Hikvision cameras could be remotely hacked due to critical flaw
A critical issue, tracked as CVE-2021-36260, affects more than 70 Hikvision device models and can allow attackers to take over...
Security
MSHTML attack targets Russian state rocket centre and interior ministry
Malwarebytes has reason to believe that the MSHTML vulnerability listed under CVE-2021-40444 is being used to target Russian entities. The...
Patch now! Insecure Hikvision security cameras can be taken over remotely
In a detailed post on Github, security researcher Watchful_IP describes how he found that the majority of the recent camera...
Patch vCenter Server “right now”, VMWare expects CVE-2021-22005 exploitation within minutes of disclosure
VMware is urging users of vCenter server to patch no fewer than 19 problems affecting its products. These updates fix...
No, Colonel Gaddafi’s daughter isn’t emailing to give you untold riches
It’s not every day you receive a big money offer from someone claiming to sit in political asylum, but here...
Google, geofence warrants, and you
Another day, another example of how the data sharing choices we make can come back to haunt us. The Guardian...
IT expert warned about the danger of pirated files downloaded via torrent
Sergey Ivanov, Director of Product Strategy at T1 Group, said that pirated files downloaded by users via torrent trackers may...
Anonymous Hacking Group Targets Controversial Web Hoster Epik
US-based web host and domain registrar Epik has confirmed an “unauthorized intrusion” in its systems, a week after members of...
pNetwork Suffered Loss In Bitcoins Worth $12 Million
While Hackers allegedly violated the protocol and seized $12.7 million in Bitcoin, pNetwork thus became the newest victim of the...
Russian Electronic Voting System Struck by 19 DDoS Attacks in One Day
Yandex, the Russian technology and search engine powerhouse, disclosed last week that it had been hit by one of the...
FTC: Health App and Device Makers Should Comply With Health Breach Notification Rule
The Federal Trade Commission on 15th September authorized a policy statement reminding makers of health applications and linked devices that...
AES256_Passwd_Store – Secure Open-Source Password Manager
This script securely encrypts or decrypts passwords on disk within a custom database file. It also features functionality to retrieve...
DirSearch – A Go Implementation Of Dirsearch
This software is a Go implementation of the original dirsearch tool written by Mauro Soria. DirSearch is the very first...
Flaws in Nagios Network Management systems pose risk to companies
Researchers found multiple flaws in widely used network management products from Nagios that pose serious risk to organizations. Researchers from...
VMware addressed a critical flaw in vCenter Server. Patch it now!
VMware addressed a critical arbitrary file upload vulnerability that affects the default configuration of vCenter Server 6.7 and 7.0 deployments....
A zero-day flaw allows to run arbitrary commands on macOS systems
Security researchers disclosed a new zero-day flaw in Apple’s macOS Finder that can allow attackers to run arbitrary commands on...
Turla APT group used a new backdoor in attacks against Afghanistan, Germany and the US
Russia-linked cyber espionage group Turla made the headlines again, the APT has employed a new backdoor in a recent wave...
Internet safety tips for kids and teens: A comprehensive guide for the modern parent
When it comes to picking a new device for your child, it’s often difficult to know where to start. Whether...
New Mac malware masquerades as iTerm2, Remote Desktop and other apps
Last week, security researcher Patrick Wardle released details of a new piece of malware masquerading as the legitimate app iTerm2....
35 yrs Of Imprisonment for the Administrator of 200,000 DDoS Attacks
After a 9-day trial, a California jury that held two distributed denial of service (DDoS) operations administrators, found him guilty....
Pakistani Scammer Sentenced to 12 Years in $200 Million Phone-Fraud Scheme
AT&T, the world’s largest telecommunications firm, lost over $200 million after a Pakistani scammer and his partners coordinated a seven-year...
Payment API Flaws Exposed Millions of Users’ Data
Researchers discovered API security flaws impacting several apps, potentially exposing the personal and financial information of millions of consumers. According to...
$100 Million Pledged by Google to Groups that Manage Open-Source Projects
Google recently announced a $100 million donation to organizations that manage open-source security priorities and assist with vulnerability fixes, and...
Detection evasion in CLR and tips on how to detect such attacks
In terms of costs, the age-old battle that pits attacker versus defender has become very one sided in recent years....
