Hackers abuse Plex Media servers for DDoS amplification attacks
Netscout experts warn of DDoS-for-hire services abusing Plex Media servers to bounce junk traffic and amplify DDoS attacks. Security researchers from...
News
Barcode Scanner app on Google Play infects 10 million users with one update
Late last December we started getting a distress call from our forum patrons. Patrons were experiencing ads that were opening via...
Android emulator abused to introduce malware onto PCs
Emulators have played a part in many tech-savvy users’ lives. They introduce a level of flexibility that not only allows...
Update now! Chrome patches zero-day that was exploited in the wild
A Chrome patch has been issued with an advisory stating that the Stable channel has been updated to 88.0.4324.150 for...
Serco Affirms Babuk Ransomware Attack
Outsourcing giant Serco has affirmed that parts of its infrastructure in mainland Europe have been hit by a double extortion...
The largest international phishing center has been blocked in Ukraine
As a result of an international special operation, the Office of the Prosecutor General of Ukraine has stopped the activity...
The FSB recorded an attempt to encrypt the data of patients in hospitals in Russia
The deputy director of the National coordination center for computer incidents (NCCI) Nikolay Murashov during a speech at the information...
Scammers are Tricking Consumers via QR Code Phishing Campaign
QR codes - the little Digi squares, an effective tool for contactless transactional activities especially during the Covid-19 pandemic. Quick...
Trucking Company Forward Air Hit by Ransomware, Suffers Heavy Loss of $7.5 Million
Forward Air, a trucking and freight transportation logistics company said that it suffered a ransomware attack of $7.5 million. The...
TeamTNT group uses Hildegard Malware to target Kubernetes Systems
The TeamTNT hacker group has been employing a new piece of malware, dubbed Hildegard, to target Kubernetes installs. The hacking...
Fortinet addresses 4 vulnerabilities in FortiWeb web application firewalls
Security vendor Fortinet has addressed four vulnerabilities in FortiWeb web application firewalls, including a Remote Code Execution flaw. Fortinet has...
Google addresses Chrome zero-day flaw actively exploited in the wild
Google has addressed an actively exploited zero-day vulnerability, tracked as CVE-2021-21148, with the release of the Chrome 88.0.4324.150 version. Google released...
Matryosh DDoS botnet targets Android-Based devices via ADB
Netlab researchers spotted a new Android malware, dubbed Matryosh, that is infecting devices to recruit them in a distributed denial-of-service...
Putin instructed to develop additional requirements for foreign IT companies
Russian President Vladimir Putin instructed his administration and the government to develop proposals for additional requirements for foreign IT companies...
E-Commerce Theft: Dark Web Card Payment Store ValidCC Shut Down
A dark web market handled by a cybercrime group, Valid CC has been hacking online merchants and stealing payment credentials...
Singapore Assessing WhatsApp Privacy Policy Change, Not ‘Adversely Affected’ In SolarWinds Breach
Currently, it is safe to say that Singapore’s government and non-government departments are safe from the adverse effects of SolarWinds...
Outdated Magneto 1 Witnessed Credit Card Skimming Threats
Magento is an open-source code e-commerce site that supplies online traders with a scalable shopping cart system, and managing their...
New Method to Perform XS-Leak Side Channel Attacks Disclosed
Luan Herrera, a cybersecurity expert committed to vulnerability reporting, detailed another approach to performing a side-channel assault variant known as...
How kids coped with COVID-hit winter holidays
Due to the pandemic situation in late 2020, street festivities got canceled worldwide. For many families, get-togethers with grandparents over...
Cisco Patches Recently Disclosed “sudo” Vulnerability (CVE-2021-3156) in Multiple Products
The “sudo” advisory is officially presented as “Sudo Privilege Escalation Vulnerability Affecting Cisco Products: January 2021” and affects pretty much...
Hackers accessed Stormshield data, including source code of ANSSI certified products
The provider of network security products Stormshield discloses data breach, threat actors stole information on some of its clients. Stormshield...
SonicWall released patch for actively exploited SMA 100 zero-day
SonicWall has released a security patch to address the zero-day flaw actively exploited in attacks against the SMA 100 series...
Cisco fixes critical remote code execution issues in SMB VPN routers
Cisco addressed multiple pre-auth remote code execution (RCE) flaws in small business VPN routers that allow executing arbitrary code as...
TIM’s Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded
Researchers from TIM’s Red Team Research (RTR) discovered 2 new zero-day vulnerabilities in WordPress Plugin Limit Login Attempts Reloaded Italy...
