Home 2017-08-28T17:57:09+05:30

Security Update — BIG-IP APM AD Authentication Vulnerability

Security Advisory Description BIG-IP APM AD (Active Directory) authentication can be bypassed using a spoofed AS-REP (Kerberos Authentication Service Response) response sent over a hijacked KDC (Kerberos Key Distribution Center) [...]

By | April 29th, 2021|Security Update, Targeted Attacks|0 Comments

Security Vulnerability Update — Siemens Mendix Applications

Siemens released security update for Siemens Mendix Applications — prone to an elevation of privilege vulnerability.prone to an elevation of privilege vulnerability. Privilege Escalation — CVE-2021-27394 Security researchers discovered elevation [...]

By | April 25th, 2021|Security Update|0 Comments

Security Vulnerability Update — Adobe RoboHelp Privilege Elevation

Adobe released vulnerability update for RoboHelp — prone to an elevation of privilege vulnerability. Elevation of Privilege Adobe RoboHelp is a Help Authoring Tool (HAT) that allows you to create help systems, [...]

By | April 25th, 2021|Security Update|0 Comments

Passwordstate Password Manager Installs Backdoor — Supply Chain Attack

Passwordstate app's update hijacked to install malware in a supply-chain attack after breaching its networks. Supply Chain Attack — Passwordstate Passwordstate password management app notified users on a supply chain attack [...]

By | April 24th, 2021|Data Breach, Mobile Security, Targeted Attacks|0 Comments

ToxicEye Remote Access Trojan Exploits Telegram For C&C

To steal data from victims and update itself to perform additional malicious activities — Telegram exploited by Remote Access Trojan ToxicEye Trojan Exploits Telegram Operators of a new Remote Access [...]

By | April 23rd, 2021|Ransomware, Targeted Attacks|0 Comments

Zero-Day Security Vulnerability — Pulse Connect Secure VPN

Attackers are exploiting zero-day in Pulse Secure VPNs to breach organisations — (CVE-2021-22893) 0-Day Vulnerability Security mitigations released for zero-day vulnerability to assist with determining if systems have been impacted. [...]

By | April 21st, 2021|Security Update, Zero Day Attack|1 Comment

Critical Remote Code Execution Vulnerability — Juniper OS

During external security research a CRITICAL remote code execution vulnerability discovered in overlayd service. CVE-2021-0254 — JUNOS Description A buffer size validation vulnerability in the overlayd service of Juniper Networks [...]

By | April 17th, 2021|Security Update, Software Issues|0 Comments

Apache Critical Security Vulnerability — CVE-2021-27850

Apache released security updates for bypass of older vulnerability — Arbitrary Code Execution Apache Tapestry — Arbitrary Code Execution Vulnerability A critical unauthenticated remote code execution vulnerability was found all [...]

By | April 16th, 2021|Security Update, Software Issues|0 Comments

Critical Security Vulnerability Update — Adobe Photoshop

Adobe has released updates for Windows and macOS for CRITICAL severity vulnerabilities in Photoshop. Photoshop Vulnerability Multiple vulnerabilities were found in Adobe Photoshop. Security updates were released for the below [...]

By | April 16th, 2021|Security Update|0 Comments

Pierre Fabre Group Hit By REvil Cyber Attack — $25 million Ransom

Leading pharmaceutical group Pierre Fabre confirmed a REvil ransomware attack — demanded a $25 million ransom. REvil Ransomware, also known as Sodinokibi, is another strain of ransomware that infects a system [...]

By | April 10th, 2021|Ransomware, Targeted Attacks|0 Comments

Gigaset Mobile Users Targeted Via Hacked Update Server

Android Device Malware Attack Malware infection detected in Gigaset Android devices as external update server got compromised. Gigaset is a German manufacturer of telecommunications devices, including a series of smartphones [...]

By | April 10th, 2021|Mobile Security, Targeted Attacks|0 Comments

Multiple Security Vulnerabilities Affecting Cisco Products

Cisco has released security updates regarding multiple vulnerabilities — considered as CRITICAL severity. Vulnerability Advisory Cisco Small Business Routers — CVE-2021-1459 Description: A vulnerability in the web-based management interface of [...]

