Google addresses Chrome zero-day flaw actively exploited in the wild
Google has addressed an actively exploited zero-day vulnerability, tracked as CVE-2021-21148, with the release of the Chrome 88.0.4324.150 version. Google released...
News
Matryosh DDoS botnet targets Android-Based devices via ADB
Netlab researchers spotted a new Android malware, dubbed Matryosh, that is infecting devices to recruit them in a distributed denial-of-service...
Putin instructed to develop additional requirements for foreign IT companies
Russian President Vladimir Putin instructed his administration and the government to develop proposals for additional requirements for foreign IT companies...
E-Commerce Theft: Dark Web Card Payment Store ValidCC Shut Down
A dark web market handled by a cybercrime group, Valid CC has been hacking online merchants and stealing payment credentials...
Singapore Assessing WhatsApp Privacy Policy Change, Not ‘Adversely Affected’ In SolarWinds Breach
Currently, it is safe to say that Singapore’s government and non-government departments are safe from the adverse effects of SolarWinds...
Outdated Magneto 1 Witnessed Credit Card Skimming Threats
Magento is an open-source code e-commerce site that supplies online traders with a scalable shopping cart system, and managing their...
New Method to Perform XS-Leak Side Channel Attacks Disclosed
Luan Herrera, a cybersecurity expert committed to vulnerability reporting, detailed another approach to performing a side-channel assault variant known as...
How kids coped with COVID-hit winter holidays
Due to the pandemic situation in late 2020, street festivities got canceled worldwide. For many families, get-togethers with grandparents over...
Cisco Patches Recently Disclosed “sudo” Vulnerability (CVE-2021-3156) in Multiple Products
The “sudo” advisory is officially presented as “Sudo Privilege Escalation Vulnerability Affecting Cisco Products: January 2021” and affects pretty much...
Hackers accessed Stormshield data, including source code of ANSSI certified products
The provider of network security products Stormshield discloses data breach, threat actors stole information on some of its clients. Stormshield...
SonicWall released patch for actively exploited SMA 100 zero-day
SonicWall has released a security patch to address the zero-day flaw actively exploited in attacks against the SMA 100 series...
Cisco fixes critical remote code execution issues in SMB VPN routers
Cisco addressed multiple pre-auth remote code execution (RCE) flaws in small business VPN routers that allow executing arbitrary code as...
TIM’s Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded
Researchers from TIM’s Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded Italy...
Alleged China-linked hackers used SolarWinds bug to breach National Finance Center
Alleged China-linked hackers have exploited a flaw in the SolarWinds Orion software to hack systems at the U.S. National Finance...
Would real identities make social media safer?
“Use real identities to reduce abuse online” is a talking point you’ve almost certainly seen down the years. It also...
Browser sync—what are the risks of turning it on?
Modern browsers include synchronization features (like Google Chrome’s Sync) so that all your browsers, on all your devices, share the...
The number of crimes with bank cards in Russia has increased by 5.5 times
Last year, 510.4 thousand crimes committed using information and telecommunications technologies were registered in Russia. According to the data of...
Chinese Firms Infiltrates into U.S. Healthcare Data
The gulf between the two most powerful nations has widened after the United States National Counterintelligence and Security Center (NCSC)...
Rasmus Myhrberg Won The Award For #1 “New Tool of the Year”!
Simple, a time tracking software wins #1 New Tool of the Year (2020). Major tech website "Stackshare" recently announced its...
Wind River Security Incident Exposed Personnel Records, SSNs, Passport Numbers
Wind River Systems, on Friday, cautioned of a "security incident" that had exposed personnel records. Wind River Systems, otherwise called...
Sprite Spider Emerging as One of The Most Destructive Ransomware Threat Actors
Recently, two CrowdStrike cybersecurity leads during a Cyber Threat Intelligence Summit at the SANS – Senior Security Researcher Sergei Frankoff, and Senior...
SonicWall SNWLID-2021-0001 Zero-Day and SolarWinds’ 2021 CVE Trifecta: What You Need to Know
Not content with the beating it laid down in January, 2021 continues to deliver with an unpatched zero-day exposure in...
Vulnerability Scanning With the Metasploit Remote Check Service (Beta Release)
InsightVM and Nexpose customers can now harness the power of the Metasploit community to assess their exposure to the latest...
Recently discovered CVE-2021-3156 SUDO bug also affects macOS Big Sur
Experts warn that the recently discovered heap-based buffer overflow bug in Linux SUDO also impacts the latest version of Apple...
