Bank trojan twin pivots to smash supply chain biz. The formidable Dyreza and Dridex banking malware are back in renewed and rejigged macro-based campaigns that includes a shift by theRead More →
A recent spam campaign is leading users to a fake PayPal app which steals their real credentials, but also comes hard-coded to target other mobile banking applications. With more andRead More →
Even worse: Thousands of other sites are making the same facepalm-worthy mistake. Five days before Patreon.com officials said their donations website was plundered by hackers, researchers at a third-party securityRead More →
Two kernel vulnerabilities were left unpatched on older devices running Android Jelly Bean and KitKat. QuarksLAB, a security research company based in Paris, France, has stumbled upon two kernel vulnerabilities inRead More →
After a few critical bugs were recently discovered and patched in the core WordPress engine—a rarity with WordPress-related security issues—order has apparently been restored with the discovery of a criticalRead More →
SCHAUMBURG, Ill. — Credit-reporting agency Experian said on Thursday that hackers accessed the Social Security numbers, birthdates and other personal information belonging to about 15 million T-Mobile wireless customers. T-MobileRead More →
Apple just released iOS 9.0.2. This new version claims to close the well-publicised Lock screen hole that lets anyone view and edit your contacts, send text messages, and rummage throughRead More →
Ex-Googler Sanmay Ved was lucky enough to grab Google.com domain, but only for a minute. In a detailed post on LinkedIn, the former Google employee said he was learning more aboutRead More →
Car manufacturers including Ford, Toyota, Nissan, Mazda and Volvo plus technology giant Microsoft are just a handful of the 100 major companies set to be outed as sponsors of piracyRead More →
When researcher Joshua Drake published details in August about critical Android vulnerabilities in the Stagefright media playback engine, he promised there would be more issues that he and others wouldRead More →
the security research community has proven like never before that cars are vulnerable to hackers—via cellular Internet connections, intercepted smartphone signals, and even insurance dongles plugged into dashboards. Now anRead More →
Hackers with links to Russia tried to infiltrate Hillary Rodham Clinton’s home e-mail server at least five times — even as other e-mails show her making cavalier jokes about ChineseRead More →
Dark-web deadbeats may not be as anonymous as they think. A bloke in the US was charged on Friday after FBI spyware caught him downloading child sex abuse material. LuisRead More →
Cyber-crime syndicate tried to intimidate antivirus vendor. In some cases, cyber-security work can turn really dangerous, and even deadly, if you manage to disrupt the revenue stream of international crime syndicates.Read More →
Gatekeeper is Mac OS X’s guardian against rogue applications and malware sneaking into Apple’s famous walled garden. It’s also been a favorite target of researchers and advanced attackers desperate toRead More →
Vulnerability allowed hackers to hijack active user sessions.Microsoft Exchange Server has been recently patched to fix an important security vulnerability which would have allowed attackers to gain access to activeRead More →
Threat actors are using a previously discovered distributed denial-of-service (DDoS) attack tool dubbed XOR DDoS to launch upwards of 20 DoS attacks a day against targets in Asia and otherRead More →
SAP patched a dozen holes in its in-memory management system, HANA, that could have led to SQL injection attacks, cross-site scripting (XSS) errors, and memory corruption vulnerabilities. Many of theRead More →
WinRAR, the popular file compression and decompression utility, has a security vulnerability that allows attackers to remotely execute code on the user’s computer when opening an SFX (Self-extracting archive) file.Read More →
The Dyreza Trojan long ago ceased its exclusive focus on stealing banking credentials, and has been blamed for its part in attacks against Salesforce.com customers, webhosts and registrars, online retailersRead More →
