A massive DDoS knocked offline Belgian government websites
A massive distributed denial of service (DDoS) attack shut down Belgiums’ government websites, internal networks were also impacted. A massive...
News
Most of Exim email servers could be hacked by exploiting 21Nails flaws
The maintainers of the Exim email server software addressed a collection of 21 issues, dubbed 21Nails, that can allow attackers...
Spectre attacks come back from the dead
Spectre is the name for a whole class of vulnerabilities discovered in January 2018 that affected huge numbers of modern...
Raychat App Suffered a Data Breach of 150 Million Users
Around 7:20 a.m. on Monday, May 3, 2021, the database was first made public on a prominent Russian hacker website....
Philippines Solicitor-General’s Office Breached Data Was Public
UK cybersecurity organization TurgenSec has reported over 345,000 important credential files were leaked from the Filipino solicitor-general office including information...
Ransomware Hackers Target Popular Cloud Service Provider ‘Swiss Cloud’
Swiss Cloud, a Switzerland-based cloud hosting provider, suffered a ransomware attack that seriously impacted its server infrastructure. The incident took...
UNICC and Group-IB Shut Down 134 Scam Websites In a Major Crackdown
Cybersecurity agency Group-IB and UNICC carried out a joint venture where they took down 134 websites handled by hacking group...
Tesla Car Hacked Remotely by Drone Via Zero-Click Exploit
Two researchers have shown how a Tesla and probably other cars can be remotely hacked without the involvement of the...
Hundreds of millions Of Dell PCs affected by CVE-2021-21551 flaws
American multinational computer technology giant Dell addresses a 12-year-old driver flaw, tracked as CVE-2021-21551, impacting millions of computers. Hundreds of...
Project Signal: a second Iranian State-Sponsored Ransomware Operation
Iran-linked ATP group carried out a ransomware operation through a contracting company based in the country, Flashpoint researchers warn. Researchers...
Apple addresses three zero-day flaws in its WebKit browser engine
Apple has released security updates to patch three zero-days in the WebKit, the Apple’s browser engine, and fixed a zero-day...
Expert released PoC exploit for Microsoft Exchange flaw
Security researcher released technical details and a PoC code for a high-severity vulnerability in Microsoft Exchange Server reported by the...
Pulse Secure fixes zero-day in Pulse Connect Secure (PCS) SSL VPN actively exploited
Pulse Secure has fixed a zero-day flaw in the Pulse Connect Secure (PCS) SSL VPN appliance that threat actors are...
A week in security (April 26 – May 2)
Last week on Malwarebytes Labs, we looked at which age range is most likely to be targeted by online predators,...
Microsoft Finds Critical Code Execution Bugs In IoT, OT Devices
Recently, world-leading giant Microsoft security unit has reported that around 24 critical remote code execution (RCE) vulnerabilities have been found...
US Agencies Hit By Cyberattack, Confirms CISA Investigation
Around five federal civilian agencies were breached recently, in a hit to the US government, revealed an investigation by a...
Cryptocurrency Mining Will Void Your SSD Warranty, Manufacturer Galax Warns
SSD designer Galax has warned users on its Chinese website that mining cryptocurrency with the company’s Solid State Drives (SSDs)...
App Census Study Reveals that Android Devices Leak User Data Stored in Contact Tracing Applications
According to security experts, hundreds of third-party applications on Android devices have access to confidential information collected by Google and...
Python: Affected by Critical IP Address Validation Vulnerability
The critical IP address validation vulnerability in the Python standard library ipaddress is similar to the bug that was discovered...
Spam and phishing in Q1 2021
Quarterly highlights Banking phishing: new version of an old scheme In Q1 2021, new banking scams appeared alongside ones that...
Most Common Causes of Data Breach and How to Prevent It
Which are the most common causes of a Data Breach and how to prevent It? How can organizations prevent it?...
Experian API exposed credit scores of tens of millions of Americans
Experian API exposed credit scores of tens of millions of Americans due to a weakness with a partner website. Anyone...
Threat Report Portugal: Q1 2021
The Threat Report Portugal: Q1 2021 compiles data collected on the malicious campaigns that occurred from January to March, Q1, of 2021....
Chinese APT Actors Attack Russian Defense In An Espionage Attack
An earlier anonymous backdoor malware, called PortDoor, is probably being used by Chinese APT (advanced persistent threat) hackers to attack...
