Oracle WebLogic Flaw Exploit Against Honeypots
Oracle fixed a vulnerability as attackers started targeting servers running on Oracle WebLogic instances, vulnerable to a critical flaw that allows attackers to take control of the system without authentication. [...]
21 Bogus Gaming Apps Found In Google Playstore
A team at Avast has uncovered another set of malicious apps in the Google Play Store. Adware? Adware, or advertising-supported software, is software that displays unwanted advertising on your computer device. [...]
Tik Tok With HackerOne Announced Public Bug Bounty Program
This week, the popular Chinese video-sharing social networking service TikTok has launched a public bug bounty program through the HackerOne platform. Bug Bounty Program: A bug bounty program is a deal offered [...]
Urgent Chrome Update To New Version
Google's web browser has a "zero-day" vulnerability actively exploited. The Mountain View firm has just released a new update for Chrome. It does not provide new functionality, but important security [...]
Trump’s Twitter Hack in 5 Attempts – Dutch Security Researcher
Donald Trump Twitter account was hacked by a Dutch security researcher, claims he has gained access to US President Donald Trump's Twitter account just days before the 2020 US election. A [...]
Popular Mobile Browsers Found With Multiple Address Bar Spoofing Vulnerabilities
Cyber Security researchers disclosed vulnerability details of multiple popular browsers about an Address Bar Spoofing vulnerability affecting mobile browsers leaving the door open for spear-phishing attacks and delivering malware. Address [...]
Hackers want to “make the world a better place” By Donating Charities In Cryptocurrency
Security experts were amazed for the first time, as a Hacking group is donating the stolen money to charities. According to a BBC report published Monday, members of the hacking [...]
Alert! Emotet Malware’s New “Windows Update” Attachment
Emotet is a Trojan that is primarily spread through spam emails (malspam). The infection may arrive either via a malicious script, macro-enabled document files, or malicious link. Emotet emails may contain messages like a familiar [...]
Homeland Security Update – New Windows 10 Remote Hacking Threat
The Department of Homeland Security, Cybersecurity Agency, urges Windows 10 users to apply for security updates. On September 18, The U.S. Department of Homeland Security, Cybersecurity and Infrastructure Security Agency (CISA) [...]
Over 574K People Data from narendramodi.in was Found in Dark Web
A cyber security firm alleges that user and donor data of over five lakh people have been stolen from narendramodi.in, the personal website of Prime Minister Modi, and the details [...]
Zero-Click Vulnerability in Linux Bluetooth Stack
Google researchers warned on a new set of potential security vulnerabilities(allow escalation of privilege or information disclosure) in BlueZ may allow escalation of privilege or information disclosure. BlueZ is releasing [...]
London Council Faced a Serious Cyber Attack
A serious Cyber Attack hit on the London Council which is affecting many of its services and IT systems. The council said it is working closely with the National Cyber [...]
Microsoft Released Security Patch for 87 newly discovered Vulnerabilities
Microsoft released patches for 87 newly discovered vulnerabilities on its October 2020 Patch Tuesday. Of the 87 vulnerabilities fixed today, 12 are classified as Critical, and 74 are classified as Important, and one as [...]
Alert! Microsoft Warns of New Android Ransomware
Android users were alerted by Microsoft, as they found a new ransomware MalLocker.B, the ransomware triggers on an infected phone as soon as the victim presses the Home key. MalLocker has [...]
Vulnerabilities Found in Top AntiVirus Software
Cyber Security researchers disclosed details of vulnerabilities found in popular Anti-Virus solutions that could enable attackers to elevate their privileges, thereby helping malware sustain its foothold on the compromised systems. [...]
Ransomware Delete Volume Shadow Copies – Install the Vaccine To Monitor
What is Shadow Volume Copies? Shadow Copy is a technology included in Microsoft Windows that can create backup copies or snapshots of computer files or volumes, even when they are [...]
US Hospital Hit By SunCrypt Ransomware – HIPAA Data Leaked
University Hospital New Jersey in Newark, New Jersey - Paid a ransom of $670,000 demanded by the attacker to prevent from publishing the stolen data of about 240GB, including patient [...]
Alert! New Android Spyware can SPY Telegram and Threema Apps
Two-tailed Scorpion, a hacking group known for its cyberattacks in the Middle East had recently been found to pose itself as legitimate messaging applications such as Telegram and Threema to [...]
Disrupt on US Presidential Debate – Twitter removed 130 Iranian Accounts
Twitter removed some accounts based on the tip provided by the FBI. As there was an attempt to disrupt the public conversation during last night's first Presidential Debate for the [...]
Microsoft Resolved An outage of Office 365
Microsoft says a recent update has affected the processing of authentication requests, making cloud-based services inaccessible. Microsoft said people who were logged into an existing 365 session were still able to keep [...]
Joker – Play Store removes 17 Android Apps
Tech giants from Zscaler ThreatLabZ research team identified 17 apps and alerted Google as those Apps were infected with joker malware app and were reportedly stealing details like SMS, contact details [...]
