use Multiple Techniques to Bypass Reputation-Based Security

Reputation-based security controls may be less effective at protecting organizations against unsafe Web applications and content than many assume. A new study by researchers at Elastic Security found ...
Bleeping Computer

Ivanti warns of maximum severity CSA auth bypass vulnerability

Today, Ivanti warned customers about a new maximum-severity authentication bypass vulnerability in its Cloud Services Appliance (CSA) solution. The security flaw (tracked as CVE-2024-11639 and ...