A new zero-day flaw has been actively exploited by cyber-criminals, targeting primarily users on workstations and servers who open files with embedded OLE (Object Linking and Embedding) objects. At the moment, the vulnerability is exploited via PowerPoint files. OLE objects…
A payload for altering the DNS settings of home routers is being delivered through a malicious advertisement inserted in a big online advertising network. The definition for malvertising is an attack in which the cyber criminals take advantage of third-party…
In a security advisory released yesterday, Microsoft has warned about a just-discovered vulnerability of all Windows systems due to security hack attacks. The threat is found in the Windows Object Linking function (OLE). The function is developed so users can…
Google have announced yesterday that they are expanding their security verification methods with one more – a USB stick security key acting as a 2-step verification method for users to log into web-sites when using the Google Chrome browser. The…
A Flash Player security vulnerability that has been patched by Adobe in the most recent update of the product has been added to a commercial exploit kit, named Fiesta, known for the drive-by attacks it is used in. The flaw…
Let’s face it – in the digital era the less technical computer users are the hackers’ favorite targets in every campaign, be that data theft or corporate espionage. In many cases, the only thing needed for the success of a…
People who were trying to access the iCloud service from China were recently having troubles. They have been blocked and their connection was been directed to a phishing page that collects the user credentials. The IT security specialists are figuring…
One of the interesting topics, presented on the Black Hat Europe Conference 2014 conducted in Amsterdam, The Netherlands, between 14 – 17 October this year was how hackers could get around Android package (APK) protection changing the input and output…
As PC users, we are doing everything in the web browsers and this would have been wonderful if the cyber attackers, advertisers and scammers have not been trying to get their code in the browsers that we use. This is…
As hackers keep on targeting the online advertising world, which is considered the back of the Internet economy, more and more online brands are facing the need to eliminate the hoax of malvertising. A fresh example for such action is…
The creators of Asprox botnet are sending spam emails promising a free Starbucks gift card in order to expand the capacity of the botnet. The main purpose of the spam campaign is to enlarge the botnet, which has been known…
A spam e-mail that aims to increase the stock value of a Canadian penny stock company has been delivered to numerous users last week. As a result of the campaign, the transaction volume increased significantly. The company in question is…
Google researchers Bodo Möller, Thai Duong & Krzysztof Kotowicz announced yesterday that they have recently discovered Padding Oracle On Downgraded Legacy Encryption, known as POODLE, to be attacking the SSL 3.0 version of the public-encryption key introduced by Microsoft back…
Vulnerabilities are Coming from the CMS Plug-Ins The content management systems are in the focus of the cyber criminals due to the availability of plug-ins, large attack surfaces themes and extensions. The news reports in the last few months revealed…
In a statement, published on 10 October this year, Kmart Company President Alasdair James acknowledged that the company has been recently a subject of a hack attack. On 9 October, 2014 Kmart’s IT team discovered their PoS (Point-of-Sale) systems to…
A few days ago 14IE flows have been closed. In September the IT specialists warned that the Aurora Panda/DeputyDog actor has lost its IE 0day for being patched and that as found unusual. In October several other vulnerabilities have been…
A new post release by an unknown hacker group in the text sharing Pastebin site today states that they have managed to steal more than 6 million user credentials from the famous share-cloud service Dropbox. The statement also says that…
GameOver Zeus, a botnet designed to infect systems and steal their banking credentials, was detected to have compromised vogue.com, according to URLquery.net, a website for detecting and analysing malware. The Department of Justice and the FBI managed to disrupt the…
Cache of about 13 gigabytes of pictures, some of them of nude and underage users, leaked out in the free web on Thursday night. Most of them were posted into the 4Chan imageboard website. The cache came from the photo…
The review for the best smartphone for October 2014 will cover six devices. Below will be enumerated all the positive and negative elements in each smartphone model, so that the customers can make an information based choice. APPLE – iPhone…