Over 2000 Magento Online Stores were Hacked
Over 2,000 Magento stores were compromised over the weekend. The private information of thousands of customers has been hacked in the largest automated campaign to date. Dubbed “CardBleed”, it was [...]
“Zerologon” Exploit for Netlogon Remote Protocol
Vulnerability - CVE-2020-1472 Description: An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC), [...]
Porn Sites redirecting to Exploit Kits – Malsmoke Group
A cybercrime group named Malsmoke has been targeting porn sites with malicious ads redirecting users to exploit kits. Over the past few months, a hacker group dubbed Malsmoke has been [...]
O365 Phishing Attack – Performs Real-Time Active Directory (AD) Authentication
Attackers got an eye on the Victims O365 credentials in real-time as they enter their credentials into the phishing page, by using Authentication API's. Authentication API: The processes of certifying [...]
Attackers targeted Data Center giant Equinix
Data center giant Equinix has been hit by a ransomware attack. Equinix, one of the world's largest providers of on-demand colocation data centers. Equinix has released a short statement published [...]
BLURtooth Vulnerability
BLURtooth, is referred to the vulnerability for the devices supporting Bluetooth BR/EDR(Bluetooth Basic Rate/ Enhanced Data Rate) and LE(Bluetooth in Low Energy) using Cross-Transport Key Derivation (CTKD) for pairing to [...]
Microsoft Patch Tuesday
Patch Tuesday:- The second Tuesday of each month is the one most commonly referred to as Patch Tuesday. That's when Microsoft releases security-related updates for Windows (desktop and server editions), Office, and related products. The [...]
Ransomware frozen Argentina’s Borders
Argentina's official immigration agency, Dirección Nacional de Migraciones, suffered a Netwalker ransomware attack that temporarily halted for 4 hours of the border crossing into and out of the country. Netwalker [...]
ProLock Ransomware
What is ProLock? Discovered by PeterM, ProLock is a rebranded version of PwndLocker ransomware. This ransomware encrypts files with the RSA-2048 algorithm, modifies filenames, and creates a ransom message. ProLock [...]
Another Twitter Account Hack – This time its India’s Prime Minister
On July, there was massive Twitter security breach of 130 high-profiles like US presidential hopeful Joe Biden, Tesla founder Elon Musk and Microsoft founder Bill Gates. This Time, India's Modi [...]
Norway’s Parliament Hit by Email Attack
Norway parliament's non-elected chief administrator - Marianne Andreassen said that "This has been a significant attack" The Norwegian parliament suffered a cyber attack during the past week and the e-mail [...]
VMware RabbitMQ – Security Update
VMware RabbitMQ Arbitrary Code Execution Vulnerability Short Summary:A code execution vulnerability was found in VMware RabbitMQ. The vulnerability is caused due to a Windows-specific binary planting security flaw. This vulnerability [...]
Magecart Credit-Card Skimmer
Magecart Group:- Magecart is a consortium of malicious hacker groups who target online shopping cart systems, usually the Magento system, to steal customer payment card information. This is known as [...]
Cisco IOS XR Software – Security Vulnerability
Short Summary Multiple vulnerabilities were found in the Distance Vector Multicast Routing Protocol (DVMRP) feature of Cisco IOS XR Software. The vulnerabilities are caused due to insufficient queue management for [...]
Red Hat CloudForms – 2020:3574 – Security Advisory
Type/Severity Security Advisory: Critical Topic An update is now available for CloudForms Management Engine 5.10. Description A high severity vulnerability was found in all active versions of Red Hat CloudForms [...]
The new Red Dawn Template – Emotet
Emotet Trojan:- Emotet is a Trojan that is primarily spread through spam emails (malspam). The infection may arrive either via malicious script, macro-enabled document files, or malicious link. Emotet emails may contain familiar branding designed [...]
Power of Honesty Saved Tesla
Have you invested millions of dollars on your security devices? Better spend half for your employer's. The following realistic honesty will let you know why... All tesla rockets are not [...]
The Return of Qbot Trojan
What is a Malware? Malware is any software intentionally designed to cause damage to a computer, server, client, or computer network. A wide variety of malware types exist, including computer [...]
Fedora Security Patch Update
Name : chromium Product : Fedora 31 Version : 84.0.4147.89 Release : 1.fc31 URL : http://www.chromium.org/Home Summary : A WebKit (Blink) powered web browser Description : Chromium is an open-source [...]
Security Update – IBM Security Guardium
IBM Security Guardium Insights is affected by an Open Redirect vulnerability Summary IBM Security Guardium Insights has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2020-4598 DESCRIPTION: IBM Security Guardium Insights [...]
Security Update – IBM Elastic Storager Server
A vulnerability has been identified in IBM Elastic Storager Server where an attacker can cause a denial of service (CVE-2020-4383) Summary A security vulnerability has been identified in all levels of [...]
Lazarus LinkedIn Job Offer- IOC’s Available To Protect
Lazarus Group who are known as APT38 enact themselves as a Job recruitment division for the US Defence Center. Now they are using LinkedIn and targeting the recipients profile by [...]
Get Social