Improving security for mobile devices: CISA issues guides
The Cybersecurity and Infrastructure Security Agency (CISA) has released two actionable Capacity Enhancement Guides (CEGs) to help users and organizations...
News
Several GoDaddy brands impacted in recent data breach
Recently disclosed data breach impacted several of its brands, including Domain Factory, Heart Internet, Host Europe, Media Temple, tsoHost and...
New law will issue bans, fines for using default passwords on smart devices
The idea of connecting your entire home to the internet was once a mind-blowing concept. Thanks to smart devices, that...
Iranian threat actors exploit MS MSHTML bug to steal Google and Instagram credentials
An Iranian threat actor is stealing Google and Instagram credentials of Farsi-speaking targets by exploiting a Microsoft MSHTML bug. Researchers...
Beware card skimmers this Black Friday
The UK’s top cybercops are urging owners of small online shops to “protect their customers and profits” by guarding against...
FBI warns of crooks targeting online shoppers during the holiday season
The Federal Bureau of Investigation (FBI) warns of cybercriminals targeting online shoppers during the holiday season. The FBI warns of...
VMware addresses File Read and SSRF flaws in vCenter Server
VMware addressed arbitrary file read and server-side request forgery (SSRF) vulnerabilities in its vCenter Server product. VMware this week addressed...
“Free Steam games” videos promise much, deliver malware
Gamers are a hot target for scammers, especially in the run up to Christmas. Major games are released throughout the...
A vulnerable honeypot exposed online can be compromised in 24 hours
Researchers deployed multiple instances of vulnerable systems and found that 80% of the 320 honeypots were compromised within 24 hours. Researchers...
Windows Installer vulnerability becomes actively exploited zero-day
Sometimes the ways in which malicious code gets in the hands of cybercriminals is frustrating for those in the industry,...
What is facial recognition?
Facebook recently announced it would give up on its facial recognition system. Facebook, or Meta, was using software to automatically...
Password usage analysis of brute force attacks on honeypot servers
As Microsoft’s Head of Deception, Ross Bevington is responsible for setting up and maintaining honeypots that look like legitimate systems and...
Apple sues NSO Group for abusing state-sponsored Pegasus spyware
Apple has filed suit to ban the Israeli surveillance firm NSO Group and parent company Q Cyber Technologies from using...
Expert discloses details of flaws in Oracle VirtualBox
A vulnerability in Oracle VM VirtualBox could be potentially exploited to compromise the hypervisor and trigger a denial-of-service (DoS) condition....
Threats to ICS and industrial enterprises in 2022
Continuing trends In recent years, we have observed various trends in the changing threat landscape for industrial enterprises, most of...
The dangers of “connected” healthcare: predictions for 2022
For a second consecutive year, the time for Kaspersky to make its predictions for the healthcare sector comes amid the...
Privacy predictions 2022
We no longer rely on the Internet just for entertainment or chatting with friends. Global connectivity underpins the most basic...
Cyberthreats to financial organizations in 2022
First of all, we are going to analyze the forecasts we made at the end of 2020 and see how...
Malware are already attempting to exploit new Windows Installer zero-day
Vxers are already attempting to use the proof-of-concept exploit code targeting a new Microsoft Windows Installer zero-day publicly disclosed on...
Android.Cynos.7.origin trojan infected +9 million Android devices
Researchers spotted dozens of games on Huawei’s AppGallery catalog containing the Android.Cynos.7.origin trojan. Researchers from Dr. Web AV discovered 190 games on...
Experts warn of RCE flaw in Imunify360 security platform
A flaw in CloudLinux’s Imunify360 security product could have been exploited by an attacker for remote code execution. Cisco’s Talos...
Expert released PoC exploit code for Microsoft Exchange CVE-2021-42321 RCE bug
A researcher has released a proof-of-concept exploit code for an actively exploited vulnerability affecting Microsoft Exchange servers. The researcher Janggggg has...
Millions of GoDaddy customer data compromised in breach
Domain name registrar giant and hosting provider GoDaddy yesterday disclosed to the Securities and Exchange Commission (SEC) that it had...
Please don’t buy this! 3 gift card scams to watch out for this Black Friday
With the holiday season around the corner, and Black Friday at the end of the week, we thought it was...
