Iran’s railroad system was hit by a cyberattack, hackers posted fake delay messages
Iran’s railroad system was hit by a cyberattack, hackers posted fake messages about delays or cancellations of the trains on...
CVE-2020-25868
Summary: Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can...
CVE-2020-24144
Summary: Directory traversal in the Media File Organizer (aka media-file-organizer) plugin 1.0.1 for WordPress lets an attacker get access to...
CVE-2021-34620
Summary: The WP Fluent Forms plugin < 3.6.67 for WordPress is vulnerable to Cross-Site Request Forgery leading to stored Cross-Site...
CVE-2021-21807
Summary: An integer overflow vulnerability exists in the DICOM parse_dicom_meta_info functionality of Accusoft ImageGear 19.9. A specially crafted malformed file...
CVE-2021-21775
Summary: A use-after-free vulnerability exists in the way certain events are processed for ImageLoader objects of Webkit WebKitGTK 2.30.4. A...
Are Online Brands Prioritizing Speed Over Security? Here’s a Quick Look
Concern over online security has risen significantly in recent times. According to research published by Trulioo, consumers around the world...
Online Support Agents Being Targeted Through Live Chat Platforms
Phishing scammers are pretending to be customers contact live-chat assistance agents with fake issues, making them open infected files, says...
Millions of Login Credentials Stolen By an ‘Unnamed Malware’
Cybersecurity researchers from Nord Security have unearthed a new set of Trojan-type malware that has exploited over three million Windows...
Email Fatigue Elevates Cyber Crime Rates
According to research, email is indeed the most preferred medium of communication by almost 86 percent of professionals. Whilst the...
Cloud Cryptomining Scam in Google Play Rakes in Cash
Researchers stated that fraudulent crypto mining applications available for download on Google Play have scammed more than 93,400 people so...
Nexfil – OSINT Tool For Finding Profiles By Username
NExfil is an OSINT tool written in python for finding profiles by username. The provided usernames are checked on over...
The-Bastion – Authentication, Authorization, Traceability And Auditability For SSH Accesses
Bastions are a cluster of machines used as the unique entry point by operational teams (such as sysadmins, developers, database...
Kaseya warns customers of ongoing malspam campaign posing as security updates
Threat actors are conducting a spam campaign aimed at infecting Kaseya customers, posing as legitimate VSA security updates Kaseya is...
CVE-2021-34549
Summary: An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-005. Hashing is mishandled for certain retrieval of circuit data....
CVE-2021-34550
Summary: An issue was discovered in Tor before 0.4.6.5, aka TROVE-2021-006. The v3 onion service descriptor parsing allows out-of-bounds memory...
CVE-2021-35331
Summary: ** DISPUTED ** In Tcl 8.6.11, a format string vulnerability in nmakehlp.c might allow code execution via a crated...
CVE-2020-25868
Summary: Pexip Infinity 22.x through 24.x before 24.2 has Improper Input Validation for call setup. An unauthenticated remote attacker can...
CVE-2020-24144
Summary: Directory traversal in the Media File Organizer (aka media-file-organizer) plugin 1.0.1 for WordPress lets an attacker get access to...
How to send an anonymous email
Sometimes readers ask us how to send an anonymous email or how criminals and scammers manage to send anonymous emails....
Judge drops hammer, dishes 7 years slammer for BEC and romance scammer
A Texas resident has finally paid the price for a heady mix of malicious mail antics. A combination of business...
How one word can disable an iPhone’s WiFi functionality
A researcher has found a way to disable the WiFi functionality on iPhones by getting them to join a WiFi...
Cyber Criminals Sending Phishing Mails Pretending to be from Russian Government Domain
The administration of RSNet (Russian State Network) recommended not to open letters from unknown senders, not to click on links...
Cobalt Strike Payloads: Hackers Capitalizing on Ongoing Kaseya Ransomware Attacks
Cyberattack actors are trying to monetize off the currently ongoing Kaseya ransomware attack incident by attacking probable victims in a...
