Another day, another vulnerability that needs to be patched as soon as possible. Oracle has informed of a security flaw that affects Oracle Database versions 11.2.0.4 and 12.2.0.1 running on Windows. Technical Details about CVE-2018-3110 The vulnerability, which is given…
An alarming discovery was recently made during the Black Hat conference held in Las Vegas. Security researchers from Positive Technologies reported that vulnerabilities in mPOS (mobile Point-of-Sale) machines allow attackers to take over customer accounts and steal credit card data.…
Social Mapper is a new open source intelligence tool that uses facial recognition to correlate social media profiles. The tool has been developed by Trustwave, a company that provides ethical hacking services. Apparently, the tool has already been tested in…
Are you one of those infosec professionals looking for a change? Well, this article is for you to explore a new and flourishing career in cybersecurity. This is the best time to challenge your IT skills and specialize in the…
A warning has been issued by the Internet Systems Consortium (ISC) about a severe vulnerability that could be leveraged in DoS attacks in the open-source BIND software. The vulnerability was discovered by security researcher Tony Finch of the University of…
A noteworthy WhatsApp vulnerability allows malicious users to infiltrate group chats and manipulate the messages of individual users. The hackers can take advantage of the malware method and abuse it to intercept and change contents of messages sent in private…
Bitcoin owners that use Bitcoin ATMs should be extra careful. Security researchers have uncovered malware that is specifically crafted to target these ATMs. This malware is being traded on the Dark Web, and its price is quite high. The shift…
The Ramnit malware (also known as Virus.Ramnit.J) as one of the most dangerous banking Trojans is known for causing numerous infections worldwide. The newly discovered Black botnet has been found to be made by the same collective. Our article gives…
Part of the source code of Snapchat was leaked and made public on GitHub. Apparently, an iOS update in May exposed a small amount of the app’s source code. However, Snapchat was able to identify the mistake and rectify it…
Us payment processors report that they are being targeted by hackers using BGP hijacking attacks. This is a complex method used by experienced groups as it requires both resources and knowledge to execute one directly. BGP Hijacking Attacks Used Against…
A computer virus outbreak on the evening of August 3 compromised Taiwan Semiconductor Manufacturing Co (TSMC), the world’s largest dedicated independent semiconductor foundry. The outbreak affected a number of computer systems and fab tools in Taiwan. The virus that hit…
The UBoat botnet is a proof-of-concept botnet that has been designed primarily for penetration testing and educational purposes. The author behind it has specifically stated that the main purpose behind it is to help security engineers understand how botnets can…
A vulnerability has been identified in the Linux Kernel (version 4.9+) which is tracked in the CVE-2018-5390 advisory. It lists several conditions that allow criminals to modify packets leading to the coordination of DoS (Denial of service) attacks. CVE-2018-5390 Advisory…
A couple of new critical security flaws were found in HP printers. CVE-2018-5924, CVE-2018-5925 in HP Printers One of the vulnerabilities resides in the firmware of certain HP printers, and it has been classified as very critical. This vulnerability is…
Computer security experts note that tech support scams are being updated to use call optimization services. Such platforms and tools are commonly used in legitimate call centers and service desks. This shows that the tech support scams continue to be…
Security experts alerted of a dangerous new infection methodology known as the Twittersploit Attack. In the center of it all is the use of several malware instances that use the Twitter social network service as a C&C (command and control)…
A new attack on Wi-Fi protected access protocols has been discovered. The new technique to crack WPA PSK (Pre-Shared Key) passwords enables outside users to capture access credentials easily. The discovery of the attack was accidental – the Hashcat developers…
A new vulnerability has been discovered, CVE-2018-14773, that affects Drupal, the popular open-source content management system. More specifically, the vulnerability resides in a component of a third-party library called Symfony Http Foundation component. The component is part of Drupal Core,…
Cisco just announced a big acquisition, in the size of $2.35 billion in cash. The company is acquiring cloud-based identity and access management solutions provider Duo Security. “Cisco (NASDAQ: CSCO) today announced its intent to acquire privately-held Duo Security, headquartered…
Last year, security researchers uncovered that the popular PC cleaner CCleaner was backdoored. Older versions of Piriform CCleaner -v5.33.6162 and CCleaner Cloud v1.07.3191- had been compromised, and as a result millions of users were affected. New Changes in CCleaner Version…
