An unknown hacking group is leveraging a previously-unknown malware called Ttint which is categorized as an IoT-specific Trojan. What we know is that the hacker developers are using two zero-day vulnerabilities to intrude onto the target devices. The security analysis…
A UK government report indicates a flaw of national significance in Chinese company Huawei. The Huawei Cyber Security Evaluation Centre (HCSEC) was set up by the UK government and the tech company to evaluate equipment meant for UK networks. HCSEC…
GitHub is getting a new feature that will inform the platform’s users about security flaws in their code. The feature is called Code Scanning, and it is available for both free and paid user accounts. The feature was first announced…
Security researchers detected a dangerous and widespread attack against companies in Russia, the hacking group behind is known as OldGremlin. The targets are prolific companies in different sectors, and the hackers appear to be using different ransomware and related malware…
Microsoft has been pushing Windows users towards its Edge Browser and Bing search engine. Unfortunately, a new security report reveals that a back-end server associated with Bing has exposed sensitive data belonging to users of the mobile application. Bing Associated…
A new vulnerability in Mozilla Firefox for Android was just discovered. The vulnerability was made public by security researcher Lukas Stefanko who disclosed it in a Twitter alert. The vulnerability is high-risk and it can lead to remote code execution.…
A new dangerous attack campaign has been detected by security researchers involved in the distribution of the MrbMiner malware which is programmed to infect MSSQL databases. They are part of enterprise and company sites and are used to contain sensitive…
Here comes a new major, massive vulnerability that affects billions of devices, including smartphones, tablets, laptops, and IoT appliances. Dubbed BLESA, OR Bluetooth Low Energy Spoofing Attack, the flaw affects devices that run the Bluetooth Low Energy protocol, shortly known…
Computer security researchers have detected a new massive SPAM campaign which has received the code name ‘Salfram’ and targets primarily business users and companies. Several hacking groups are behind the attacks and depending on the current configuration various malware are…
Microsoft is not giving up on pushing its Edge browser to Windows users, and another mandatory update proves that. Despite adopting the Chromium engine, the company doesn’t want you to use Chrome or any other browser, and just released a…
Ransomware actors are getting greedier, and another proof for that statement is the latest ransom demanded by the Netwalker group. The most recent high profile attack carried out by Netwalker ransomware is against Equinix, where clients’ data was encrypted. NetWalker…
Low-income users who have obtained a phone from the government-funded Lifeline program have reported that their devices have been overrun by malware. It appears that the issued phones have been known to push intrusive pop-up ads which are often categorized…
Computer security researchers discovered a major vulnerability in the Intel Active Management technology allowing hackers to gain privilege escalation. This is a feature that is used to carry out remote control access to machines. This issue has recently been patched…
Microsoft Outlook credentials are being actively hijacked from users that have fallen for a dangerous active phishing campaign. The hackers behind it are using advanced elements such as overlay screens and policies in order to manipulate the victims into typing…
A security researcher has discovered that Windows 10 themes can be used to steal users’ data using a technique called pass-the-hash. This is possible to a loophole found in the operating system that is used to allow the loading of…
Payment card data issued by major banks and organizations are constantly the target of computer criminals using different hacking methods. However, the Visa payment cards have been found to be vulnerable to a new kind of attack categorized as a…
A new report shows that computer criminals are actively using the Binance platform in order to exchange the cryptocurrency received from ransomware blackmail fees. This is being done by large hacking groups and despite the exchange’s policy of not allowing…
The DeathStalker hacking group is a recently discovered malware group which has been found to infiltrate small and medium business companies across the world. The research shows that their primary focus is on establishments that operate in the financial sector.…
Computer security experts have discovered that a previously unknown hacking group from Iran are using the CVE-2017-0213 exploit to target RDP servers and implant Dharma ransomware samples. This is one of the most popular virus family and numerous strains of…
A security researcher recently discovered and reported a Google Drive vulnerability which could lead to malware attacks. The bug is unpatched and could allow threat actors to spread malicious files masqueraded as legitimate documents or images. Further, this could then…
