In a post dated September 24, Opera detailed the latest discovery of a bug bounty hunter with the handle ‘Renwa’, a member of the private disclosure scheme. Opera has patched the RCE flaw.

The EFF said it is preparing to retire the famous HTTPS Everywhere browser extension after HTTPS adoption has picked up and after several web browsers have introduced HTTPS-only modes.

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has warned organizations that it expects to see widespread exploitation of the flaw due to the availability of exploit code.

Losses from crypto investment scams made up over a quarter of the total scams reported to the Australian Competition and Consumer Commission (ACCC) from the start of the year to the end of August.

A malicious Firefox add-on named “Safepal Wallet” scammed users by emptying out their wallets and lived on the Mozilla add-ons site for seven months. The phishing site set up by attackers is still up.

Researchers were able to identify several anti-analysis methods that were used to prevent reverse engineering and analysis of BloodyStealer, including the use of packers and anti-debugging techniques.

A new Chrome extension has been released to help bug bounty hunters find keys that have made their way into JavaScript online. The open-source extension, now available on GitHub, is called TruffleHog.

Traces of Pegasus spyware were found on phones of at least five current French cabinet ministers, the investigative website Mediapart has reported, citing unnamed sources and a confidential dossier.

BleepingComputer was told by a source in the cybersecurity industry that United Health Centers was reeling from a Vice Society ransomware attack that caused them to shut down their entire network.

The security bloc will also begin cooperation focused on space and combatting cyber threats, promoting resilience, and securing critical infrastructure together, the countries said.