Cisco has patched yet another critical vulnerability outlined as CVE-2019-1867. CVE-2019-1867 is a security flaw located in the REST API of Cisco Elastic Services Controller (ESC) that could allow an unauthenticated, remote attacker to bypass authentication on the REST API,…
A cryptocurrency heist of great proportion has hit one of the major global exchanges. Binance has confirmed that it lost approximately $41 million in Bitcoin in the largest attack that has hit the company so far. Hackers Stole User API…
IoT devices are convenient but they are far from secure and harmless, and there’s another report that proves this fact. Apparently, IoT devices contain design flaws that can allow third parties to prevent them from sharing information. Related: [wplinkpreview url=”https://sensorstechforum.com/iot-security-m2m-protocols-abuse/”]…
Artificial Intelligence is a branch of computer science that highlights the invention of smart computers that act and work like human beings. The potentiality of machines to adjust to new data, learn from past events and perform tasks like humans…
We’ve detected a new scam that’s currently being spread in the wild, which is using the “Email Deactivation for [recipient’s email address]” subject line. Email Deactivation Scam: More Details The scam appears to be sent from an alleged Email Administrator,…
CVE-2019-3719 is an RCE vulnerability in Dell’s SupportAssist Client software. The bug could allow remote unauthenticated attackers on the same Network Access layer to execute arbitrary code on vulnerable Dell machines. Here’s the official description of CVE-2019-3719: Dell SupportAssist Client…
While the dangers of modern online life are well-documented, many website owners simply do not believe that their website contains information worth hacking into. But the realities of modern website hacking go well beyond stealing data and modifying layouts. In…
Another day, another vulnerability. The cybersecurity mantra is giving us another serious issue in Oracle WebLogic Server. The vulnerability, identified as CVE-2019-2568, is easily exploitable and can allow an attacker with low privileges and network access via HTTP to compromise…
As people become more and more dependent on technology and smart devices, they have become increasingly open to various attacks. Now, such threats have a tendency to evolve from one year to the next. This is partially is because cybersecurity…
Are you an owner of a smart home? If yes, maybe you’re acquainted with the Belkin Wemo Insight smart plug. It serves to turn your lights and appliances on and off, and it can also monitor them from anywhere. The…
Are you using Google Chrome? Perhaps you know that Google just released Chrome 74 to the Stable Desktop channel, and Windows, Mac, and Linux users can now download the most recent version of the browser. Note that Chrome 74 introduces…
There are few things as frustrating as a slow browsing speed. When web pages take forever to load and your browser keeps freezing for no reason, doing anything on the web becomes an exercise in patience. Don’t worry though, as…
A trojanized version of TeamViewer has been used in targeted attacks against governmental and financial institutions. The application has been maliciously modified to steal financial information from targets in Europe and worldwide. Among the targeted countries are Nepal, Kenya, Liberia,…
The source code of the infamous Carbanak banking malware was discovered uploaded on VirusTotal. More precisely, security researchers from FireEye say that they found the malware’s source code, builders, and some unknown plugins in two RAR archives that were uploaded…
Password hygiene has not improved much when compared to data we analyzed in 2015. Apparently, the list of worst passwords doesn’t change from year to year, with users continuing to use weak passwords for their accounts. New statistics reveal that…
Cross-site scripting (XSS) is nothing to take lightly. As simultaneously the most prevalent and overlooked security vulnerability around today, this type of breach affects the way your pages load, makes it easier to steal financial and other data, or could…
It’s a fact that we’re facing new vulnerabilities daily. Today’s share of flaws comes from Broadcom WiFi chipset drivers. The flaws (CVE-2019-9503, CVE-2019-9500, CVE-2019-9501, CVE-2019-9502) affect multiple operating systems and could allow remote attackers to perform arbitrary code execution resulting…
„А series of rampant malvertising campaigns“ targeting iOS users have been detected. The campaigns targeted both US and European publishers, and respectively users. According to Confiant security researchers the malicious activities come from a known threat actor called eGobbler that…
Yet another sextortion scam is sneaking into users’ inboxes. The scam which is using the “Warning! Account compromised!” subject line is relying on the spoofing technique to make the user believe their system has been hacked. What Is Spoofing? Spoofing…
If you use AdBlock, AdBlock Plus or uBlock, you should be aware that a security researcher discovered a vulnerability in their filter systems. The loophole may allow remote attackers to inject arbitrary code into web pages. The discovery was made…
