A critical security bug has been discovered in LinkedIn, more specifically in a social button. The exploit of the bug could have led to harvesting of LinkedIn users’ information, including information that wasn’t public. The discovery was made by Jack…
Another critical vulnerability identified as CVE-2018-0112 has been fixed Cisco WebEx videoconferencing software solution. Customers download and use the WebEx client application to attend meetings on Cisco WebEx Centers The bug could be leveraged by attackers to intercept conference call…
Security researchers discovered a new threat known as Dardesh that poses as a legitimate app and is currently available on the Google Play Store. The malware instance is described as a chat app and has managed to fool many users…
The first quarter of 2018 has already passed, and security researchers were able to draw some important conclusions. It appears that during the first three months of this year, ransomware was finally dethroned. The new most prevalent cybersecurity threat is…
strong>Roskomnadzor, Russia’s telecommunications watchdog, banned today over 1.8 million IP addresses belonging to Amazon and Google’s cloud infrastructure. Roskomnadzor Bans More Than 1.8 Million IP Addresses Belonging to Amazon and Google It has been reported that Roskomnadzor, Russian Federal Service…
Intel has just announced several new initiatives that use features specific to the Intel hardware platform to improve security, Arstechnica reported. The first one of these initiatives is Intel Threat Detection Technology (TDT) which is designed to use specific features…
Researchers have discovered a vulnerability residing in the JavaScript SecureRandom() function used for generating random Bitcoin addresses and their corresponding private keys. The flaw makes old Bitcoin addresses generated in the browser or via JS-based wallet application vulnerable to brute-force…
The largest traffic distribution system (TDS) known as EITest was just taken down by security researchers from Abuse.ch, BrilliantIT, and Proofpoint. The expert group sinkholed the command and control infrastructure behind the network of hacked servers that had been used…
Researchers Karsten Nohl and Jakob Lell from security firm Security Research Labs have uncovered a hidden patch gap in Android devices. The two conducted a two-year analysis of 1,200 Android phones, and just presented their results during the Hack in…
Malicious code is capable of evolving, and so has proved a team of researchers from Ben-Gurion University of the Negev in Israel that successfully created and tested malware able to exfiltrate data from air-gapped machines through power lines. Тhe newly…
A new malware campaign has been discovered leveraging an increasing number of legitimate but compromised websites. The malicious operation has been built on social engineering tricks where users are prompted with fake but authentic update notifications, researchers reported. Fake Update…
Facebook just announced launching a Data Abuse Bounty program where people will be rewarded for reporting misuse of data by application developers. Facebook’s Data Abuse Bounty – the Details The Data Abuse Bounty is inspired by the already existing bug…
Computer security researchers uncovered a new malware tactic that uses a HTTP injector attack capable of harvesting mobile data connections. The criminals are actively using this strategy to gain free Internet access. HTTP Injector Attack Method Revealed Related Story: TeleRAT…
April 2018 Patch Tuesday has been rolled out. It contains 66 security fixes for vulnerabilities. One of the more intriguing patches involves an older Microsoft Outlook flaw that was first reported in 2016. However, according to Will Dormann, the vulnerability…
Computer hackers have uncovered a way to abuse the emergency alert services in an attack called SirenJack. This was made possible due to a newly discovered vulnerability in one of the vendors. An Ongoing SirenJack Attack Can Cause Widespread Panic…
CubeYou is yet another data analytics firm currently involved in a Facebook scandal, the CNBC reported. Apparently, the social media platform is suspending CubeYou due to unlawful collection of user information through quizzes. Related Story: 50 Million Facebook Profiles Exploited…
Due to the number of highly critical vulnerabilities in some of its products, Cisco has been the center of attention in the cybercrime world. The latest news regarding the company involves a new hacking group, JHT, which successfully hijacked a…
A new critical vulnerability has been found in Cisco IOS Software and Cisco IOS XE Software that could lead to remote code execution and a denial-of-service condition. An unauthenticated, remote attacker could execute arbitrary code to take full control over…
CVE-2018-0986 is the identifier of a brand new critical Windows vulnerability which resides in Microsoft Malware Protection Engine and affects Windows Defender. The flaw could trigger remote code execution when the engine doesn’t properly scan a specially crafted file leading…
A new piece of Android malware has been discovered. Dubbed KevDroid, the malware is being distributed in the form of a fake anti-virus application called Naver Defender. KevDroid is in fact a remote administration tool that steals sensitive data from…
