Recently, researchers unveiled a DNS hijacking campaign that was found to spread malware from banking Trojans to Android smartphone users mostly in Asia, which has now extended its reach toRead More →
After a fairly long development process and quite a few updates, the release is ready; Parrot 4.0 is now available for download. According to information security experts, the new version includes theRead More →
A team of experts from Eclypsium presented a new variation of the Spectre attack, which allows attackers to recover the data hosted within the CPU system management mode. Information security researchersRead More →
A malicious actor was found operating outside of China, selling the data of approximately 200 million Japanese users in a clandestine cybercrime forum, according to a FireEye iSIGHT Intelligence report.Read More →
The debate of the First Congressional District of California, transmitted by an online forum, was hacked by unknown malicious actors, after the statements of the participants Lewis Elbinger of GreenRead More →
In an unusual case someone managed to develop a malware attack that, with one click, exploits separate zero-day vulnerabilities in two different pieces of software. Even more exceptional is thatRead More →
Drupal is one of the most popular Content Management Systems (CMS), along with WordPress and Joomla. In late March 2018, Drupal was affected by a major remote code execution vulnerabilityRead More →
Kali Linux is the most popular penetration testing and hacking Linux distroibution and Ubuntu is the most popular Linux distribution. Since it is kind of common knowledge that Linux is a more convenientRead More →
SQL (Structured Query Language) is a popular programming language for managing data kept in relational databases. However, the databases can be breached when an attacker adds SQL statements that attemptRead More →
Each security analysis of a web application must include the steps recommended by computer security experts. The vulnerability analysis tools developed by the International Institute of Cyber Security follow theRead More →
In May, security experts found vulnerability in the LocationSmart website that allowed, without authentication, to obtain the real-time location of cell phones in the United States. The vulnerability has beenRead More →
Google launched a free DDoS protection platform named Project Shield, to protect news sites and freedom of expression, with the aim of defending democratic processes. According to information security researchers, this newRead More →
The professionals explain that DNSBin is a tool used to test the filtering of data through DNS and helps to test vulnerabilities such as RCE or XXE when the environmentRead More →
A former CIA engineer is being accused of handing the documents from the Vault 7 series to WikiLeaks. The US government claims to have identified the malicious actor who allegedlyRead More →
A joint work of Chinese and American information security professionals found a new method to attack smart personal assistants like Amazon Alexa and Google Home, whom they called “squatting voice”.Read More →
The login details of a company that buys phone location data from major telecom companies have been provided and then sold to the police. According to information security experts, a hacker brokeRead More →
Red Hat recently announced a severe vulnerability in its DHCP client, CVE-2018-1111 could be exploited by malicious actors to execute arbitrary commands with administrator privileges on specific systems. A memberRead More →
Information security experts at the Kromtech Security Center found personal and confidential data belonging to between 15,000 and 20,000 Indian participants from the 2015-2018 cricket seasons. The authority that should protectRead More →
Today, we are all aware of the means that governments use to spy on citizens, but this should not be so simple. To allow surveillance; by law, authorities must provideRead More →
Recently, Lenovo released security patches for the CVE-2017-3775 high-severity vulnerability in the Secure Boot function on System x servers. Information security researchers commented that standard operator settings disable signature verification, asRead More →
