Browsing tag
Popular dialer app Drupe is now back on the Google Play Store, following security vulnerability, for anyone who’d want to download it. A few days ago, a security vulnerability was discovered in Drupe that led to it being removed from Google Play Store; the vulnerability was serious and left personal data of tens of thousands […]
Quite recently, a simple but serious application-level DoS (Denial of Service) flaw has been discovered in the WordPress CMS platform; this DoS vulnerability could help anyone take down most WordPress websites, even with a single machine. In fact, there won’t be any need to hit with a massive amount of bandwidth as is the case […]
Online bank accounts are among the most favorite of targets for all hackers, as per a recent survey report. A report published by Positive Technologies (a global provider of enterprise security solutions for vulnerability and compliance management, incident and threat analysis, and application protection) points out that of all the websites, banking and finance websites […]
Guess what the favorite tool of hackers is when they want to infect Linux servers with crypto mining malware. It’s a 5-year-old security vulnerability that is being exploited in the cyprojacking campaign. The altered XMRig tool is the miner, which is legitimate and open source Monero miner. A flaw that was discovered in 2013 in […]
Banks across the world spend a lot of time and money to protect the information of their customers. An irony, the easiest way for hackers to get information is through their card. The cards have magnetic strips that protect the information of the cardholders, which holds the imprinted digits and signature field, but now things have […]
Google has now detected a new vulnerability in Microsoft Edge, the Windows 10 default web browser; this detection has been made as part of Google’s Project Zero program. On MSFT, which claims to be one of the original Microsoft-centered communities, has published a blog on this issue. The blog post, which is titled ‘Google’s Project […]
Do you understand what is a real cyber attack and how to prepare yourself in case it happens? Every day cyber attacks are rapidly spreading all over the world, growing concerns that business and average users can fail to secure their networks from aggressive hackers. The problem explodes so quickly that not everyone is ready […]
POS (Point-of-Sale) systems are always among the favorite targets of hackers; POS terminals always provide them the chance to lay their hands on all kinds of data- credit card data, other customer data, bank data etc. Hence cyber criminals are always on the lookout for POS vulnerabilities. There have been some reports recently about a […]
Lenovo released a security update for critical vulnerability with Lenovo Fingerprint Manager Pro that impacts dozens of ThinkPad, ThinkCentre and ThinkStation Workstations that are running Windows 7, 8 and the 8.1 operating systems. It is a utility for user authentication based on fingerprint recognition for Windows 8.1 (32-bit, 64-bit), 8 (32-bit, 64-bit), 7 (32-bit, 64-bit) […]
A new vulnerability in Google App Scripts has opened the door to new possibilities for cyber criminals. Researchers at cybersecurity firm Proofpoint have discovered a new way of exploiting Google App Scripts and thus deliver malware via URLs. A detailed post on the official Proofpoint blog discusses this; the blog post says- “Software-as-a-Service (SaaS) applications […]
Register first notices a significant vulnerability in all Intel processor chips. The major design flaw in Linux kernel patch is going to make a huge impact, and all operating systems will have to be updated. The computers out of the production line and this patch will have a major effect on the performance. The Register […]
A new Critical CSRF Vulnerability discovered in widely used phpMyAdmin open source admin tool allows an attacker perform harmful database operation such as DROP TABLE With A Single Click, Deleting Records in Database. CSRF Vulnerability is one of the critical web application vulnerability that is listed in OWASP Top 10 vulnerability since 2013. phpMyAdmin is […]
A security researcher (@s1guza) has published the details of an unpatched vulnerability in macOS that can be exploited to gain full control of a system. The bug is a critical local privilege escalation (LPE) affects IOHIDFamily, which is a kernel extension designed for human interface devices (HID) (e.g. the touchscreen, buttons, accelerometer, etc.). The bug […]
A critical vulnerability discovered in GoAhead Servers with versions running below 3.6.5 allows an attacker can exploit a remote code in GoAhead web Servers which affect thousands of IoT Devices. GoAhead world’s most popular embedded Web Servers that are deployed in millions of devices including printers, IP phones, networking devices and many more. Among a list of […]
Many leading healthcare organizations have been targeted and attacked by cyber criminals in the last few years. One of the most notable among recent instances is the WannaCry ransomware attack throwing out of gear UK’s National Health Service (NHS). Today, when healthcare organizations depend on the cloud and the internet in a great way, security […]
TeamViewer is a well know software for desktop support and remote control over the Internet; it suffers a critical vulnerability which allows clients to take control over the computer remotely without any permission. The bug impacted TeamViewer versions with Windows, macOS, and Linux.Now the patches available for windows and soon we can expect for macOS […]
Facebook recently introduced a poll feature which allows users to make votable questions as the status on both Android and iOS apps. Security researcher Pouya Darabi found a vulnerability that allows anyone to delete any photo from the Facebook platform. Facebook vulnerability Darabi explains the vulnerability allows anyone can quickly change the Image ID that […]
A Linux Suffering from systemd(System and Service Manager) vulnerability that leads to performing a Denial of Service in many Linux based Distributions. Attacker Sending a DNS query to a DNS server by having a Vulnerable system eventually this vulnerability will exploit the Target Linux distribution systems. systemd is an init system used in Linux distributions to […]
The downsides of the Intel ME chips have already alarmed the security community. The recent addition to the threat was revealed in the security advisory published by Intel earlier this week. After doing an in-depth security review of their products, Intel found a pool of eight critical privilege escalation vulnerabilities affecting Intel Management Engine (ME), […]
Just when the Apple released 11.1 as a patch to address the crack in WiFi and other exploits, here comes the news that it has been hacked again. It was during Trend Micro’s Zero Day Initiative they revealed this news, but have yet to give the details of the exploits. There were several exploits discovered, […]
Critically, both OS updates address the KRACK Wi-Fi vulnerability for any devices. It is a dangerous vulnerability in the WPA2 Wi-Fi assurance standard that allowed hostile actors to perform a key reinstallation and receive to Wi-Fi traffic for keys and other personal data, among other things. Both also include numerous new Unicode 10.0 emoji. They include the “I love you” hand […]