A security researcher recently discovered and reported a Google Drive vulnerability which could lead to malware attacks. The bug is unpatched and could allow threat actors to spread malicious files masqueraded as legitimate documents or images. Further, this could then…
Another case of an organization paying ransom to cybercriminals has been registered. The University of Utah in the United States just revealed that it paid a ransom in the amount of $457,059. The reason for the payment is that cybercriminals…
Microsoft Defender, the security suite which guards the Windows operating system has received an important update which will prevent software and programs to disable it via the Windows Registry. To this date this functionality was present in the application’s core…
Have you noticed an out-of-band security update on your Windows? The patch is an emergency update which fixes privilege escalation vulnerabilities (CVE-2020-1530, CVE-2020-1537) that affect the Windows Remote Access service in Windows 8.1 and Windows Server 2012 R2 (KB4578013). CVE-2020-1530,…
USA Government agencies have revealed a new virus originating from North Korea called the BLINDINGCAN malware which is categorized as a backdoor Trojan. The American authorities have discovered it in an Internet campaign which was captured by the Cybersecurity and…
Security researchers recently discovered a sophisticated P2P (peer-to-peer) botnet that has carried out attacks against at least 500 government and enterpise SSH servers throughout 2020. Dubbed FritzFrog, the botnet was detected by Guardicore Labs in January. Apparently, the botnet has…
The Duri attack campaign which has been launched by an unknown hacking group has revealed that cybercriminals have devised a new intrusion technique – HTML smuggling. It allows hackers to distribute dangerous payloads by utilizing detection evasion by security features.…
A newly added feature in a previously known cryptomining operation is targeting AWS credentials, according to a report by security firm Cado Security. The malware group behind this new campaign is known as TeamTNT, a cybercrime group which has been…
Computer security researchers have created an exploit and subsequently a killswitch (dubbed EmoCrash) to prevent the Emotet malware from spreading. This is one of the most common and dangerous virus infections as they are being spread via botnet networks of…
The CVE-2020-1464 vulnerability was part of the 120 security flaws addressed in August’s Patch Tuesday. This vulnerability particularly stands out as it was actively expoited in malicious attacks for at least two years before Microsoft fixed it. What Is CVE-2020-1464?…
A dangerous Linux malware called Drovorub has been recently discovered to be an espionage tool used by Russian hackers in attack campaigns. Recent news about it reveals that the scope of the intrusions might be particularly high-impact. Details about it…
Instagram has violated the privacy of its users by retaining peoples’ photos and private direct messages on its servers even after people deleted them. The vulnerability was discovered by researcher Saugat Pokharel when he downloaded his data from Instagram last…
Currently, more than 200 million Alexa-powered devices are being used worldwide. Amazon’s intelligent virtual assistant is holding top positions in most markets. In the U.S. alone, an eMarketer predictive analysis for 2021 shows that 70% of all smart speaker owners…
The latest Microsoft Windows Patch Tuesday pack has been released bringing in fixes for 120 vulnerabilities. They reveal how hackers could have used exploits in order to hack into the systems using a lot of different methods and components of…
The TikTok Android application has been found to exploit the Play Store services in order to bundle personalized advertising without the users consent. This practice is officially banned by Google for all applications uploaded on their repository. TikTok Collects Private…
Samsung’s Find My Mobile feature which is part of the Galaxy series of smartphones has been found to include several security vulnerabilities. According to the available report by taking advantage of them hackers can manipulate the devices into running malicious…
Hacking group have found a way to steal Bitcoin assets by redirecting transactions, this is done by taking advantage of Tor network vulnerabilities. More and more hacking groups are actively taking advantage of this opportunity, the Bitcoin cryptocurrency is detected…
A new dangerous Android vulnerability has been identified by security experts and named Achilles. The reports indicate that devices powered by Qualcomm chipsets are affected: more than 400 bugs have been discovered. The Achilles Android Vulnerability Found in Qualcomm Devices…
A very large hacking campaign has penetrated government and college sites in the US in the end delivering dangerous malware. The criminal groups are defacing the uploaded by uploading hacking tutorials for popular online services. When the visitors open them…
The well-known Have I been Pwned project is going open source. The data breach search engine with hundreds of thousands of exposed records has been developed and maintained by Troy Hunt, a well-respected security and privacy expert. Who Is Troy…
