Data Security
-
2.3KX-rated social media app Fleek exposed explicit photos of users
Fleek shut down its operation in 2019 but did not secure its server or remove users’ data. VpnMentor’s research team led by...
-
2.2KMalwarebytes says it was also breached by SolarWinds hackers
According to Malwarebytes, SolarWinds hackers accessed its internal email communication. The internet security software developer Malwarebytes announced on Tuesday that it suffered...
-
2.0KSignal, Google Duo, FB Messenger vulnerabilities allowed eavesdropping
Although patched now, if exploited, these vulnerabilities posed a major threat to user’s privacy and security. Google Project Zero researcher Natalie Silvanovich...
-
1.9KOngoing ‘FreakOut’ malware attack turns Linux devices into IRC botnet
According to Checkpoint, the “FreakOut” malware attack is exploiting “newest vulnerabilities.” Cybersecurity researchers identify vulnerabilities regularly, some serious, some not. In the...
-
4.9KBackdoor account found in 100,000+ Zyxel Firewalls, VPN Gateways
Researchers at Eye Control security discovered a hard-coded admin-level backdoor account as a Zyxel firmware binary revealed username and password. Admin-Level Backdoor...
-
2.9KHacker selling 368m users records stolen from 26 companies
These websites include some notable ones such as Sitepoint. In 2020, we saw hundreds of data breaches across different sectors with the...
-
4.2KGoogle ReCaptcha flaw lets bots bypass audio captcha challenge
According to researchers, the idea of the attack is to grab the MP3 file of the audio reCAPTCHA and submit it to...
-
3.0KFacebook bug exposed identity of page admin using group doc feature
The bug was reported to Facebook under its bug bounty program after which the researcher was awarded $5,000. Sometimes the greatest of...
-
3.3KElectroRat crypto-stealing malware hits MacOS, Windows, Linux devices
The undetected ElectroRat malware is capable of stealing private keys to access victims’ wallets and also run keylogger on a targeted device....
-
3.1KFake Trump’s scandle video campaign spreading QNode RAT
Hackers are benefitting from the unrest after the US Presidential elections and spreading QNode malware but this time it tricks users into...
-
2.2KHack the US Army for good with ‘Hack The Army’ bug bounty program
For now, only those with invitation can join the new bug bounty program. Hacking competitions are held globally in order to find...
-
2.0KNissan source code leaked after it used “admin” as username, password
The collection is 20 GB large and includes source code of a range of Nissan services including NissanConnect. Swiss software engineer Tillie...
-
1.7KCloning Google’s Titan Key to bypass 2FA – Research
The attack requires the attacker to have physical access to the victim’s Titan Key, hours of time, and side-channel setup equipment worth...
-
888Two groups might have breached SolarWinds Orion software- Microsoft
The ongoing investigation into the SolarWinds supply chain cyberattack indicates the involvement of another APT group. According to the new digital evidence...
-
3.5KFashion marketplace giant 21 Buttons exposes millions of users’ data
An alarming aspect of the entire incident is that vpnMentor contacted both 21 Buttons and Amazon but no one responded nor cared...
-
3.1KGoogle reveals unpatched 0day vulnerability in Microsoft’s API
Apparently, Microsoft released a patch to fix the vulnerability in June but it did not work the way it was supposed to...
-
1.8KSecurity Perspective: Why Do 90% of Traders Fail?
Cryptocurrencies form one of the world’s largest financial markets. A couple of years ago, there were already close to 14 million traders...
