According to CrowdStrike researchers, the criminal group behind the infamous GandCrab ransomware is nicknamed Pinchy Spider. The group has been selling access to the ransomware in a partnership program with a limited number of accounts. It’s curious to note that…
The StealthWorker malware is currently being spread in a new campaign targeting both Linux and Windows. Note that previous versions of the malware only targeted the Windows platform, but a deeper look into the open directory of the latest version…
Google Chrome has been found vulnerable to a zero-day vulnerability for which there may be an active exploit in the wild. The vulnerability in question is assigned the CVE-2019-5786 number, and fortunately, it has been patched. All Chrome users are…
According to a new security report, Microsoft’s IoT version of Windows can be exploited in an attack, called SirepRAT, where hackers can take complete control of the system. The vulnerability was announced during the WOPR Summer in New Jersey where…
macOS has been found to contain a high-severity security vulnerability which was recently disclosed to the public. Apparently, Apple failed to address the issue within the 90-day deadline, and Jann Horn, researcher at Google Project Zero, released the information to…
If you are new to the world of essential online security measures, then you might be unfamiliar with the differences between an intrusion prevention system or IPS and an intrusion detection systems or IDS. In the article below we’ll give…
A new critical flaw, CVE-2019-1663, residing in Cisco wireless VPN and firewall routers was just reported. Businesses should update immediately to protect against the flaw. More specifically, CVE-2019-1663 is a serious vulnerability in the web-based management interface of the Cisco…
Coinhive just announced that the project is coming to an end very soon. According to the official statement, the service is going to be discontinued on March 8. What are the reasons for this decision? Coinhive Project Not Economically Viable…
Two high-severity flaws were discovered in the popular SHAREit app which has more than 1.5 billion users. The app is available for Android, iOS, Windows and Mac, but the two flaws were located in the Android version which has more…
A new security research “demonstrates the powerful capabilities that modern browser APIs provide to attackers by presenting MarioNet: a framework that allows a remote malicious entity to control a visitor’s browser and abuse its resources for unwanted computation or harmful…
Almost half of the Smart Homes of Today’s world have at least one weak device due to an outdated and unpatched software. Researchers and experts at Avast have established that around 40.8% of the smart homes at the moment are…
A new set of security vulnerabilities affecting all major operating systems (Windows, macOS, Linux, and FreeBSD) has been discovered. The vulnerabilities, known as Thunderclap, could allow attackers to bypass protection mechanisms meant to guard against DMA (Direct Memory Access) attacks.…
A new study carried out by Bromium and Dr. Mike McGuire says that cybercrime through social media (Facebook, Twitter, LinkedIn, Instagram) is generating at least $3.25 billion in global revenue annually. The report is based on three key factors: “how…
Eight security issues were discovered (and patched) in the NVIDIA GPU Display Driver software, with one of the vulnerabilities affecting both Linux and Windows systems. The vulnerabilities could lead to code execution, escalation of privileges, denial of service attacks, and…
There’s hardly a day without a new vulnerability. CVE-2019-9019 is a security flaw in the British Airways Entertainment System which affects Boeing 777-36N (ER) and perhaps other aircraft, too. The vulnerability’s type is privilege escalation that is located in the…
Protect your company, now. Nobody is safe from it. Anybody and any business can be hacked. It doesn’t matter if it’s big or small, as technology continues to advance, hackers become savvier. They expose vulnerabilities of the systems we already…
CVE-2019-7089 is a critical zero-day vulnerability in Adobe Reader which was patched this month alongside other 42 critical flaws. The vulnerability is a sensitive data leak issue which can lead to information disclosure in case of successful exploit. It turns…
The popular content management system WordPress has been found to contain a dangerous weakness allowing remote attackers to easily execute remote code. The public announcement of the bug shows that the vulnerability has existed in the past 6 years and…
A new highly critical vulnerability, identified as CVE-2019-6340, was just discovered in Drupal, and luckily it’s already fixed in the latest version of the content management system. If you are running Drupal 7, no core update is required, but you…
Cybercriminals are constantly looking for ways to monetize their malicious campaigns as quickly as possible. Targeting retail websites has proven quite profitable, and it’s no surprise that this type of attack, shortly known as formjacking, has been prevalent in 2018.…
