What does WiFi stand for?
We use WiFi to connect to the Internet, but what is it, and what does it stand for? How does...
Using iPhones and AirTags to sneak data out of air-gapped networks
Someone has found an extraordinary way to exfiltrate data by piggybacking data on the backs of unsuspecting iPhones. Say what?...
The White House believes that the attackers on the Colonial Pipeline are located in Russia
The Russian authorities should take action against the hacker group DarkSide, which, according to Washington, is located in Russia and...
Apple App Store Saved Users $1.5 Billion Worth in Fraud Transactions
Tech giant Apple claimed that the measures taken to detect malicious apps and actions by developers on the App Store...
Fake Chrome App is Being Used as Part of a Cyberattack Campaign
According to researchers at cybersecurity company Pradeo, a new Android malware has been discovered that imitates the Google Chrome software...
Hackers Take Advantage of Adobe Zero-Day Vulnerability Impacting Acrobat Reader
A patch for Adobe Acrobat, the world's most popular PDF reader, addresses a vulnerability that has been actively exploited and...
167 Fake iOS & Android Trading Apps Brought to Light by Researchers
Sophos, a worldwide leader in cybersecurity, has found 167 fake Android and iOS apps that criminals have been using to...
3klCon – Automation Recon Tool Which Works With Large And Medium Scope
Full Automation Recon tool which works with Small and Medium scopes. ّIt's recommended to use it on VPS, it'll discover...
Snuffleupagus – Security Module For Php7 And Php8 – Killing Bugclasses And Virtual-Patching The Rest!
Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest! Snuffleupagus is a PHP 7+ and 8+...
Cisco fixes AnyConnect Client VPN zero-day disclosed in November
Cisco has addressed a zero-day in the Cisco AnyConnect Secure Mobility Client VPN software, with publicly available proof-of-concept exploit code....
Biden signed executive order to improve the Nation’s Cybersecurity
President Joe Biden signed an ambitious executive order to dramatically improve the security of the US government networks. President Biden signed...
US CISA and FBI publish joint alert on DarkSide ransomware
FBI and DHS’s CISA have published a joint alert on DarkSide ransomware activity after the disruptive attack on Colonial Pipeline....
How Companies Need to Treat User Data and Manage Their Partners
After the introduction of CCPA and GDPR, much more attention is given to third-party risks, and the privacy terms and...
Microsoft Patch Tuesday for May 2021 fix 4 critical flaws
Microsoft Patch Tuesday for May 2021 security updates addressed 55 vulnerabilities, four are rated as Critical. Microsoft Patch Tuesday for...
CVE-2021-22209
Summary: An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.8. GitLab was not properly validating...
CVE-2020-36126
Summary: Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by incorrect access control that can lead to remote privilege escalation....
CVE-2021-20986
Summary: A Denial of Service vulnerability was found in Hilscher PROFINET IO Device V3 in versions prior to V3.14.0.7. This...
CVE-2021-31776
Summary: Aviatrix VPN Client before 2.14.14 on Windows has an unquoted search path that enables local privilege escalation to the...
CVE-2020-36128
Summary: Pax Technology PAXSTORE v7.0.8_20200511171508 and lower is affected by a token spoofing vulnerability. Each payment terminal has a session...
WedMeGood – 1,306,723 breached accounts
In January 2021, the Indian wedding planning platform WedMeGood suffered a data breach that exposed 1.3 million customers. The breach...
FragAttack: New Wi-Fi vulnerabilities that affect… basically everything
A new set of vulnerabilities with an aggressive name and their own website almost always bodes ill. The name FragAttack...
Threat spotlight: DarkSide, the ransomware used in the Colonial Pipeline attack
Late last week, the business network systems of Colonial Pipeline, the biggest supplier of fuels on the East Coast of...
Get patching! Wormable Windows flaw headlines Patch Tuesday
It looks like patching a wormable Remote Code Execution (RCE) bug in the HTTP stack of Windows 10 and Windows...
Russian researchers developed methodology to predict cyber risks
Scientists from St. Petersburg Polytechnic University have developed a methodology for assessing cyber risks in smart city systems. The developed...
