Epic Games who developed Fortnite has been sued for not protecting Fortnite accounts from hackers. There are currently more than 250 million registered Fortnite accounts which is a big thing for Epic Games, who developed the game. At the same time, it is a lucrative target for hackers and that’s the reason when Fortnite is […]
If you are using any supported version of the Windows operating system, stop everything and install the latest security updates from Microsoft immediately. Windows operating system contains four new critical wormable, remote code execution vulnerabilities in Remote Desktop Services, similar to the recently patched ‘BlueKeep‘ RDP vulnerability. Discovered by Microsoft’s security team itself, all four […]
XSSizer helps penetration testers, bug hunters and other security professionals to easily detect such vulnerabilities and produces a ready-to-use PoC exploit for demostration. According to WikiPedia Cross-site scripting is a type of computer security vulnerability typically found in web applications. XSS enables attackers to inject client-side scripts into web pages viewed by other users. A […]
It is like being hit by a bullet that we never saw coming our way. That is how we at hackercombat.com describe the controversy with regards to VxWorks embedded OS’ TCP/IP bugs that are now affecting close to 2 billion Internet-connected devices globally. Now known as Urgent/11, a batch of 11 flaws affecting VxWorks, an […]
Security researchers have discovered almost a dozen zero-day vulnerabilities in VxWorks, one of the most widely used real-time operating systems (RTOS) for embedded devices that powers over 2 billion devices across aerospace, defense, industrial, medical, automotive, consumer electronics, networking, and other critical industries. According to a new report Armis researchers shared with The Hacker News […]
D-Link has agreed to make some security enhancements that have reorganized the company’s security platform to resolve disputes from the Federal Trade Commission (FTC) because it has misinterpreted the security of its product. The case stems from complaints from corporate routers and IoT cameras against D-Link in 2017 that disclosed confidential consumer information to third […]
Researchers managed to cover a 50,000 seat football stadium using only four malicious portable stations. A group of security researchers from the University of Colorado Boulder has published a paper detailing the findings of their latest research revealing that LTE vulnerabilities can help attackers send out fake presidential alerts. To do this, they only need […]
Pacu is an open source AWS exploitation framework created and maintained by Rhino Security Labs to assist in offensive security testing against cloud environments. Pacu allows penetration testers to exploit configuration flaws within an AWS environment using an extensible collection of modules with a diverse feature-set. Current modules enable a range of attacks, including user […]
PHP is without a doubt one of the most popular programming languages out there. It is largely used to make dynamic or interactive pages on the web and It is used by a very large amount of websites. PHP 7 was initially released in 2015 and had several different features that developers and programmers love […]
For the past few weeks, the US Department of Justice has been preparing to file an antitrust lawsuit against search and advertising behemoth Google. This comes almost six years after a previous antitrust investigation against Google by the Federal Trade Commission. Back then, Google managed to avoid any legal action. Before that, Google faced an […]
Now, when almost every company is facing the privacy heat, the latest one to face the dirt is Apple. A class-action lawsuit has been filed against the company for “intentionally and unlawfully” disclosing people’s iTunes listening data to third parties. The suit was filed by 3 people, two of them living in Rhode Island and […]
Three high-severity PrinterLogic flaws that have recently been detected could help hackers launch remote code execution attacks on printers. Threatpost editor Lindsey O’Donnell reports, “A slew of high-severity flaws have been disclosed in the PrinterLogic printer management service, which could enable a remote attacker to execute code on workstations running the PrinterLogic agent.” The PrinterLogic […]
Data breaches are the hot new thing in the tech town! Each day a new data infringement case is reported, and this time it’s Xiaomi to join the bandwagon. It is reported that Xiaomi is sharing users’ data with third parties outside of India and it’s not doing it secretly. The Chinese company has mentioned […]
The authors of the book ‘Learn ethical hacking‘ narrate an unlikely story. A company fired one of its IT employees after only one month of hiring him and, in retaliation, the employee stole the login details of one of his former co-workers, entered one of the company’s Amazon Web Services accounts and disabled 23 servers. […]
The popular SSH client program PuTTY has released the latest version of its software that includes security patches for 8 high-severity security vulnerabilities. PuTTY is one of the most popular and widely used open-source client-side programs that allows users to remotely access computers over SSH, Telnet, and Rlogin network protocols. Almost 20 months after releasing […]
Hackers exploiting zero-day vulnerabilities in Counter-Strike 1.6 game client to infect player’s devices by using a malicious gaming server and downloads malware into their devices. The Counter-Strike game was decades old but still have a huge fan database, according to researchers, 20,000 players using official CS 1.6 clients. The official game client contains two unpatched […]
If you are a Counter-Strike gamer, then beware, because 39% of all existing Counter-Strike 1.6 game servers available online are malicious that have been set-up to remotely hack gamers’ computers. A team of cybersecurity researchers at Dr. Web has disclosed that an attacker has been using malicious gaming servers to silently compromise computers of Counter-Strike […]
It’s time for another batch of “Patch Tuesday” updates from Microsoft. Microsoft today released its March 2019 software updates to address a total of 64 CVE-listed security vulnerabilities in its Windows operating systems and other products, 17 of which are rated critical, 45 important, one moderate and one low in severity. The update addresses flaws […]
Adobe users would feel lighter this month, as Adobe has released patches for just two security vulnerability in its March Security Update. The company today released its monthly security updates to address two critical arbitrary code execution vulnerabilities—one in Adobe Photoshop CC and another in Adobe Digital Editions. Upon successful exploitation, both critical vulnerabilities could […]
A lawsuit has claimed that Alphabet CEO and Google co-founder Larry Page didn’t get approval from the board of the company when he passed a $150 million stock grant to Android creator Andy Rubin. The suit alleges that Rubin was under an internal investigation for sexual harassment, according to a Bloomberg report. While the lawsuit was […]
With countless web apps and online services launching every day, there is an increasing demand for cloud developers. This exciting niche is due to grow rapidly over the next few years, and the paycheck should follow suit. If you want to build a career in this lucrative niche, it pays to know AWS (Amazon Web […]