By | April 8th, 2021|Security Update|0 Comments

SAP Applications Are Critical Against Old Vulnerabilities

Threat actors targeting widely deployed, mission-critical SAP applications — exposing the networks of commercial and government organizations to attacks. High Severity Attack Critical vulnerabilities in unpatched SAP applications are being [...]

By | April 7th, 2021|Security Update, Targeted Attacks|0 Comments

Critical Vulnerability Update — VMware Carbon Black Cloud Workload Appliance

Security update is available to remediate the critical vulnerability addressing VMware Carbon Black Cloud Workload appliance. CVE-2021-21982 — Bypass Authentication Description A URL on the administrative interface of the VMware [...]

By | April 7th, 2021|Security Update, Software Issues|0 Comments

LinkedIn Phishing Job Offers Targeting Professionals

Fake job offer — phishing campaigns delivering backdoor, targeting job professionals in LinkedIn. LinkedIn Spear-Phishing eSentire’s research team, the Threat Response Unit (TRU), discovered that hackers are spear-phishing victims with [...]

By | April 6th, 2021|Targeted Attacks|0 Comments

Privilege Escalation Vulnerability In Umbraco

Researcher identified in Umbraco CMS — privilege escalation vulnerability allowing attackers to access resources which are normally accessible only by higher-privileged users. Umbraco CMS — CVE-2020-29454 Description: Editors/LogViewerController.cs in Umbraco [...]

By | April 3rd, 2021|Security Update, Targeted Attacks|0 Comments

Attackers Targeting Fortinet FortiOS Servers Using Multiple Exploits

The FBI and CISA warn — APT actors are scanning Fortinet FortiOS for vulnerabilities — to gain access for multiple high-level service networks. FortiOS Vulnerability In March 2021 the Federal [...]

By | April 3rd, 2021|Security Update, Targeted Attacks|0 Comments

Google Chrome Security Vulnerabilities — Stable Channel Update

Chrome - the Stable channel updated to 89.0.4389.114 for Windows, Mac and Linux. Vulnerability Update Chrome addressed with 8 security vulnerabilities. Importantly the update includes HIGH severity vulnerabilities. However, Below [...]

By | April 1st, 2021|Security Update|0 Comments

Android Malware Steals Data Poses As Security Update

Researchers uncovered malware posing as System Update — takes control of the device, steals almost all the data, and perform a variety of invasive actions. System Update Steals Data Latest [...]

By | March 29th, 2021|Mobile Security, Targeted Attacks|0 Comments

Critical Vulnerability SQL Injection, XSS Attacks — MyBB Security Update

MyBB released security updates for multiple vulnerabilities including SQL injection, XSS attacks, bypassing issues. Security Vulnerability MyBB is the free and open source forum software powering thousands of engaging, vibrant, and unique [...]

By | March 20th, 2021|Security Update|1 Comment

Security Vulnerability Update — Intel Cell Modem

A security vulnerability update released by Intel to mitigate this potential vulnerability. CVE-2020-24482 — Intel 7360 Cell Modem Description: Improper buffer restrictions in firmware for Intel(R) 7360 Cell Modem before [...]

By | March 18th, 2021|Security Update, Software Issues|0 Comments

Security Vulnerability Update — Adobe Framemaker

Adobe has released security updates for its products causing Boundary Condition problem. CVE-2021-21056 — Adobe Framemaker Adobe has released a security update for Adobe Framemaker. The specific flaw exists within the parsing of [...]

By | March 16th, 2021|Security Update, Software Issues|0 Comments

DearCry Ransomware Targets Exchange Servers Using ProxyLogon vulnerability

Threat actors are using the recently disclosed zero-day ProxyLogon vulnerabilities — installing a new strain of ransomware called DEARCRY in Exchange servers. Zero-Day Exchange Vulnerability Earlier this month, Microsoft revealed [...]

By | March 14th, 2021|Ransomware, Zero Day Attack|0 Comments

Another Zero-Day Bug Fix — Google Chrome Security Update

Google fixed another 0-day vulnerability in Chrome browser within a month. CVE-2021-21193 — Chrome Zero-Day A new zero-day vulnerability CVE-2021-21193 was addressed by Google. Earlier this month, Google released an update for [...]

By | March 13th, 2021|Security Update, Software Issues, Zero Day Attack|0 Comments

FortiProxy SSL-VPN —Security Vulnerability Update

Fortinet released security fix for the vulnerability — Security ByPass CVE-2021-22128 — FortiProxy SSL VPN FortiProxy — a secure web proxy that protects employees against internet-borne attacks by incorporating multiple detection [...]

