Browsing tag
A vulnerability exists with the web version of Google photos allows malicious websites to extract the photos metadata information. Google photos will tag your photos automatically based on the metadata information such as geographic coordinates, date, etc. The Photo metadata allows information to be traveled along with the image file that can be read by […]
Mirai malware is a powerful strain that compromises a number of Linux devices and uses those devices to launch a massive distributed denial of service attacks. The new malware variant targets embedded devices such as routers, network storage devices, NVRs, and IP cameras and using numerous exploits against them. According to Unit 42 researchers the […]
Researchers discovered a serious Vulnerability in famous vendors car alarm system that allows attackers to hijack the car remotely and kill the engine while driving, even steal the car. These alarms available in the market for $5,000, that already fitted in several high-end cars and the critical vulnerabilities were discovered in two leading alarm vendors […]
An Operator of DDoS-as-a Service (Illegal Booter Services) pleads guilty in North Carolina count for his massive operations of DDoS attack against 1.3 million targets. Sergiy P. Usatyuk, illegal DDoS service operator from Orland Park arrested by FBI for supporting this illegal services with his co-conspirator to develop, control and operate a number of booter […]
Researchers have detected the first malspam campaign that delivers a malicious RAR archive to infect victim’s computer exploiting the WinRAR ACE vulnerability. The 19-year-old vulnerability was disclosed by checkpoint security researchers last week, the vulnerability resides in the WinRAR UNACEV2.DLL library. This vulnerability can be exploited by an attacker with specially crafted ACE archive and […]
Hackers deploy Emotet malware targeting retail trading industry to exfiltrate the bundles of data and to sell them on the dark web. The Emotet malware is a highly sensitive banking malware which was originally found in 2014, it is capable of stealing financial credentials, usernames, passwords and email addresses. Panda Trading Systems detected the malware […]
A new malware campaign that impersonates as legitimate staffing companies abuse messaging services to deliver More_eggs malware. The campaign primarily targeted US companies that include retail, entertainment, pharmacy, and others that commonly employ online payments, such as online shopping portals. Threat actors send direct message abusing Linkedin message service to the victim’s pretending to be […]
A database that contains highly sensitive information of about 458,388 individuals located in Delhi exposed for public access without any password protection. Security researcher Bob Diachenko discovered the publically exposed database name “GNCTD” that indexed by Shodan. The 4.1GB-sized MongoDB belongs to Government of National Capital Territory of Delhi and by analyzing contents Bob Diachenko […]
NCBP announced a security breach that impacts hundreds of restaurants, Retail, and Grocery point of sale systems. The security breach impacted 137 restaurants. According to North Country Business Products, Inc, following are the details exposed that include the cardholder’s name, credit card number, expiration date, and CVV. The company learned that there is suspicious activity in […]
ATM hijacking malware dubbed WinPot turns the ATMs into a slot machine, which starts dispensing the cash based on SPIN button. Security researchers from Kaspersky observed the emergence of the WinPot malware, the malware appeared first in the underground markets in March 2018. Threat actors designed the malware to automatically dispense the cash automatically form […]
The clipper hijacking malware use to intercept the contents of the clipboard and replaces it with the content the attackers want to have. Generally, the cryptocurrency wallets contain a long string of characters for security reasons, users use to copy and paste the strings instead of typing it. Security researchers from ESET discovered the Android […]
Cyber criminals now spreading a Gandcrab ransomware variant using Steganography Super Mario image via malicious Excel documents. Very recently a security researcher Matthew Rowen from Bromium encountered a spreadsheet that containing a trojan sample during the static analysis. The spreadsheet has an embedded macro and the code part reveals that the macro should exit immediately […]
Cyber Criminals now distributing powerful ursnif malware via malicious Office Documents with multi-stage highly obfuscated PowerShell scripts to bypass security controls. ursnif is a banking Trojan family that perform the most destructive attack on victims network and now it using the steganography method to hide its malicious code to avoid detection. Ursnif malware also known […]
Recently we have seen more increase in various threats and the ways of intruding the network and there were increase by APT groups. Mostly because of political agenda, cyberespionage, cyberwars, competitions and more of script kiddies. Even though it’s urging and pushing us to implement SOC in your organization, still it does not achieve what […]
The underground markets flooded with a number of hacking tools that can be used to perform various malicious activities in the form of Cybercrime as a Service. All these tools and services are offered at various pricing range, there are here are a number of dark web markets available such as Berlusconi Market, Empire Market, […]
A new collection of massive breached database freely distributed on hacker forums and torrents. The breached database contains a collection of 2.2 billion unique usernames and it’s passwords. The database named Collections #2 to #5 contains 845GB of stolen data and contains 25 billion records in total. The massive collection of the breached database was […]
Researchers discovered new Anatova Ransomware which is called as modular ransomware that encrypt users data with new techniques and demands $700 to unlock the files. The ransomware is a turnkey business for some criminals, and victims still pay the ever-increasing demands for ransom, it’s become a billion-dollar industry that shows no signs of going away […]
The coordinated efforts were part of the URLhaus initiative that Abuse.ch launched in March 2018, and whose primary objective is to collect and share URLs about active malware campaigns so the information security (infosec) community can take action by blacklisting or taking down URLs. In a report published today, Abuse.ch says the URLhaus project has […]
CryptoMix ransomware (old ransomware spotted early in 2016) returns with a new trick, ripping data and images from crowdfunding sites and claiming ransomware payments go to the needy. This old family of ransomware has returned with a new campaign which uses information about children stolen from crowdfunding websites and claims that payments made in exchange […]
Universities and colleges are among the risk group that is mostly affected by the frequent DDOS attacks according to the latest research. For example, in the UK alone, more than 200 universities were hit by 850 DDOS attacks in 2018. This raises a major concern about the security of universities and colleges worldwide. The attackers […]
DarkHydruns APT Group targets government entities in the middle eats with weaponized excel documents that delivers a new variant of RogueRobin trojan and can establish communication with C2 server through DNS tunnel and Google Drive API. The campaign uses a weaponized Excel document with macro enabled(xlsm) to deliver the malware, once the user open the […]