The macOS operating system has been found to possess a critical security flaw, the malware technique is known as “synthetic clicks”. In essence this allows for various apps and scripts to bypass the security prompts and access sensitive data. Synthetic…
Security researcher Dhiraj Mishra just discovered a security vulnerability, CVE-2019-12477, in the SUPRA smart TV brand. Apparently, Supra Smart Cloud TV allows remote file inclusion in the openLiveURL function, which could enable a local attacker to broadcast fake video without…
Security researchers report that there is a currently a new attack campaign of malicious plugins that are being uploaded to the official repository of the Mozilla Firefox browser. They pose as legitimate and popular services and take both on their…
A team of security experts have uncovered the HiddenWasp Linux malware which is actively being spread against victims on a global scale. The available information about it suggests that the criminals may be a Chinese criminal collective and the main…
Cybercrime has been a serious matter of concern for businesses across the world. The USA is not new to it. But when cybersecurity is taken into consideration, the companies in the USA never leave a stone unturned in providing cutting-edge…
A new report carried out by Guardicore Labs has outlined the details of a prevailing cryptojacking (cryptomining) operation targeting Windows MS-SQL and PHPMyAdmin servers on a global scale. Related: New Scranos Rookit Can Damage Your System in Multiple Ways Nansh0u…
A Google Zero researcher has announced the discovery of a vulnerability in Notepad, the text editor that come standard with Microsoft Windows. The detected problem is described as a code execution flaw allowing for dangerous code to be started. Code…
A single database has exposed the records of tens of millions of users of dating apps. The database which was discovered by security researcher Jeremiah Fowler is not password-protected. Most of the affected users are Americans, as revealed by the…
CVE-2019-12329 is an address bar spoofing vulnerability in the DuckDuckGo browser for Android version 5.26.0. The browser has more than 5 million installations, and its users are exposed to URL spoofing attacks. The vulnerability was discovered by security researcher Dhiraj…
The popular Flipboard online service has been hacked by an unknown criminal collective. According to the published information by the company unknown hackers have been able to hijack a database containing the credentials of the registered users. Hackers Hijacked Flipboard’s…
The Winnti Trojan Horse has been found to have a new iteration as users shave fallen victim to a new Linux version of the malware. What’s dangerous about this release is the fact that it was used in a hack…
Did you hear about the most dangerous laptop in the world, infected with some of the most devastating viruses? The laptop, a 2008 Samsung 10.2-inch NC10-14GB netbook, has been sold in an auction for $1.35 million by an unknown individual.…
Complex malware are continuously being developed by hacking groups worldwide, the best of which go through numerous incarnations. The infamous XLoader Android and iOS spyware has been found to infect users in a new attack campaign spreading a new version.…
Canva, the Australia-based graphic-design online application, has been hit by an enormous data breach. Apparently, the usernames and email addresses of 139 million users of Canva have been exposed. Passwords were also obtained but they remain intact as they are…
An unpatched vulnerability in macOS 10.14.5 also known as Mojave was recently discovered. The flaw could allow an attacker to execute arbitrary code without the need of user interaction, thus bypassing Gatekeeper. This discovery comes from researcher Filippo Cavallarin from…
Criminals have devised a new malware tactic which is known as the SensorID attack and it is capable of overcoming the security of Android and iOS devices. It is designed to track users by abusing the sensors of these devices.…
Another proof-of-concept about a zero-day exploit affecting Windows 10 has been released. The PoC code is published on GitHub and comes from an anonymous researcher or possible hacker known as SandboxEscaper, and that’s the fifth time the hacker releases a…
Another large-scale data incident has been reported, this time affecting Instagram users. More specifically, information belonging to millions Instagram influencers, celebrities and brand accounts has been exposed online. The database was hosted by Amazon Web Services, TechCrunch reported, and it…
Adware generally doesn’t fall into the same category as malicious software. However, a recent research conducted by researchers at Concordia University in Montreal, Canada, reveals that adware is in fact very similar to malicious code and its techniques. To prove…
A total of 12,564 unsecured MongoDB databases have been deleted in the course of three weeks. A message is left after the deletion prompting databases’ owners to get in touch with the hackers to have the data restored. Thousands of…
