Browsing tag
Currently, there is no evidence that this particular Azure vulnerability was exploited to gain unauthorized access to customer data. In its newest blog post, Microsoft’s Security Response Center (MSRC) has warned Azure cloud computing users about a flaw in the system that allows hackers to access their data. RECENT: Hackers accessed primary keys of Azure’s Cosmos […]
Endpoint security threats are usually targeted towards corporate organizations but can often use private individuals to get inside these companies – Let’s dig deeper into what risk endpoint security threats possess. Keeping safe online is a constant battle, which is why it is so important to keep up to speed with the gravest threats facing […]
ProtonMail is being criticized for sharing French activist’s IP address with Swiss authorities while claiming it does not save logs. End-to-end encrypted email service provider ProtonMail is currently facing criticism after the company shared the IP address of an anti-gentrification activist with law enforcement agencies that led to their arrests in France. Reportedly, the company […]
S.O.V.A. Android banking trojan is actively being advertised on Russian hacker and cybercrime forums. In early August 2021, ThreatFabric’s team of researchers discovered a new Android banking trojan named S.O.V.A. by its creators. Researchers wrote in their report that the trojan is named so because of the login panel of its C&C server. S.O.V.A. is […]
The Whitehat hacker and IT security researcher Marcus Hutchins, who saved the world from the WannaCry ransomware attack, has shared simple yet useful tips on his TikTok detailing how you can detect hidden cameras in an Airbnb or a hotel room. There’s no doubt that the demand for home rental services like Airbnb is on […]
Originally, O.MG Cable was introduced in 2019. In 2019, at DEFCON, an IT security researcher going by the online handle of MG introduced a Lightning cable dubbed O.MG cable that allowed a remote attacker to steal data from Apple devices. Now, an upgraded version of the O.MG Cable has been released that is equipped with […]
So far, the ongoing phishing attack has utilized more than 350 unique domains to target Microsoft Office 365 users. Microsoft has warned about a new widespread phishing campaign in which scammers are abusing open redirect links to divert users to malicious websites and steal MS Office 365 credentials. In a detailed report, the IT security researchers […]
According to researchers, “This is the worst cloud vulnerability you can imagine.” A critical security vulnerability present in Microsoft’s Azure cloud computing database left the sensitive data of thousands of customers exposed. These customers included several Fortune 500 companies. The vulnerability existed in Microsoft Azure’s flagship database service Cosmos DB for approximately two years. The […]
According to researchers, the incident involved 47 government and private entities across the United States. The IT security researchers at UpGuard published a research report disclosing that organizations using Microsoft Power Apps were susceptible to a default misconfiguration, which made their data sets findable by anyone knowing the web address and search engines. UpGuard researchers […]
Braun Patched Faulty IV Pump After McAfee Discovered Vulnerability Allowing Medication Tampering. McAfee Enterprise’s Advanced Threat Research Team disclosed five unreported security vulnerabilities that existed in German healthcare giant B. Braun’s Infusomat Space Large Volume Pump and SpaceStation. SEE: Vulnerable infusion pumps can be accessed to change dosages Researchers reported that hackers could use these […]
Security vulnerabilities are inevitable but one can avoid them by securing applications. In this article, we are listing 5 popular WordPress security solution providers who also offer free SSL certificates. Security plays a vital role in software application development. Today, we have many open source/proprietary software available on the internet to develop an application. Open-source […]
Microsoft was informed about the vulnerability by Google but the company claimed it to be a “non-issue” and that it “will not fix it.” On Thursday, Google Project Zero researcher James Forshaw shared details of a Windows AppContainer vulnerability after Microsoft backtracked on its previous stance of not fixing the flaw and announcing to address […]
The hacker claims to have hacked T-Mobile’s production, development, and staging servers around two weeks back, including its Oracle database server. T-Mobile is currently investigating claims of unidentified hackers that they have stolen the personal data of 100 million of its customers. Some of the data is up for sale at a widely used hacker […]
The fake 1Password installer is used to launch Cobalt Strike allowing attackers to collect information about multiple systems in the network. We have covered various examples of malware in the recent past. One such happens to be Trickbot which surfaced in 2016 and has evolved over the years from being just a banking trojan to […]
Last year, we covered a research report which found out how projectors could be used to display virtual objects and fool self-driving cars. In the latest, we have another piece of research that deals with strikingly similar details but incorporating the trickery of Artificial Intelligence (AI) as a whole. Discovered by researchers Abhiram Gnanasambandam, Alex […]
The watchlist was exposed on a misconfigured server hosted on a Bahrain IP address instead of a US one. The FBI was reportedly maintaining a secret watchlist of suspected terrorist administrated by the Terrorist Screening Center (TSC). According to Comparitech’s head of security research, Bob Diachenko, this list was exposed online due to a configuration […]
The misconfigured S3 bucket was owned by SeniorAdvisor, a consumer ratings and reviews website. WizCase’s cybersecurity researchers discovered a misconfigured Amazon S3 bucket owned by SeniorAdvisor, one of the leading consumer ratings and reviews websites for senior care/services in the USA and Canada. The company aids senior citizens in finding care options in their localities. […]
Threat actors used Google Ads to buy top slots on Google search engine to advertise fake Brave browser websites which delivered malware as the browser’s download file. According to one of the Brave browser’s developers Jonathan Sampson, a fake Brave browser website was featured at the top of Google search results after threat actors exploited […]
Most of the email addresses checked by researchers contained .gov suffixes or indicated that the user worked for New York Police Department. In April 2021, a hacker dumped household data of 250 million Americans online, and now VPNMentor’s team of cybersecurity researchers led by Noam Rotem and Ran Locar discovered a misconfigured Cloud database stored on […]
The Elasticsearch database was left exposed without any security authentication which means it could have been accessed by anyone with access to a web browser, and a valid URL. Comparitech researchers published a report revealing details of an unprotected marketing database that leaked private details of about 35 million residents across Chicago, San Diego, and […]
According to the agency, the impact of these ransomware attacks can be devastating for both small to big businesses. The Federal Bureau of Investigation’s Internet Crime Complaint Center has issued an alert to warn companies part of the food and agriculture sectors about the growing threat of ransomware attacks in these sectors. Companies Using Smart Technology Vulnerable […]