In June 2013 Yahoo decided to reset accounts which have been latent for a period of 12 or more months. The company further announced that it will give the accounts to other users, which provoked various privacy and security questions.…
Apple Pay method is a new way for iPhone 6 and iPhone 6 Plus users to purchase goods and services without disclosing their debit or credit cards or any other bank information to merchants, thus remaining anonymous. All the users…
Created in 2007, Pawn Storm is the name of a cyber-espionage operation whose main aim is targeting military, governments and media entities. The name Pawn Storm comes from a chess action where the pawns are organized into a massive defense…
A glitch in the design code of the NeedMyTranscript.com web-site discovered recently appears to disclose the personal information of almost 100,000 of its visitors to anyone who enters a specific internal directory of the site. The directory was not supposed…
Twicth.tv is a web-site platform created to connect gamers throughout all over the world. Twict.tv helps gamers connect, chat and communicate no matter where they play games from. It was recently discovered that the site has a relatively good fake…
A new zero-day flaw has been actively exploited by cyber-criminals, targeting primarily users on workstations and servers who open files with embedded OLE (Object Linking and Embedding) objects. At the moment, the vulnerability is exploited via PowerPoint files. OLE objects…
A payload for altering the DNS settings of home routers is being delivered through a malicious advertisement inserted in a big online advertising network. The definition for malvertising is an attack in which the cyber criminals take advantage of third-party…
In a security advisory released yesterday, Microsoft has warned about a just-discovered vulnerability of all Windows systems due to security hack attacks. The threat is found in the Windows Object Linking function (OLE). The function is developed so users can…
Google have announced yesterday that they are expanding their security verification methods with one more – a USB stick security key acting as a 2-step verification method for users to log into web-sites when using the Google Chrome browser. The…
A Flash Player security vulnerability that has been patched by Adobe in the most recent update of the product has been added to a commercial exploit kit, named Fiesta, known for the drive-by attacks it is used in. The flaw…
Let’s face it – in the digital era the less technical computer users are the hackers’ favorite targets in every campaign, be that data theft or corporate espionage. In many cases, the only thing needed for the success of a…
People who were trying to access the iCloud service from China were recently having troubles. They have been blocked and their connection was been directed to a phishing page that collects the user credentials. The IT security specialists are figuring…
One of the interesting topics, presented on the Black Hat Europe Conference 2014 conducted in Amsterdam, The Netherlands, between 14 – 17 October this year was how hackers could get around Android package (APK) protection changing the input and output…
As PC users, we are doing everything in the web browsers and this would have been wonderful if the cyber attackers, advertisers and scammers have not been trying to get their code in the browsers that we use. This is…
As hackers keep on targeting the online advertising world, which is considered the back of the Internet economy, more and more online brands are facing the need to eliminate the hoax of malvertising. A fresh example for such action is…
The creators of Asprox botnet are sending spam emails promising a free Starbucks gift card in order to expand the capacity of the botnet. The main purpose of the spam campaign is to enlarge the botnet, which has been known…
A spam e-mail that aims to increase the stock value of a Canadian penny stock company has been delivered to numerous users last week. As a result of the campaign, the transaction volume increased significantly. The company in question is…
Google researchers Bodo Möller, Thai Duong & Krzysztof Kotowicz announced yesterday that they have recently discovered Padding Oracle On Downgraded Legacy Encryption, known as POODLE, to be attacking the SSL 3.0 version of the public-encryption key introduced by Microsoft back…
Vulnerabilities are Coming from the CMS Plug-Ins The content management systems are in the focus of the cyber criminals due to the availability of plug-ins, large attack surfaces themes and extensions. The news reports in the last few months revealed…
In a statement, published on 10 October this year, Kmart Company President Alasdair James acknowledged that the company has been recently a subject of a hack attack. On 9 October, 2014 Kmart’s IT team discovered their PoS (Point-of-Sale) systems to…
