The story of infected Android apps is endless, and the possibility you’ve downloaded a malicious app instead of a useful one is not small at all. Some malicious apps are worse than others, and such is the case with a…
CVE-2018-8611 is one the vulnerabilities addressed in December 2018’s Patch Tuesday. The flaw is a kernel zero-day which was just patched but appears to be exploited by several threat actors, Kaspersky Lab researchers report. CVE-2018-8611 Kernel Zero-Day Bug Recently Exploited…
Microsoft’s Windows 10 has been associated with dubious data collection and telemetry techniques since its inception. And it is indeed a widely known fact that the operating system logs data about users on their computers. This is not the issue,…
22 Android apps were removed from Google Play Store because they were involved in a rather untraditional adware operation. The compromised apps were performing click fraud while disguising the Android devices as iPhones to trick online advertisers. Researchers dubbed the…
Data that belongs to more than 66 million users has been found on a website which was completely accessible to everyone. The records seemed to appear as if they were scraped from profiles in LinkedIn. The data may also include…
The Adobe Flash Player has been found to contain a critical security bug along with another high-impact vulnerability. The issues are being tracked in the CVE-2018-15982 and attacks using these weaknesses have already been reported. All users using the Flash…
A large WordPress botnet is currently attacking other blogs powered by the platform. It is particularly worrying as it has already gained a large number of recruited victims. What we know so far is that the network is tunneled through…
Security experts discovered a major weakness in M2M protocols that allows hacker to overtake IoT devices. The experts state that this can result in the sabotage of production facilities and serious consequences for smart home owners. M2М Protocols Abuse Leads…
Nothing bands individuals together like a good old security breach. We are all equal in the face of hacks and data breaches, aren’t we? Did you know that there were 2,216 data breaches and more than 53,000 cybersecurity incidents registered…
We have just received reports that a team of researchers discovered a new variation of the Spectre CPU bug known as the SplitSpectre CPU Vulnerability. It allows malicious users to hijack sensitive data vi the same speculative execution approach as…
Quora has sent out notifications to all of its users notifying them that it has been breached. According to the information received, an unknown hacker or collective was able to access their database of user data on Friday (November 30).…
The Zoom conference service has been found to contain a dangerous vulnerability tracked in CVE-2018-15715 that allows hackers to hijack their sessions. A proof-of-concept code demonstration shows that the flaw not only allows the malicious users to listen in to…
A data breach that affects 500 million individuals was just announced. The affected party is US hotel chain Mariott, and more specifically, its Starwood subsidiary’s guest reservation network. Apparently, the network has exposed its entire database consisting of 500 million…
The answer is within the lines of this post, but is not so simple. Before one is given, other questions have to be answered to give you a better understanding of what is a VPN, how VPNs work and what…
Cryptocurrency mining, or cryptojacking for short, is one of the major cybersecurity threats aimed at both individual users and enterprises, entire networks included. According to statistics, one in three organizations has been targeted by cryptocurrency miners. The number of cryptocurrency…
There are successful malicious campaigns, and then there are successful malicious campaigns. This story falls into the second category, as more than 1.7 million infected Windows-running computers were exploited for click fraud. The campaign has been dubbed 3ve, and has…
Linux users and administrators are advised to be vigilant as news broke of a dangerous ransomware targeting them. It’s called the Lucky ransomware and it is deployed in a global attack campaign featuring typical file-encrypting behavior as the numerous variants…
DNA Money, an Indian newspaper, released a report detailing how Microsoft routinely shared the financial details of Indian bank customers with US intelligence agencies. More specifically, “the data of customers running an account with banks that have migrated to Microsoft…
We all have favorite apps and preferred websites which we use on a daily basis. Along with our growing need of apps and services we constantly rely on, lots of new scams pop up that exploit this need. One of…
Nearly four years ago, Lenovo was making the headlines in a pre-installed adware debacle. Back in 2015, the computer manufacturer was caught installing the Superfish Visual Discovery comparison-search engine software by default on its consumer laptops. Shortly after that revelation,…
