A new security research “demonstrates the powerful capabilities that modern browser APIs provide to attackers by presenting MarioNet: a framework that allows a remote malicious entity to control a visitor’s browser and abuse its resources for unwanted computation or harmful…
Almost half of the Smart Homes of Today’s world have at least one weak device due to an outdated and unpatched software. Researchers and experts at Avast have established that around 40.8% of the smart homes at the moment are…
A new set of security vulnerabilities affecting all major operating systems (Windows, macOS, Linux, and FreeBSD) has been discovered. The vulnerabilities, known as Thunderclap, could allow attackers to bypass protection mechanisms meant to guard against DMA (Direct Memory Access) attacks.…
A new study carried out by Bromium and Dr. Mike McGuire says that cybercrime through social media (Facebook, Twitter, LinkedIn, Instagram) is generating at least $3.25 billion in global revenue annually. The report is based on three key factors: “how…
Eight security issues were discovered (and patched) in the NVIDIA GPU Display Driver software, with one of the vulnerabilities affecting both Linux and Windows systems. The vulnerabilities could lead to code execution, escalation of privileges, denial of service attacks, and…
There’s hardly a day without a new vulnerability. CVE-2019-9019 is a security flaw in the British Airways Entertainment System which affects Boeing 777-36N (ER) and perhaps other aircraft, too. The vulnerability’s type is privilege escalation that is located in the…
Protect your company, now. Nobody is safe from it. Anybody and any business can be hacked. It doesn’t matter if it’s big or small, as technology continues to advance, hackers become savvier. They expose vulnerabilities of the systems we already…
CVE-2019-7089 is a critical zero-day vulnerability in Adobe Reader which was patched this month alongside other 42 critical flaws. The vulnerability is a sensitive data leak issue which can lead to information disclosure in case of successful exploit. It turns…
The popular content management system WordPress has been found to contain a dangerous weakness allowing remote attackers to easily execute remote code. The public announcement of the bug shows that the vulnerability has existed in the past 6 years and…
A new highly critical vulnerability, identified as CVE-2019-6340, was just discovered in Drupal, and luckily it’s already fixed in the latest version of the content management system. If you are running Drupal 7, no core update is required, but you…
Cybercriminals are constantly looking for ways to monetize their malicious campaigns as quickly as possible. Targeting retail websites has proven quite profitable, and it’s no surprise that this type of attack, shortly known as formjacking, has been prevalent in 2018.…
A security team has announced the discovery of a critical vulnerability found in WinRAR, one of the most popular archive and compression tools used by computer users. The issue is estimated to have been a part of the software for…
Global online and offline surveillance seems to have become a permanent part of life. And ironically, we can’t seem to raise voice against it or take any other countermeasure accordingly. Or, can we? Before we proceed to the counter-tactics to…
A recent report carried out by Nightwatch Cybersecurity indicates that a third-party Android app with Facebook API access was copying user data into storage outside of Facebook. Moreover, the data was stored insecurely in two locations. Android App with Facebook…
Rietspoof is a new type of malware that is currently being distributed in the wild via Facebook Messenger and Skype. The malware was discovered by Avast, and is being described as a multi-stage threat that combines file formats to create…
There are multiple complaints from users of torrent sites that their downloaded files contained the GandCrab ransomware and other malware, TorrentFreak recently reported. More specifically, files shared by CracksNow, a popular uploader of software cracks and keygens, have been infected.…
Would you believe it if we told you that clicking on a single malicious link could hack your Facebook account? The scenario is entirely possible due to a recently uncovered critical cross-site request forgery (CSRF) vulnerability. The Facebook CSRF flaw…
Hackers have used a two-year-old vulnerability in a software package used by remote IT support firms to gain a foothold on vulnerable networks and deploy the GandCrab ransomware on those companies’ customer workstations. The infamous GandCrab ransomware has been distributed…
Imagine a busy night at the emergency room. Several vehicles involved have been involved in an accident, and one little girl has been brought in by ambulance after suffering a loss of blood. Naturally, blood transfusions are a common occurrence…
Another piece of Mac malware has been discovered. More specifically, security researchers came across a new variant of the so-called Shlayer malware, which has been targeting macOS users. Shlayer is a multi-stage malware, and in its latest version it has…
