FOR YEARS, AUTOMAKERS and hackers have known about a clever attack that spoofs the signal from a wireless car key fob to open a vehicle’s doors, and even drive it away.Read More →
The Google Play Protect team said it identified a new strain of Android spyware called Tizi found inside several apps previously available via the Google Play marketplace. The recent discoveryRead More →
Here’s how to protect yourself until Apple patches bafflingly bad bug. In one of Apple’s biggest security blunders in years, a bug in macOS High Sierra allows untrusted users toRead More →
The Google Play Store is a little more open than its competition, such as the iOS App Store. With the uploading of applications being so cheap, a free SDK toRead More →
We’ve been following the Terror exploit kit during the past few months and observed notable changes in both its redirection mechanism and infrastructure, which have made capturing it in theRead More →
The accused hacked 3 multinational corporations in pursuit of intellectual property. Three men who worked for an Internet security firm in China have been indicted on federal charges for hackingRead More →
Qihoo 360 Netlab researchers reported on Friday that they are tracking an uptick in botnet activity associated with a variant of Mirai. Targeted are ports 23 and 2323 on internet-connectedRead More →
Delete any Image on Facebook When I was checking out facebook’s new features, I noticed that polling feature were added to the posts so I start working onRead More →
Earlier this month, we reported how a Muslim hacking collective named Di5s3nSi0N was able to hack Amaq, one of the key outlets for ISIS propaganda, within hours after they called themselves “unhackable.”Read More →
Imgur, a widely recognized image sharing service most commonly used on Reddit, has revealed that it suffered a data breach as far back as 2014, and claims that it wasRead More →
Researchers at CyberArk Labs have created a post-intrusion attack technique known as a Golden SAML that could allow an attacker to fake enterprise user identities and forge authentication to gainRead More →
Mac malware, Proton, is spreading through a legitimate security company. Security researchers spotted criminals using search poisoning to get more targets and leverage the credibility of Symantec in the industry.Read More →
We encountered a few interesting samples of a file-encoding ransomware variant implemented entirely in VBA macros called qkG (detected by Trend Micro as RANSOM_CRYPTOQKG.A). It’s a classic macro malware infectingRead More →
There’s certainly no shortage of commercial spying apps for Android, with most positioned as parental control tools. In reality, however, these apps barely differ from spyware, with the exception perhapsRead More →
The vulnerability could be exploited to perform remote code execution. HP has issued firmware patches to fix a security flaw which allowed attackers to perform remote code execution attacks onRead More →
After releasing the new kernel update for Ubuntu 16.04 LTS (Xenial Xerus) systems to patch 13 security vulnerabilities, Canonical announced the availability of a major kernel update for Ubuntu 17.10. IfRead More →
Well over 400 high profile websites are collecting all the keys that you’ve pressed, and it turns out that most of them don’t even know about it. When we hearRead More →
For many pentesters, Meterpreter’s getsystem command has become the default method of gaining SYSTEM account privileges, but have you ever have wondered just how this works behind the scenes? In this postRead More →
The company’s former chief security officer kept the hack a secret. Uber concealed a massive data breach for more than a year, according to a report by Bloomberg. Hackers stole names, emailRead More →
Bugs in Intel’s firmware allow remote code execution, data exfiltration and more. Bugs in the underlying firmware of multiple Intel chip families have left laptops, servers and storage appliances vulnerableRead More →
