An attacker or a rogue employee can create and register custom control panel items and use these files to bypass the Windows AppLocker security feature. AppLocker is a security serviceRead More →
Whenever I get a shell on a Windows system with VMware installed I feel a certain frustration at not being able to access the filesystem of the available virtual machines.Read More →
A photo of a person’s eye taken at a medium distance is more than enough to trick a Samsung Galaxy S8 smartphone, according to researchers from the Chaos Computer ClubRead More →
Check Point researchers revealed a new attack vector which threatens millions of users worldwide – attack by subtitles. By crafting malicious subtitle files, which are then downloaded by a victim’sRead More →
Malware authors have a new UAC bypass technique at their disposal that they can use to install malicious apps on devices running Windows 10. Responsible for discovering this new UACRead More →
Russian authorities have arrested the Cron malware gang, responsible for selling the Tiny.z Android banking trojan and the PonyForx Windows infostealer. The investigation was of massive proportions and authorities arrestedRead More →
On Friday, North Korea denied allegations that it was somehow responsible for the WannaCry ransomware outbreak that affected over 240,000 computers in nearly 200 countries across the globe. Speaking atRead More →
27 people have been arrested by the Europol for jackpotting attacks on ATM across many countries in Europe. Europol has arrested 27 people accused of being involved in a seriesRead More →
A new firmware released for NightHawk R7000 Netgear routers includes a remote data collection feature, here’s how to turn off it. In December, a researcher who used the online moniker AceW0rmRead More →
The simple line of code made it possible for attackers to view private Yahoo Mail images. Yahoo has decided to retire the use of the ImageMagick library following a researcher’sRead More →
The Outlaw Dark Web market has shut down this week under mysterious circumstances, and while admins said the site closed down after a hack, many believe this was just anotherRead More →
NAND flash memory chips, the building blocks of solid-state drives (SSDs), include what could be called “programming vulnerabilities” that can be exploited to alter stored data or shorten the SSD’sRead More →
Fedora, openSUSE and Ubuntu are now available in the Windows Store, making life easier for Windows-dominant organizations to run open source software. I’m a Linux user. And, as the oldRead More →
Hackers got access to usernames, email addresses, and plaintext passwords thanks to improper hashing. DaFont.com was hacked earlier this month, the company announced, exposing its entire database of almost 700,000Read More →
Security researchers have had a busy week since the WannaCry ransomware outbreak that wreaked havoc on computers worldwide. News of the infection and the subsequent viral images showing everything fromRead More →
A tool released on Friday decrypts PCs running a fuller suite of Windows versions. New hope glimmered on Friday for people hit by last week’s virulent ransomware worm after researchersRead More →
Windows XP wasn’t vulnerable to the WannaCry worm but still could be infected with the ransomware. Now there’s a tool to decrypt Windows XP machines attacked by WannaCry. French securityRead More →
We have found evidence of much more sophisticated actors leveraging the NSA ETERNALBLUE exploit to infect, install backdoors and exfiltrate user credentials in networks around the world, including the US,Read More →
BGinfo.exe older than version 4.22 can be used to bypass application whitelisting using vbscript inside a bgi file. This can run directly from a webdav server. My main inspirationRead More →
Steven Frank, co-founder of Panic, a vendor of Mac and iOS apps, has admitted yesterday that a hacker stole some of his company’s source code. Frank says this happened afterRead More →