By | March 12th, 2021|Security Update|0 Comments

Apple Security Vulnerability Update For Critical Bug

Apple has released security updates for a severe vulnerability affected in Apple Safari, macOS Big Sur, iOS, iPadOS and watchOS. CVE-2021-1844 — Multiple Apple Products Multiple Apple products are vulnerable [...]

By | March 9th, 2021|Security Update, Software Issues|0 Comments

Exchange Server Attacks Against US Local Governments — Zero-Day Vulnerabilities

Zero-Day vulnerabilities are actively exploit — attacks against local US government agencies. Microsoft Exchange Server — Zero-Day Vulnerabilities Mandiant the information security industry acquired by FireEye observed multiple instances of abuse [...]

By | March 6th, 2021|Microsoft, Security Update, Zero Day Attack|0 Comments

Chrome 89 Security Update — Active Zero-Day Vulnerability

Google warned users to update Chrome browser — zero-day vulnerability in the Chrome browser — actively exploited in the wild. Zero-Day Bug — Chrome A zero-day vulnerability is referred as the number [...]

By | March 3rd, 2021|Security Update, Zero Day Attack|0 Comments

iPhone Models Under Risk — New iOS Jailbreak Threat

Jailbreaking threat made possible to all iPhone models under risk as a vulnerability that Apple already been fixed. iOS Jailbreaking Threat actors has updated a jailbreaking tool which allows to [...]

By | March 2nd, 2021|Software Issues, Targeted Attacks|0 Comments

Oxford University Lab System’s Hacked — Studying COVID-19

Research at Oxford University lab studying COVID-19 — attacked by threat actors. COVID-19 Research Researcher from Oxford University evidenced — a laboratory researching COVID-19 was hacked. Coronavirus disease, an infectious [...]

By | February 27th, 2021|Targeted Attacks|0 Comments

Critical Bug In All VMware ESXi and vSphere Client

Security updates are available to remediate multiple vulnerabilities affecting VMware products. vCenter Security Vulenerabilties: Multiple vulnerabilities in VMware ESXi and vSphere Client with the following CVE's were fixed by VMWare: The [...]

By | February 24th, 2021|Security Update|0 Comments

Security Update — Cisco AnyConnect DLL Hijacking

Cisco released security updates for Cisco AnyConnect secure mobility client for windows arbitrary code execution vulnerability. CVE-2021-1366 — Cisco AnyConnect Cisco AnyConnect Secure Mobility Client empowers remote workers with frictionless, [...]

By | February 22nd, 2021|Security Update|0 Comments

Kia Motors Hit By Ransomware Attack — Denied As No Evidence Of Attack

Kia Motors America denied the ransomware attack after a day-long network outages. Ransomware Attack — KMA Kia Motors America (KMA) is headquartered in Irvine, CA with nearly 800 dealers in [...]

By | February 21st, 2021|Ransomware, Targeted Attacks|0 Comments

Zero-Day Vulnerability IBM InfoSphere Information Server

Researchers discovered a zero-day vulnerability on IBM InfoSphere Information Server Description: IBM InfoSphere Information Server is a leading data integration platform with offerings that help you understand, cleanse, monitor, and [...]

By | February 20th, 2021|Security Update, Software Issues|0 Comments

Botnet Targeting Windows, Linux Servers For Two Years

WatchDog botnet performs cryptojacking for almost 2 years to take over windows and linux servers. Daemon — WatchDog: A botnet is a number of Internet-connected devices, each of which is running one or [...]

By | February 18th, 2021|Ransomware, Targeted Attacks|0 Comments

Telegram Sticker Could Expose Your Data To Threat Actors

A Sticker sent to Telegram account could expose data including Secret chats, Photos, etc Animated Sticker Bug — Telegram Telegram — a messaging app with a focus on speed and [...]

By | February 16th, 2021|Mobile Security, Targeted Attacks|0 Comments

Security Advisory — SAP Commerce Critical Vulnerability

Patch released for a new critical vulnerability affecting SAP commerce platforms. SAP Commerce — CVE-2021-21477 SAP Commerce is prone to an arbitrary code execution vulnerability. A Cloud solutions enable you to [...]

