As a consequence of one of the biggest retail security breaches this passing year, Home Depot has spent more than $43 million only during the last trimester on security investigations. In a statement from this Tuesday, the retailer announced that…
On Tuesday Adobe issued an emergency patch in order to fix a Flash Player flaw CVE-2104-8439 that was fixed last month but got exploited again. Adobe added “mitigation” for the vulnerability. The new versions are available for: Windows – 15.0.0.239…
Microsoft has released a new build 9879 for all the machines running Windows 10 Technical Preview. Reportedly its features are no different than those of the old one. In case you are among the proud users of Windows 10 Technical…
The “less” command which allows you to see the files content downloaded from the Internet in Linux may appear to be quite a dangerous feature according to security specialists. What Is Lesspipe The feature looks harmless at first sight, allowing…
Researchers with Symantec have identified a new highly advanced espionage malware, dubbed Regin, used in attacks against numerous international targets, ranging from private individuals to businesses, and governments. The degree of technical competence displayed by Regin can be rarely seen,…
Creating an Android malware application can be quite easy even for a beginner in developing of software applications. Take an existing application, disassemble it with all the available tools which can be found online, change the code, make it open-source…
A crucial cross-site scripting flaw is patched in the latest WordPress Update – 4.0.1. The vulnerability compromises comment boxes on websites that apply the content management system software. Exploiting the flaw, an attacker would have to inject malicious JavaScript in…
In the past few days, Windows Update has not been functioning on Windows XP. Error 0x80248015 occurs as IE8 loads the web page, and so the user cannot search for a fix. Despite the fact that Microsoft does not issue…
A new type Man-in-the-Middle (MitM) attack called “DoubleDirect” is spreading over the Internet these days. What the attack does is redirecting traffic of wireless connections from big web-site domains like Facebook, Google, Twitter, to malware-infected sites. Falling on such the…
Detect has been built to assist activists, journalists and defenders of the human rights worldwide, by detecting spyware installed by governmental organizations in order to monitor certain subjects and their activities. Researcher Claudio Guarneri is the mind behind the open…
Everyone who uses PayPal service for their online payments has at least once received an e-mail pretending to be from the official PayPal support, stating that an unauthorized payment has been made out of the account. Most of these e-mails…
The Citadel Trojan has a new target – password managers holding the passwords that keep important management products safe. IBM Trusteer researchers have announced that they have informed the creators or nexus Personal Security Client, KeePass and Password Safe about…
A report stating that the file-sharing peer-to-peer shared service BitTorrent has several flaws in its security encryption was published last Sunday (16th November) by a group of security researchers in the Hackito web-site forum. The report states that the torrent…
Google has open-sourced a new tool this Tuesday, in an attempt to enhance the performance of automated web security scanners by assessing them with patterns of flaws that have already been seen in the wild. The utility dubbed Firing Range…
WhatsApp, the worldwide famous messaging application have recently announced that they have implemented a secure text protocol for end-to-end encryption for all its users. They should not do anything though – the encryption will be installed automatically with the next…
Yesterday Google released the 39 version of their Chrome browser, fixing 42 vulnerabilities known altogether removing support for the notorious SSL 3.0 certificate which was subject to a POODLE malware attack last month. The attack was discovered by Google researchers…
Recently, the option of de-anonymizing users on Tor network was discussed. This possibility led to numerous discussions online. The team behind the project assured that the false positive rate makes such attacks worthless. According to research done by a professor…
Hackers using the Asprox / Kuluoz botnet appear to have developed it to send links landing on different pages, depending on what operation systems victims are using – Android or iOS. In addition, it seems that there is a backdoor…
Microsoft has recently warned the PC users about certain problems with the SChannel Security Update. It was announced that the SChannel vulnerability contains new TLS ciphers that are causing the problems. The company has offered a workaround, however the users…
The new CoinVault ransomware has the same behavior as other file-encrypting malware, like CryptoWall, CryptoLocker and Crowti. CoinVault would encrypt the files on the affected machine and demand a ransom for their recovery. CoinVault has an interface similar to other…
