CVE-2019-7089 is a critical zero-day vulnerability in Adobe Reader which was patched this month alongside other 42 critical flaws. The vulnerability is a sensitive data leak issue which can lead to information disclosure in case of successful exploit. It turns…
The popular content management system WordPress has been found to contain a dangerous weakness allowing remote attackers to easily execute remote code. The public announcement of the bug shows that the vulnerability has existed in the past 6 years and…
A new highly critical vulnerability, identified as CVE-2019-6340, was just discovered in Drupal, and luckily it’s already fixed in the latest version of the content management system. If you are running Drupal 7, no core update is required, but you…
Cybercriminals are constantly looking for ways to monetize their malicious campaigns as quickly as possible. Targeting retail websites has proven quite profitable, and it’s no surprise that this type of attack, shortly known as formjacking, has been prevalent in 2018.…
A security team has announced the discovery of a critical vulnerability found in WinRAR, one of the most popular archive and compression tools used by computer users. The issue is estimated to have been a part of the software for…
Global online and offline surveillance seems to have become a permanent part of life. And ironically, we can’t seem to raise voice against it or take any other countermeasure accordingly. Or, can we? Before we proceed to the counter-tactics to…
A recent report carried out by Nightwatch Cybersecurity indicates that a third-party Android app with Facebook API access was copying user data into storage outside of Facebook. Moreover, the data was stored insecurely in two locations. Android App with Facebook…
Rietspoof is a new type of malware that is currently being distributed in the wild via Facebook Messenger and Skype. The malware was discovered by Avast, and is being described as a multi-stage threat that combines file formats to create…
There are multiple complaints from users of torrent sites that their downloaded files contained the GandCrab ransomware and other malware, TorrentFreak recently reported. More specifically, files shared by CracksNow, a popular uploader of software cracks and keygens, have been infected.…
Would you believe it if we told you that clicking on a single malicious link could hack your Facebook account? The scenario is entirely possible due to a recently uncovered critical cross-site request forgery (CSRF) vulnerability. The Facebook CSRF flaw…
Hackers have used a two-year-old vulnerability in a software package used by remote IT support firms to gain a foothold on vulnerable networks and deploy the GandCrab ransomware on those companies’ customer workstations. The infamous GandCrab ransomware has been distributed…
Imagine a busy night at the emergency room. Several vehicles involved have been involved in an accident, and one little girl has been brought in by ambulance after suffering a loss of blood. Naturally, blood transfusions are a common occurrence…
Another piece of Mac malware has been discovered. More specifically, security researchers came across a new variant of the so-called Shlayer malware, which has been targeting macOS users. Shlayer is a multi-stage malware, and in its latest version it has…
If you’re a user of the VFEmail secure email provider, you most certainly have seen the following alert posted on the website: www.vfemail.net and mail.vfemail.net are currently unavailable in their prior form. We have suffered catastrophic destruction at the hands…
Another Linux vulnerability has been discovered impacting Snapd, the package installed by default in Ubuntu and used in other distros like Debian, OpenSUSE, Arch Linux, Fedora and Solus. The vulnerability could enable a local attacker to obtain administrator privileges. This…
A security researcher has discovered “a new hole” in macOS Mojave’s privacy protections. The vulnerability exists in every version of Mojave, including macOS Mojave 10.14.3 Supplemental Update which was released on February 7. The privacy hole was discovered by an…
CVE-2019-5736 is yet another Linux vulnerability discovered in the core runC container code. The runC tool is described as a lightweight, portable implementation of the Open Container Format (OCF) that provides container runtime. CVE-2019-5736 Technical Details The security flaw potentially…
In a recent report from Zimperium, the Xiaomi E-Scooter can be hacked in a way that results in its full remote control, which can be outright dangerous for people’s health. Smart devices are all over the world and they are…
The cases of malicious software targeting Macs are increasing. Security researchers just reported that a malicious Windows .exe file is now able to infect Mac computers, and download infostealer malware accompanied by adware on their systems. The discovery comes from…
You may be wondering why some people are still using Internet Explorer. But it turns out that some businesses are still relying on Microsoft’s oldest browser for older web applications that still haven’t been modernized. Microsoft has been attempting to…