By | February 13th, 2021|Security Update|0 Comments

Hackers Modified Drinking Water Levels To Dangerous Parameters In Florida

Threat actors modified the concentration of LYE to dangerous parameters. LYE Level Modified: Anonymous actors accessed computer systems of the Water Treatment facility in the city of Oldsmar, Florida and [...]

By | February 9th, 2021|Targeted Attacks|2 Comments

Multiple Sri Lankan DNS Records Were Poisoned — Including Google.lk

Hackers group has poisoned multiple Sri Lankan domains on Saturday. Defaced .LK Domains: A mysterious group of hacktivists has poisoned the DNS records of several Sri Lankans (.lk) websites on [...]

By | February 8th, 2021|Zero Day Attack|0 Comments

Hezbollah Hackers Targeted Web Servers Using Unpatched Servers

Hackers group Lebanese Cedar attack unpatched Atlassian servers at telcoms, Hosting and ISPs providers. Lebanese Cedar A volatile hacker group “Lebanese Cedar” linked to Lebanese Hezbollah Cyber Unit, has more advanced [...]

By | January 29th, 2021|Targeted Attacks|1 Comment

Linux — SUDO Flaw Let Local User Gain Root Privileges

Sudo vulnerability, local user can exploit this flaw for root privilege escalation. Linux — CVE-2021-3156 Sudo (su "do") allows a system administrator to give users the ability to run commands [...]

By | January 27th, 2021|Security Update, Software Issues|1 Comment

Critical Security Vulnerabilities In Cisco SD-WAN — Update Now

Cisco warns customers about critical security vulnerabilities affecting SD-WAN, DNA, and the Smart Software Manager Satellite. Security Vulnerabilities: Earlier this week, Cisco released a security advisory on multiple vulnerabilities including [...]

By | January 24th, 2021|Security Update, Software Issues|1 Comment

Phishing Campaign: Thousands Of Stolen Passwords Exposed Online

A phishing scam through Google search left thousands of stolen passwords exposed. Phishing Campaign A phishing campaign exposed thousands of corporate employees credentials. In august, attackers initiated a phishing campaign [...]

By | January 22nd, 2021|Targeted Attacks, Tips|0 Comments

Malwarebytes Hit By SolarWinds — Accessed Internal Emails

After Microsoft, FireEye and CrowdStrike, Malwarebytes hit by hacked SolarWinds. Malwarebytes — UNC2452 An Anti-Virus provider for Microsoft Windows, macOS, Android, and iOS, which finds and removes malwares. Yesterday, Marcin [...]

By | January 20th, 2021|Zero Day Attack|0 Comments

Hacker Gained Admin Access — Leads To Data Breach — OpenWRT

User data stolen from OpenWRT Forum leading to a database breach. OpenWRT The OpenWrt Project is a Linux operating system targeting embedded devices. In addition, it is an open-source project [...]

By | January 19th, 2021|Targeted Attacks, Tips|1 Comment

164 Bombarding Android App Caught For Out-Of-Context Ads

More than 10million users installed Android apps that showed out-of-context ads. Android Applications — Out-Of-Context Ads Google security researchers found 164 Android applications bombarding users with out-of-context ads last year. [...]

By | January 18th, 2021|Mobile Security|0 Comments

Windows 10 Serious Flaw Could Corrupt HardDrive — If You Open A Folder

Microsoft to fix Windows 10 bug that can corrupt a hard drive just by opening a folder or just by looking at an icon. NTFS Hard Drive Corrupt A bizarre [...]

By | January 16th, 2021|Security Update, Targeted Attacks|0 Comments

Signal Fixes Verification Delays Caused By WhatsApp Mass Exodus

Encrypted messaging service in Signal — verification process delay affecting its new user, recovered. Encrypted Messaging Service: A cross-platform encrypted messaging service developed by the Signal Foundation and Signal Messenger. [...]

By | January 11th, 2021|Mobile Security, Security Update|0 Comments

Exact Location Of Users Are Exposed — Telegram App Feature

Nearby Share feature can be exploited by adversaries to spoof GPS and get access to users' exact location. Telegram App: A messaging app with a focus on speed and security, [...]

