Telegram’s Encryption Protocol Detected with Vulnerabilities
A multinational computer team claimed on Friday that the popular encrypted chat app Telegram is detected with four cryptographic vulnerabilities...
Facebook says Iranian Hackers Targeted U.S. Military Personnel
On Thursday, Facebook announced that it had shut down approximately 200 accounts operated by a group of hackers in Iran...
ARTIF – An Advanced Real Time Threat Intelligence Framework To Identify Threats And Malicious Web Traffic On The Basis Of IP Reputation And Historical Data.
ARTIF is a new advanced real time threat intelligence framework built that adds another abstraction layer on the top of...
DNSStager – Hide Your Payload In DNS
DNSStager is an open-source project based on Python used to hide and transfer your payload using DNS. DNSStager will create...
Chinese government issues new vulnerability disclosure regulations
Cyberspace Administration of China (CAC) issued new vulnerability disclosure regulations that oblige experts to report zero-days to the government. The...
Instagram implements ‘Security Checkup’ to help users recover compromised accounts
Instagram introduced a new security feature dubbed “Security Checkup” to help users to recover their accounts that have been compromised....
HelloKitty ransomware gang targets vulnerable SonicWall devices
BleepingComputer became aware that the recent wave of attacks targeting vulnerable SonicWall devices was carried out by HelloKitty ransomware operators....
Security Affairs newsletter Round 323
A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for...
CVE-2021-30553
Summary: Use after free in Network service in Google Chrome prior to 91.0.4472.101 allowed a remote attacker to potentially exploit...
CVE-2021-30554
Summary: Use after free in WebGL in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap...
CVE-2021-30555
Summary: Use after free in Sharing in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to...
CVE-2021-30556
Summary: Use after free in WebAudio in Google Chrome prior to 91.0.4472.114 allowed a remote attacker to potentially exploit heap...
CVE-2021-30557
Summary: Use after free in TabGroups in Google Chrome prior to 91.0.4472.114 allowed an attacker who convinced a user to...
By Fooling a Webcam, Hackers were Able to get Past Windows Hello
Biometric authentication is a critical component of the IT industry's plan to eliminate the need for passwords. However, a new...
Experts: the volume of cryptocurrency fraud in the world has reached $1 billion in a year
In the last year, at least $1 billion worth of digital currency was stolen worldwide. The number of extortion cases...
SpearTip: New Diavol Ransomware Does Steal Data
The Wizard Spider threat organization, which is behind the Trickbot botnet, has been connected to a new ransomware outbreak called...
Toddler Android Banking Malware Spreads Across Europe
Cybersecurity researchers have unearthed a new Android banking Trojan dubbed ‘Toddler’, which is infecting users across Europe. According to the...
Russia Based Company, DDoS – Guard gets Targeted by Cybercriminals
Leaked data for sale through forums and marketplaces in cybercrime appears so frequent that it is essentially unknown, except for...
Cilium – eBPF-based Networking, Security, And Observability
Cilium is open source software for providing and transparently securing network connectivity and loadbalancing between application workloads such as application...
Bughound – Static Code Analysis Tool Based On Elasticsearch
Bughound is an open-source static code analysis tool that analyzes your code and sends the results to Elasticsearch and Kibana...
US govt offers $10 million reward for info on nation-state cyber operations
The US government is offering a $10 million reward to everyone that provides information on operations conducted by nation-state actors....
Cisco fixes high-risk DoS flaw in ASA, FTD Software
Cisco addressed a high severity DoS vulnerability in the Adaptive Security Appliance (ASA) and Firepower Threat Defense (FTD) software. Cisco...
D-Link issues beta hotfix for multiple flaws in DIR-3040 routers
Network equipment vendor D-Link has released a firmware hotfix to fix multiple vulnerabilities in the DIR-3040 AC3000-based wireless internet router. Network equipment...
CVE-2020-13950
Summary: Apache HTTP Server versions 2.4.41 to 2.4.46 mod_proxy_http can be made to crash (NULL pointer dereference) with specially crafted...
