It’s more fun to compete with your friends on CS:GO or Apex Legends if everyone is on the same instant messaging platform. For lots of people, having a platform to joke around, chat in general, and stream gameplay for friends is a crucial part of the game. If you’re a big fan of online games, you’ve show more ...
In this episode of the podcast (#200), sponsored by Digicert: John Jackson, founder of the group Sakura Samurai talks to us about his quest to make hacking groups cool again. Also: we talk with Avesta Hojjati of the firm Digicert about the challenge of managing a growing population of digital certificates and how show more ...
A relatively new cryptomining malware that surfaced last year and infected thousands of Microsoft SQL Server databases has now been linked to a small software development company based in Iran.
Asset and wealth management (AWM) companies play an important role in handling finances and investments for different clients throughout the world, which makes them tempting targets for hackers.
QNAP urges customers to secure their network-attached storage (NAS) devices against an ongoing malware campaign that infects and exploits them to mine bitcoin without their knowledge.
Amazon has awarded an $18,000 bug bounty for an exploit chain that could have allowed an attacker to take complete control of a Kindle e-reader simply by knowing the targeted user’s email address.
Israel’s cybersecurity industry accounted for 31% of global investments in the sector in 2020, putting the nation in second place after the US, the National Cyber Directorate said.
The data was allegedly exfiltrated from the company servers in December 2020 by carrying out an SQL injection attack, and includes 2 million user records of MyFreeCams Premium members.
Cybersecurity experts divulged the details about a cyberattack campaign by the Chinese hacker group, Winnti, that has been targeting organizations in Russia and Hong Kong.
The CISA launched a new educational campaign Thursday encouraging governments, schools, and private companies to take steps to protect their systems and data from ransomware.
In the year 2020, cyber attackers focused more on ransomware, while the consolidation of data into large databases led to fewer reported breaches but more records leaked.
Intel Corp said on Thursday that it was investigating reports that a graphic in its quarterly earnings statement had been the object of unauthorized access before publication.
Vadokrist is a Latin American banking trojan written in Delphi that is active almost exclusively in Brazil. It uses lots of unused code as an anti-analysis and an evasion technique.
Cybercrime gangs are abusing Windows Remote Desktop Protocol (RDP) systems to bounce and amplify junk traffic as part of DDoS attacks, security firm Netscout said in an alert on Tuesday.
Carders, fraudsters, and other cybercriminals will be quick to migrate to other nefarious platforms if the Joker’s Stash closes as promised next month, according to cyber experts.
On January 16th, Sonatype became aware of 3 malicious packages that were published to npm, and leveraged brandjacking and typosquatting techniques that were previously reported.
The Drupal development team has released security updates to address the CVE-2020-36193 vulnerability in the PEAR Archive_Tar third-party library which provides handling of tar files in PHP.
Organizations are struggling to maintain application security across multiple platforms, and are also losing visibility with the emergence of new architectures and adoption of APIs, Radware reveals.
Too many people make the mistake of choosing weak passwords or reusing passwords used elsewhere – making life too easy for malicious hackers trying to gain unauthorized access.
Security experts have warned that more nasty surprises may be in store for recipients of a UK Department for Education (DfE) laptop scheme, after malware was found on some machines.
Security operations teams rely on asset inventory for specific information needed for investigations. To build a complete, contextual, and current asset inventory, they need diverse data sources.
The potentially leaked information — names, addresses, phone numbers, and purchase history — included personal data of celebrities, popular businesspersons, and doctors, among others.
Data apparently belonging to employees of the United Parcel Service (UPS) and Norfolk Southern Railroad was published online to a leak site by the gang behind Conti ransomware.
President Joe Biden is hiring a group of national security veterans with deep cyber expertise, drawing praise from former defense officials, investigators, and cyber experts.
Researchers reported FreakOut botnet, whose capabilities range from scanning ports and stealing data to launching DDoS and cryptomining attacks, targets unpatched Linux systems.
While the hospital's services are slowly recovering and surgical operations have resumed, CHwapi continues to cancel some services and redirect urgent cases to other hospitals.