By | January 9th, 2021|Software Issues, Targeted Attacks|0 Comments

The U.S. Department of Justice Email Server Breached — SolarWinds

SolarWinds Hackers accessed Office 365 mailboxes of the U.S. Justice Department’s. SolarWinds Attack Over 100 to 280 organizations installed a trojanized version of the SolarWinds Orion platform that infects internal systems [...]

By | January 7th, 2021|Microsoft, Targeted Attacks|1 Comment

Critical Android Security Update — Addressed 43 Bugs

Google's Android Security Update addressed 43 bugs affecting Android Handsets, including Samsung phones. Android Security Update: The Android Security Bulletin contains details of security vulnerabilities affecting Android devices. However, Security [...]

By | January 6th, 2021|Mobile Security, Security Update|0 Comments

Apache Security Vulnerability Advisory — Code Execution

Apache released patches for some of its products. Apache Tapestry — CVE-2020-17531 Description: Apache Tapestry is prone to a code execution vulnerability. The vulnerability caused due to unsafe deserialization in [...]

By | January 6th, 2021|Security Update, Software Issues|2 Comments

Security Vulnerability — Cisco Secure Web Appliance

Cisco Secure Web Appliance Elevation of Privilege Vulnerability. Description: A vulnerability in the log subscription subsystem of Cisco AsyncOS for the Cisco Secure Web Appliance (formerly Web Security Appliance) could allow an [...]

By | December 30th, 2020|Security Update, Software Issues|0 Comments

Google Docs Bug — Hackers Can Access Your Private Documents

A bug that Google patched, could allow hackers to see your private documents. Google Docs Bug: Google Docs is an online word processor that lets you create and format documents and [...]

By | December 29th, 2020|Bug Bounty, Targeted Attacks|0 Comments

SUNBURST Malware & SolarWinds Supply Chain Attack

Threat actors compromised the IT monitoring and management software of organizations including SolarWinds’s Orion, Intel, Cisco, Nvidia. Trojanized version of SolarWinds SolarWinds is a software company that primarily deals in systems management [...]

By | December 22nd, 2020|Targeted Attacks|0 Comments

Al Jazeera Journalists Hacked Using Israeli Firm’s Spyware

iPhones of at least 36 Al Jazeera employees using a no-user-interaction zero-day vulnerability in the iOS iMessage app. Attack with Medium Confidence: Employees of Al Jazeera iPhones hacked — including, journalists, [...]

By | December 21st, 2020|Targeted Attacks|0 Comments

Medical Details Exposed Online — As Stored Insecurely

45 million medical imaging files, personal data left discoverable on the open web, across 67 countries including the US, UK, France, and Germany. Unsecured Servers & Storage Devices:  The analyst [...]

By | December 15th, 2020|Data Breach, Targeted Attacks|0 Comments

Samsung December 2020 Update – Fixes Critical Bugs

Samsung's Android December security updates are rolling out to mobile devices to patch security vulnerabilities. High-Security Vulnerabilities — Android This week, Android had published their December 2020 Security Updates bulletin [...]

By | December 12th, 2020|Mobile Security|0 Comments

Cyber-Attack In EU Agency — Incharge of COVID-19 Vaccine Approval

EMA, the EU regulatory body in charge of approving COVID-19 vaccines, became the victim of a cyber-attack today. Cyber-Attack On EU Agency: The EMA - European Medicines Agency, in a post today [...]

By | December 10th, 2020|Targeted Attacks|0 Comments

Vulnerability Affects Generic Electric Healthcare Devices

MDhex-Ray is a vulnerability that affects a long list of CT, X-Ray, and MRI imaging systems manufactured by GE Healthcare. MDhex-Ray Vulnerability: Earlier this week, CyberMDX discovered a vulnerability in the [...]

By | December 10th, 2020|Software Issues|0 Comments

Data Leak From Embraer — Ransomware Attack

The Brazilian aerospace conglomerate became the victim of a ransomware attack last month. Embraer — Aerospace company An aerospace company Embraer, focused on produces commercial, military, executive, and agricultural aircraft [...]

By | December 7th, 2020|Ransomware, Targeted Attacks|1 Comment

Brazilian COVID-19 Patients Personal Data Exposed Online

Over 16 million Brazilian COVID-19 patient's personal data exposed online, including Brazil President Jair Bolsonaro, seven ministers, and 17 provincial governors. COVID-19 — Patient's Data The personal and health information [...]

