There is a serious loophole in Mac security, and it is related to macros. The issue affects the Mac version of Microsoft Office. According to the official advisory, “the Microsoft Office for Mac option “Disable all macros without notification” enables…
A TrendMicro employee has been stealing consumer information and selling it to tech support scammers. The company made an announcement regarding this security incident, in which in becomes clear that unauthorized disclosure of personal data of some customers has been…
Phishing has been evolving steadily over the years. As a result, cybercriminals have learned to exploit technical markers such as browser identification, geo-locations and operating system to enable granular targeting. However, these are not the only markers phishers have been…
Security researchers recently discovered a new server “hosting a large stockpile of malicious files”. The analysis shows that malicious actors are targeting a number of organizations with the help of a command-and-control server. This server is hosting samples of ransomware…
“Cybersecurity is the Biggest Threat to the World Economy, CEOs Say” So reads the July 9 headline of a major news publication on its website just two short months ago. Concerns about internet and network security have been around for…
GandCrab (or just Crab) ransomware definitely changed the rules of the ransomware game. The operators behind the infamous cryptovirus created a very profiting business model which others quickly adopted. For example, let’s have a look at the so-called Sodinokibi ransomware.…
Several camgirl websites, operated by Barcelona-based VST Media have been exposed. The exposure of data affects both sex workers and users. The reason for the exposure is an unprotected back-end database. Affected users are mostly based in Span and Europe,…
CVE-2019-13720 is a new vulnerability in Chrome. Google is warning users that this use-after-free vulnerability in the browser’s audio component is currently being exploited in the wild. CVE-2019-13720: some details CVE-2019-13720 was discovered by Kaspersky security researchers Anton Ivanov and…
According to a new Armor report, at least 13 managed service providers (MSPs) have been attacked by ransomware. Due to the nature of an MSP company, attacks on their infrastructure usually have many negative outcomes. A managed service provider manages…
The Italian branch of UniCredit just revealed information about a data breach involving the personal records of 3 million clients. This is the third security incident affecting Italy’s top bank in recent years, Reuters reported. UniCredit Data Breach Affects Millions…
California — keeping with its tradition as a groundbreaker in privacy-related legislation in the US — has passed the strictest data privacy law in the nation, the California Consumer Privacy Act (CCPA), which will be enforceable January 1, 2020, onward.…
CVE-2019-17093 is a vulnerability discovered in all editions of Avast and AVG Antivirus programs. The issue could allow an attacker to load malicious DLL files to bypass protection and achieve persistence on compromised systems. It should be noted that exploiting…
17 infected apps were discovered in the Apple App Store. The apps contained a Trojan clicker type of malware, which communicated with a known command-and-control server to simulate user interactions. Clicker malware is usually deployed for ad fraud, and so…
Security researchers uncovered a dangerous new hacking mechanisms which allows criminals to launch devastating attacks against content delivery networks. The new attack type is known as CPDoS which stands for “Cache-Poisoned Denial-of-Service “, this is categorized is a type of…
A bunch of critical security vulnerabilities affect Mozilla Firefox browser. Another high-severity flaw was also discovered in Google Chrome. It appears that all bugs could lead to arbitrary code execution. According to an advisory by MS-ISAC (Multi-State Information Sharing and…
When we think of cybercrimes against businesses, it can be easy only to consider the immediate effect: the data that is stolen by hackers during the breach. However, there is actually far more to think about. Here we take a…
A recently published report reveals that hacking groups are using a virus designed for ATM machines called Cutlet Maker, the attacks of this type are also known as “jackpotting”. This is due to the fact that when the virus is…
The Skip-2.0 malware is a dangerous threat which is being launched by a hacking group known as Winnti. These hackers are referred to as a mega-collective as several smaller hacking groups use this name to identify themselves. The criminals are…
The Agent Tesla malware is among the most popular tools used by hackers in order to launch global phishing campaigns. The analysis shows that the CVE-2017-11882 vulnerability is being used in combination with malware documents in order to lead to…
A new serious Wi-Fi vulnerability has been reported by security researchers, this time in Linux. The vulnerability which resides in the rtlwifi driver that mainly supports the Realtek Wi-Fi chips model used in Linux devices, could allow attackers compromise a…