Due to Shazam having been acquired then by Apple, the researcher was asked to take up the issue with Apple which led the flaw to be finally patched on March 26, 2019, both on iOS and Android.
Israeli researchers shared details on seven extremely critical DNS-related vulnerabilities, tracked as DNSpooq, exposing millions of devices to a variety of DNS cache poisoning attacks.
The vast majority of the most popular Windows-native PDF viewers were vulnerable to multiple attack techniques exploiting standard PDF features, a team of security researchers has discovered.
A report from Group-IB revealed that classified ads scammers have earned more than $6.5 million in 2020, from buyers in a widespread operation dubbed Classiscam.
The retail and hospitality sector is fixing software flaws at a faster rate than five other sectors, a recent Veracode analysis of more than 130,000 applications reveals.
To avoid getting detected, the skimmer is loaded using the PHP function file_get_contents and an obfuscated URL, while ensuring that the user is on the checkout page and not logged in as admin.
Selea CarPlateServer (CPS) version 4.0.1.6 suffers from a remote program execution vulnerability.
Selea CarPlateServer (CPS) version 4.0.1.6 suffers from a local privilege escalation vulnerability.
Gentoo Linux Security Advisory 202101-11 - Multiple vulnerabilities were discovered in Gentoo's ebuild for Zabbix which could lead to root privilege escalation. Versions less than 4.4.6 are affected.
Atlassian Confluence version 6.12.1 suffers from a Widget Connector Macro template injection vulnerability.
Selea Targa IP OCR-ANPR Camera suffers from an unauthenticated remote code execution vulnerability. Multiple versions and firmwares are affected.
ERPNext version 12.14.0 suffers from an authenticated remote SQL injection vulnerability.
Backdoor.Win32.Hupigon.adef malware suffers from a remote stack buffer overflow vulnerability.
Selea Targa IP OCR-ANPR Camera suffers from an unauthenticated RTP/RTSP/M-JPEG stream disclosure vulnerability. Multiple versions and firmwares are affected.
Selea Targa IP OCR-ANPR Camera suffers from a cross site request forgery vulnerability that allows for adding an administrator. Multiple versions and firmwares are affected.
Selea Targa IP OCR-ANPR Camera suffers from an unauthenticated server-side request forgery vulnerability. Multiple versions and firmwares are affected.
143 bytes small Windows/x86 stager generic MSHTA shellcode.
Selea Targa IP OCR-ANPR Camera suffers from an unauthenticated directory traversal vulnerability that allows for file disclosure. Multiple versions and firmwares are affected.
CASAP Automated Enrollment System version 1.0 suffers from an authentication bypass vulnerability.
Selea Targa IP OCR-ANPR Camera has a hard-coded password for a hidden and undocumented /dev.html page that enables the vendor to enable configuration upload / overwrite to the affected device using the checkManufacturer() function through an AJAX method. Multiple versions and firmwares are affected.
Selea Targa IP OCR-ANPR Camera suffers from a persistent cross site scripting vulnerability. Multiple versions and firmwares are affected.
Oracle WebLogic Server version 14.1.1.0 authenticated remote code execution exploit.
Amazon has addressed a number of flaws in its Kindle e-reader platform that could have allowed an attacker to take control of victims' devices by simply sending them a malicious e-book. Dubbed "KindleDrip," the exploit chain takes advantage of a feature called "Send to Kindle" to send a malware-laced document to a Kindle device that, when opened, could be leveraged to remotely execute arbitrary
Like it or not, 2020 was the year that proved that teams could work from literally anywhere. While terms like "flex work" and "WFH" were thrown around before COVID-19 came around, thanks to the pandemic, remote working has become the defacto way people work nowadays. Today, digital-based work interactions take the place of in-person ones with near-seamless fluidity, and the best part is that
The Conti ransomware gang has published corporate plans, contracts, spreadsheets, and personal information about staff, amongst other files stolen in a ransomware attack against the Scottish Environment Protection Agency (SEPA). Read more in my article on the Hot for Security blog.