By | November 27th, 2020|Data Breach, Targeted Attacks|0 Comments

Microsoft Fixes Xbox Website Bug That Would’ve Compromised Users’ Email Address

The Xbox flaw allows hackers to compromise the user's real-time identity, If attackers had access to the email address. XBOX Bug Bounty Microsoft announced an official bug bounty program for the Xbox [...]

By | November 26th, 2020|Tips|0 Comments

Baidu’s Android Apps Caught Leaking Sensitive User Data

Two popular Android apps from Chinese tech giant Baidu caught collecting sensitive user details. Baidu Android Apps: In October, Two popular Android apps from Chinese tech giant Baidu, one of [...]

By | November 25th, 2020|Data Breach, Mobile Security|0 Comments

VMware Unpatched Critical Flaw Affects Multiple Products

VMware has released temporary workarounds to address a critical vulnerability in its products that could be exploited by an attacker to take control of an affected system. VMware Security Advisory [...]

By | November 24th, 2020|Security Update, Software Issues|0 Comments

Facebook Messenger Bug – Hackers Spy On Users Call

Facebook fixed a major security bug in Facebook messenger for Android application, which let hackers listen before you pick up the call. Facebook Messenger: Messenger application, A free all-in-one communication [...]

By | November 20th, 2020|Mobile Security, Software Issues|0 Comments

Cisco Webex Bug – Attackers Join Meetings As Ghost Users

IBM researchers discovered bugs that allow attackers to sneak in and join Webex meetings as ghost users, invisible to other participants. Cisco Webex Conferencing App: Besides Zoom, Cisco Webex is [...]

By | November 19th, 2020|Software Issues, Targeted Attacks|0 Comments

Adult Sites Were Targeted Via Fake Java Update – Malsmoke

A fake Java update found on various porn sites actually downloads the well-known Zloader malware. Target On Adult Websites: The malsmoke operators ran successful exploit kit campaigns for several months [...]

By | November 17th, 2020|Mobile Security, Targeted Attacks|0 Comments

Intel November 2020 Update – Fixes 95 Vulnerability

Intel addressed 95 vulnerabilities on November 2020 Patch Tuesday, including critical ones affecting Intel Wireless Bluetooth products and Intel AMT. Vulnerability Update Highlights: A critical vulnerability was addressed by Intel on its recent security advisory [...]

By | November 12th, 2020|Security Update, Software Issues|1 Comment

Microsoft Teams ‘FakeUpdates’ – Users Under Attack

Microsoft warns that cybercriminals are using Cobalt Strike to infect entire networks beyond the infection point, according to a report. Ads On Microsoft Teams Update: Attackers are using fake Microsoft [...]

By | November 11th, 2020|Security Update, Targeted Attacks|0 Comments

Windows 10, iOS, Chrome, Firefox, and Others Hacked – Tianfu Cup Hacking Competition

Multiple operating systems and browsers successfully exploited in minutes by Bug Bounty hunters at Tianfu Cup 2020, a Chinese Hacking competition Tianfu Cup 2020: The Tianfu Cup is China's biggest [...]

By | November 10th, 2020|Bug Bounty|0 Comments

GitHub’s Pristine Layout Vanished Off – They Missed To Renew The Certificate

GitHub site layout broken as the company failed to renew the SSL certificate. GitHub: Git and Hub is a website for developers and programmers to collaboratively work on code. The [...]

By | November 5th, 2020|Tips|0 Comments

Microsoft US Election Warning – Netlogon protocol Bug In Windows 10.

Microsoft warned Windows 10 users as they received a "small number of reports" from customers and others on a vulnerability affecting the Netlogon protocol (CVE-2020-1472). Netlogon Protocol: It is a Windows [...]

By | November 1st, 2020|Software Issues, Targeted Attacks|0 Comments

Popular Mobile Browsers Found With Multiple Address Bar Spoofing Vulnerabilities

Cyber Security researchers disclosed vulnerability details of multiple popular browsers about an Address Bar Spoofing vulnerability affecting mobile browsers leaving the door open for spear-phishing attacks and delivering malware. Address [...]

By | October 21st, 2020|Security Update|0 Comments

Hackers want to “make the world a better place” By Donating Charities In Cryptocurrency

Security experts were amazed for the first time, as a Hacking group is donating the stolen money to charities. According to a BBC report published Monday, members of the hacking [...]

By | October 20th, 2020|Targeted Attacks, Tips|0 Comments

Alert! Emotet Malware’s New “Windows Update” Attachment

Emotet is a Trojan that is primarily spread through spam emails (malspam). The infection may arrive either via a malicious script, macro-enabled document files, or malicious link.  Emotet emails may contain messages like a familiar [...]

By | October 19th, 2020|Software Issues|1 Comment

Homeland Security Update – New Windows 10 Remote Hacking Threat

The Department of Homeland Security, Cybersecurity Agency, urges Windows 10 users to apply for security updates. On September 18, The U.S. Department of Homeland Security, Cybersecurity and Infrastructure Security Agency (CISA) [...]

By | October 18th, 2020|Security Update, Software Issues|0 Comments

Zero-Click Vulnerability in Linux Bluetooth Stack

Google researchers warned on a new set of potential security vulnerabilities(allow escalation of privilege or information disclosure) in BlueZ may allow escalation of privilege or information disclosure. BlueZ is releasing [...]

By | October 16th, 2020|Security Update, Software Issues|0 Comments

Microsoft Released Security Patch for 87 newly discovered Vulnerabilities

Microsoft released patches for 87 newly discovered vulnerabilities on its October 2020 Patch Tuesday. Of the 87 vulnerabilities fixed today, 12 are classified as Critical, and 74 are classified as Important, and one as [...]

By | October 14th, 2020|Security Update|0 Comments

Vulnerabilities Found in Top AntiVirus Software

Cyber Security researchers disclosed details of vulnerabilities found in popular Anti-Virus solutions that could enable attackers to elevate their privileges, thereby helping malware sustain its foothold on the compromised systems. [...]

By | October 7th, 2020|Security Update, Software Issues|0 Comments

Ransomware Delete Volume Shadow Copies – Install the Vaccine To Monitor

What is Shadow Volume Copies? Shadow Copy is a technology included in Microsoft Windows that can create backup copies or snapshots of computer files or volumes, even when they are [...]

By | October 5th, 2020|Ransomware|0 Comments

US Hospital Hit By SunCrypt Ransomware – HIPAA Data Leaked

University Hospital New Jersey in Newark, New Jersey - Paid a ransom of $670,000 demanded by the attacker to prevent from publishing the stolen data of about 240GB, including patient [...]

By | October 3rd, 2020|Ransomware, Targeted Attacks|1 Comment

Disrupt on US Presidential Debate – Twitter removed 130 Iranian Accounts

Twitter removed some accounts based on the tip provided by the FBI. As there was an attempt to disrupt the public conversation during last night's first Presidential Debate for the [...]

By | October 1st, 2020|Security Update|0 Comments

“Zerologon” Exploit for Netlogon Remote Protocol

Vulnerability - CVE-2020-1472 Description: An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol (MS-NRPC), [...]

By | September 15th, 2020|Software Issues|0 Comments

Porn Sites redirecting to Exploit Kits – Malsmoke Group

A cybercrime group named Malsmoke has been targeting porn sites with malicious ads redirecting users to exploit kits. Over the past few months, a hacker group dubbed Malsmoke has been [...]

By | September 14th, 2020|Software Issues, Targeted Attacks|0 Comments

Red Hat CloudForms – 2020:3574 – Security Advisory

Type/Severity Security Advisory: Critical Topic An update is now available for CloudForms Management Engine 5.10. Description A high severity vulnerability was found in all active versions of Red Hat CloudForms [...]

By | September 1st, 2020|Security Update, Software Issues|1 Comment

The new Red Dawn Template – Emotet

Emotet Trojan:- Emotet is a Trojan that is primarily spread through spam emails (malspam). The infection may arrive either via malicious script, macro-enabled document files, or malicious link. Emotet emails may contain familiar branding designed [...]

By | August 30th, 2020|Ransomware, Targeted Attacks, Tips|0 Comments

Security Update – IBM Security Guardium

IBM Security Guardium Insights is affected by an Open Redirect vulnerability Summary IBM Security Guardium Insights has addressed the following vulnerability. Vulnerability Details CVEID:   CVE-2020-4598 DESCRIPTION:   IBM Security Guardium Insights [...]

By | August 27th, 2020|Security Update, Tips|0 Comments

Subscribe to our newsletter to receive security tips everday!