Expert found a 1-Click RCE in the TikTok App for Android
Egyptian security researcher Sayed Abdelhafiz discovered multiple bugs in TikTok Android Application that can be chained to achieve Remote code...
News
Reading the FBI IC3’s ‘2020 Internet Crime Report’
The FBI’s Internet Crime Complaint Center has released its annual report, the 2020 Internet Crime Report, which includes data from 791,790 complaints...
Prime Minister Boris Johnson wants to enhance UK cyber capabilities
Prime Minister Boris Johnson declared that Britain needs to boost its cyber capability to conduct cyber attacks on foreign hostile...
Data Breaches Tracker monitor unsecured ElasticSearch servers online
Cybersecurity research at WizCase, an online security and privacy portal, built a tool to track accessible ElasticSearch servers on the internet. ...
Mother charged with using deepfakes to shame daughter’s cheerleading rivals
A Pennsylvania woman reportedly sent doctored photos and videos of her daughter’s cheerleader rivals to their coaches, in an attempt...
Apple shines and buffs Mac security—Is it enough to stop today’s malware?
There’s a lot going on in the Mac security world lately. Over the last few months, Apple has ramped up...
FBI warns of increase in PYSA ransomware attacks targeting education
On March 16, the Federal Bureau of Investigation (FBI) issued a “Flash” alert on PYSA ransomware after an uptick on...
The first IPO of a cybersecurity company is being prepared in Russia
Russian cybersecurity company Positive Technologies is about to conduct an initial public offering (IPO) on the Moscow Stock Exchange. In...
FBI Warns of PYSA Ransomware Attacks on Educational Institutions
The Federal Bureau of Investigation (FBI) has issued a warning notifying of an increase in PYSA ransomware attacks targeting educational...
Privacy Essentials Vulnerabilities in the DuckDuckGo Browser Extension
DuckDuckGo, the widely used web extension for Chrome and Firefox, that is meant to protect the privacy of its users...
New ZHtrap botnet uses honeypot to find more victims
Netlab 360 experts discovered a new Mirai-based botnet dubbed ZHtrap that implements honeypot to find more victims. Researchers from Netlab...
FBI warns of PYSA Ransomware attacks against Education Institutions in US and UK
The FBI has issued an alert to warn about an increase in PYSA ransomware attacks on education institutions in the...
SolarWinds hackers stole some of Mimecast source code
Cybersecurity firm Mimecast confirmed that SolarWinds hackers who breached its network stole some of its source code. Back in December,...
New Mirai variant appears in the threat landscape
Palo Alto researchers uncovered a series of ongoing attacks to spread a variant of the infamous Mirai bot exploiting multiple...
Magecart hackers hide captured credit card data in JPG file
Crooks devised a new method to hide credit card data siphoned from compromised e-stores, experts observed hackers hiding data in...
Teen behind 2020 Twitter hack pleads guilty
The so-called “mastermind” behind the 2020 Twitter hack that compromised the accounts of several celebrities and public figures—including President Barack...
ProxyLogon PoCs trigger a game of whack-a-mole
As we reported recently, the use of the Microsoft Exchange Server ProxyLogon vulnerabilities has gone from “limited and targeted attacks”...
Careers in cybersecurity: Malwarebytes talks to teachers and students
Every year, I take part in talks for universities and schools. The theme is often breaking into infosec. I give...
DeFi Platforms PancakeSwap, Cream Finance hit by DNS Attack
DeFi platforms PancakeSwap and Cream Finance cautioned clients on Monday that they were hit by domain name system (DNS) hijackings....
‘Black Shadow’ Infiltrates Israeli Finance Firm, Demand $570,000 in Ransom
The private information of thousands of Israelis was compromised on Saturday following a cyberattack on the database of a major...
32 Indian Organisations Attacked by Hackers via Microsoft Exchange Server
A new study published last Monday on 8th March cautioned stating that financial and banking institutions in India have been...
Rapid7 Announces Release of New tCell Amazon CloudFront Agent
Cloud-native approaches to building, hosting, and delivering web applications are growing rapidly. Content delivery networks (CDNs) such as Amazon CloudFront...
Microsoft releases On-premises Mitigation Tool (EOMT) tool to fix ProxyLogon issues
Microsoft released an Exchange On-premises Mitigation Tool (EOMT) tool to small businesses for the fix of ProxyLogon vulnerabilities. On March...
Is there a link between Microsoft Exchange exploits and PoC code the company shared with partner security firms?
Microsoft is reportedly investigating whether the recent attacks against Microsoft Exchange servers could be linked to information leaked by a...
