Hackers Attack Users With Malware Using Underground Call Centres
BazarLoader malware actors have started working with underground call centres to fool targets of their spamming campaign by making...
Russia has created a new data transmission device with protection against cyber threats
It is the first SD-WAN-class development that supports Russian encryption algorithms and is included in the Russian software registry.Sberbank's press...
Cybercrimial are Using Twitter as a Doorway to Target Indonesian Banks
Group-IB, a global threat hunting firm, has discovered traces of an ongoing phishing campaign targeting Indonesia’s largest banks that cybercriminals...
Telemetry Data is Being Shared by Google and Apple Despite the user Explicitly Opting out
A new study revealing Apple and Google's monitoring of mobile devices is making headlines. It discusses how, despite the fact...
Browser lockers: extortion disguised as a fine
Browser lockers (aka browlocks) are a class of online threats that prevent the victim from using the browser and demand...
Tuf – A Framework For Securing Software Update Systems
This repository is the reference implementation of The Update Framework (TUF). It is written in Python and intended to conform...
SecretScanner – Find Secrets And Passwords In Container Images And File Systems
Deepfence SecretScanner can find any potential secrets in container images or file systems. What are Secrets?Secrets are any kind of...
Conti Ransomware gang demanded $40 million ransom to Broward County Public Schools
Ransomware gang demanded a $40,000,000 ransom to the Broward County Public Schools district, Florida. It is just the last attack...
Airlift Express Fixes Vulnerabilities in Its E-commerce Store
PrivacySavvy experts discovered an OTP vulnerability in Airlift Express, which could lead to account hacks and exploits by cybercriminals. A...
DHS CISA requires federal agencies to assess their Microsoft Exchange servers by April 5
The DHS CISA has issued a supplemental directive that requires all federal agencies to identify vulnerable Microsoft Exchange servers in...
Man indicted for tampering with public water system in Kansas
The United States Department of Justice (DoJ) charged a Kansas man, for accessing and tampering with a public water system....
VMware fixes authentication bypass in Carbon Black Cloud Workload appliance
VMware has addressed a critical authentication bypass vulnerability in the VMware Carbon Black Cloud Workload appliance. VMware has addressed a...
CVE-2021-20206
Summary: An improper limitation of path name flaw was found in containernetworking/cni in versions before 0.8.1. When specifying the plugin...
CVE-2021-27239
Summary: This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of NETGEAR R6400 and R6700 firmware version...
CVE-2021-25146
Summary: A remote execution of arbitrary commands vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s):...
CVE-2021-25150
Summary: A remote execution of arbitrary commands vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s):...
CVE-2020-28695
Summary: Askey Fiber Router RTF3505VW-N1 BR_SV_g000_R3505VWN1001_s32_7 devices allow Remote Code Execution and retrieval of admin credentials to log into the...
Video game cheat mod malware demonstrates risks of unlicensed software
Activision reported finding postings on hacking forums on YouTube by a threat actor promoting a Remote Access Trojan that can...
Android “System Update” malware steals photos, videos, GPS location
A newly discovered piece of Android malware shares the same capabilities found within many modern stalkerware-type apps—it can swipe images...
Relax. Internet password books are OK
Passwords are a hot topic on social media at the moment, due to the re-emergence of a discussion about good...
WordPress Websites Infected with Malware Via Fake jQuery Files
Cybersecurity experts discovered fake variants of the jQuery Migrate plugin inserted in various sites that had unclear codes to launch...
Medical Professionals of U.S. and Israel Targeted in a ‘BadBlood’ Phishing Campaign
Email security firm, Proofpoint has exposed a hacking group linked with the Iranian government targeting nearly two-dozen medical researchers in...
Cyberextortion Threat Evolves as Clop Ransomware Attacked 6 U.S Universities Data Security
Malicious actors are now using novel ways to extract universities' data, and are threatening to share stolen data on dark...
Shell’s Employees’ Visas Dumped Online as part of Extortion Attempt
Royal Dutch Shell became the latest corporation to witness an attack by the Clop ransomware group. The compromised servers were...
