All posts tagged "cyber security news"
- Vulnerabilities
Critical “Netmask” npm Package Flaw Affects Hundreds of Thousands of Applications
Cybersecurity researchers Victor Viale, Sick Codes, Nick Sahler, Kelly Kaoudis, and John Jackson have recently detected a severe networking vulnerability in the...
-
4.1KMalwaremacOS malware Targets XcodeSpy Targets Xcode Developers with EggShell Backdoor
Recently, the cybersecurity researchers have detected a new malware that is targeting the Xcode developers by adopting the platform’s scripting abilities so...
- Vulnerabilities
Netgear JGS516PE Ethernet Switch Flaws let Attackers Execute Remote Code
Recently, Netgear has published security updates to inscribe 15 severe vulnerabilities in its JGS516PE Ethernet switch. These flaws involve an unauthenticated remote...
- Vulnerabilities
Google Fixed yet Another Actively Exploited zero-day Vulnerability in the Chrome Browser
Once again Google has fixed another Zero-day vulnerability in the Chrome browser, and this is the second vulnerability that has been recently...
-
4.3KMalwareAttackers Utilized Weaponized Microsoft Office Documents to Deliver ObliqueRAT
The Trojan in the ObliqueRAT campaigns are now being disguised in benign image files on hijacked websites. RAT stands for Remote Access...
-
1.9KMalwareNew Ursnif Banking Malware Campaign Steals Credit Card, Banking, and Payment Information
Avast Threat Labs researchers obtained information on possible victims of Ursnif malware. Ursnif is a banking trojan and a variant of the...
-
3.8KMalwareHackers Use SEO Techniques to Push Gootloader Malware Via Google
The Javascript-based infection framework for the Gootkit RAT increasingly delivers a wider variety of malware, including ransomware payloads. The delivery system for...
-
4.7KMalwareMasslogger – A Campaign that Exfiltrates Passwords from Microsoft Outlook, Google Chrome, and Instant Messengers
Cisco Talos discovered a campaign utilizing a variant of the Masslogger trojan designed to retrieve and exfiltrate user credentials from multiple sources...
-
3.9KVulnerabilitiesResearchers Find a Way to Learn What Users Type in Video Calling
You are on an official video call. You share a joke with your coworker about your boss on private chat. You’ll both...
-
966VulnerabilitiesNew PDF Vulnerability Let Attackers Bypass the Signature Validation in PDF and Replace Content
A team of researchers from the Ruhr-University Bochum in Germany has reported the attacks bypassing the signature validation in PDF. Digitally signed...
-
2.7KData BreachKroger Data Breach – Hackers Stole Files that Shared Through Secure File Transfer Service
The Kroger Company is the United States’ largest supermarket by revenue and the second-largest general retailer. Kroger operates almost 2,750 supermarkets in...
-
2.5KVulnerabilitiesUnpatched SHAREit Flaw Let Attackers Execute Remote Code
SHAREit app is owned by Smart Media4U Technology Pte. Ltd. which is a global technology company in Singapore. SHAREit was originally made...
-
261Data BreachYandex Data Breach – Employee Caught Selling Access to User Accounts
Yandex N.V. is a Russian Dutch-domiciled multinational corporation providing Internet-related products and services including transportation, search and information services, eCommerce, navigation, mobile...
-
2.1KData BreachAntivirus Firm Exposed Internal Log data Generated by their Products
EMSISOFT, Antivirus Firm revealed a data breach on one of their test systems. The company used the system to evaluate and benchmark...
-
1.5KMalwareAndroid Barcode Scanner With 10 Million Download Turns Malicious after an Update
A popular Barcode Scanner App with above 10 million downloads on the Google Play Store has been caught infecting Android devices with...
-
1.8KMalwareNew Malware Discovered in SolarWinds Attack that Used 7-Zip Code to Hide
An additional piece of malware used in the SolarWinds attacks has been uncovered by researchers at Symantec, a division of Broadcom. Raindrop...
-
2.0KCryptocurrencyLivecoin has Announced Shutdown of Services after Being Hacked
Livecoin Exchange announces closure following an alleged breach in December. The trading platform declares it will close and repay users any remaining...
-
3.2KMalwareTA551 Hacker Group Pushes New Information Stealer Malware IcedID
TA551 also known as Shathak is an email-based malware distribution campaign that frequently targets English-speaking victims. This campaign has aimed German, Italian...
-
155Data BreachOver 500,000 Credentials of two Dozen Leading Gaming Firms Leaked Online
Tel Aviv-based threat intelligence firm Kela has warned gaming companies to improve their cybersecurity posture after discovering 500,000 breached employee credentials and...
-
3.5KVulnerabilitiesSecret Backdoor found Installed in Zyxel Firewall and VPN
Zyxel Communications Corp. is a manufacturer of networking devices. It is popular for firewalls that are marketed towards small and medium businesses. Their...
-
1.3KVulnerabilitiesCritical Dell Wyse Bugs Let Attackers to Execute Code and Access Files and Credentials
The giant Dell Wyse is affected by two Critical Vulnerabilities CVE-2020-29491 and CVE-2020-29492 which targets thin client devices. The CyberMDX Research team has...
