Security researchers just discovered a code-signing bypass vulnerability that allows malicious code to masquerade as an official Apply system file. In other words, some of the implementations of Apple’s official code-signing API can be exploited by hackers. Apple has made…
Microsoft has released the latest Windows patch bulletin in the KB4284835 update. This updates Windows 10 from build 1803 to OS build 17134.112. This fixes a total of 50 security patches and brings other improvements to the software. KB4284835 Updates…
According to a statement made by the company, European electronics giant Dixons Carphone has suffered a serious data breach, or what it appears to be, two separate data breaches. Dixons Carphone Official Statement on the Data Breach As part of…
News have broken out regarding another fine in the size of £250,000 for Yahoo because of a delayed data leak disclosure which happened back in 2014. The breach has resulted in the successful theft of a total of 515,121 users,…
Apple has started restricting the inclusion of cryptocurrency miners from its App Store. The company is doing this in the hope of protecting computer users from malicious instances. The majority of miner code available on these software repositories may be…
According to many experts in the cybersecurity field and to statistics as well, Bitcoin is no longer be the most preferable cryptocurrency used by cybercriminals in their operations. Bitcoin’s high profile and lack of complete anonymity has made cybercriminals turn…
Forthcoming versions of the Google Chrome browser will block the installation of extensions outside of the Chrome Web Store. This was announced by the company in an official blog post yesterday. The step is being made in order to protect…
Three vulnerabilities have been found in Foscam security cameras. Owners of such cameras are urged to update as soon as possible. The flaws are described as an arbitrary file-deletion bug, a shell command-injection bug and a stack-based buffer oferflow vulnerability.…
Security researcher Brian Krebs has revealed some interesting details in terms of some of the riskiest domains on the Internet. Apparently, websites ending with some of the latest TLDs (top-level domains) such as .men, .work and .click are considered highly…
A fine in the size of 250,000 euro has been imposed on Optical Center, a French company specialized in selling eye and hearing aids. Apparently, the company has failed to secure the data of its customers on its website, and…
Are you still resisting Windows 10 and running Windows 7 or Windows 8? If that is your case, you should note that, starting July without providing a specific date, Microsoft is planning to no longer participate in the technical support…
A previously unknown piece of complex malware with spying capabilities was recently discovered by researchers at cybersecurity firm ESET. The spyware is dubbed InvisiMole and is regarded as an advanced cyber espionage tool most likely designed for attacks on nation-state…
Yet another bug has been just found in Facebook automatically suggesting posting publicly when users were creating their posts. Related Story: Facebook Scraped SMS and Calls Data on Android Devices Facebook Bug Affects 14 Million Users, Problem Now Fixed According…
RSA has released its Fraud Attack Trends report for Q1 of 2018. The report reveals that newsjacking has become fraudsters’ favorite way of empowering phishing attacks, among other things. A recent news that fraudsters leveraged to incite a major phishing…
Online ticketing service Ticketfly has been targeted by a malicious actor and as a result, users’ personal information was stolen. In addition to that, Ticketfly’s website was defaced, and a message was dropped on the compromised homepage which said “Your…
There have been multiple cases of hackers leveraging Facebook Messenger and WhatsApp, and now Telegram is becoming a preferred target for hackers as evident by the increasing number of abuse cases on the service. Taking advantage of tools and services…
There are data breaches and then there are data breaches. Depending on the personal or sensitive information that is being leaked, data breaches can be true privacy nightmares. Related Story: Microsoft Builds a DNA Computer, Says Cancer Is a Computational…
Security researchers have been following the activity surrounding the infamous Rig exploit kit. In these campaigns, attackers are compromising websites to inject a malicious script that redirects potential victims to the EK’s landing page. This attack scenario slightly changed in…
A new report titled “Federal Cybersecurity Risk Determination Report and Action Plan” has shed some light on the cybersecurity inadequacy of U.S. federal agencies. Please note that: The Office of Management and Budget (OMB) is publishing this Federal Cybersecurity Risk…
A flaw has been discovered in Windows’s JScript component. The vulnerability can lead to execution of malicious code on a vulnerable system, researchers warn. More about the JScript Component Vulnerability The JScript flaw was discovered by security researcher Dmitri Kaslov…
