Information Security News|Cyber Security|Hacking Tutorial

qkG Filecoder: Self-Replicating, Document-Encrypting Ransomware

On: November 24, 2017

We encountered a few interesting samples of a file-encoding ransomware variant implemented entirely in VBA macros called qkG (detected by Trend Micro as RANSOM_CRYPTOQKG.A). It’s a classic macro malware infectingRead More →

Android commercial spyware

On: November 24, 2017

In: Mobile Security

There’s certainly no shortage of commercial spying apps for Android, with most positioned as parental control tools. In reality, however, these apps barely differ from spyware, with the exception perhapsRead More →

HP patches severe code execution bug in enterprise printers

On: November 23, 2017

In: Vulnerabilities

The vulnerability could be exploited to perform remote code execution. HP has issued firmware patches to fix a security flaw which allowed attackers to perform remote code execution attacks onRead More →

Ubuntu 17.10 Users Get Major Kernel Update, 20 Security Vulnerabilities Patched

On: November 23, 2017

In: Vulnerabilities

After releasing the new kernel update for Ubuntu 16.04 LTS (Xenial Xerus) systems to patch 13 security vulnerabilities, Canonical announced the availability of a major kernel update for Ubuntu 17.10. IfRead More →

Top Websites Are Using Keyloggers Recording Even Passwords, Research Shows

On: November 23, 2017

In: Malware

Well over 400 high profile websites are collecting all the keys that you’ve pressed, and it turns out that most of them don’t even know about it. When we hearRead More →

Alternative methods of becoming SYSTEM

On: November 22, 2017

In: Incidents

For many pentesters, Meterpreter’s getsystem command has become the default method of gaining SYSTEM account privileges, but have you ever have wondered just how this works behind the scenes? In this postRead More →

Uber concealed hack of 57 million accounts for more than a year

On: November 22, 2017

In: Data Security

The company’s former chief security officer kept the hack a secret. Uber concealed a massive data breach for more than a year, according to a report by Bloomberg. Hackers stole names, emailRead More →

Intel security flaws put laptops, servers and storage at risk of hacking

On: November 21, 2017

In: Vulnerabilities

Bugs in Intel’s firmware allow remote code execution, data exfiltration and more. Bugs in the underlying firmware of multiple Intel chip families have left laptops, servers and storage appliances vulnerableRead More →

ATM malware: Gang behind Euro attacks targeted in police swoops

Adwind remote access Trojan makes a comeback and it’s got smarter

On: November 21, 2017

In: Malware

The Adwind cross-platform, malware-as-a-service Trojan has been around since 2012. Spread by phishing emails claiming to be invoices, purchase orders, and requests for quotations, it’s aimed at high value targetsRead More →

Fully undetectable backdooring PE files

On: November 21, 2017

In: Malware

During Penetration testing engagement you are required to backdoor a specific executable with your own shellcode without increasing the size of the executable or altering its intended functionality and hopefullyRead More →

qkG Filecoder: Self-Replicating, Document-Encrypting Ransomware

Android commercial spyware

HP patches severe code execution bug in enterprise printers

Ubuntu 17.10 Users Get Major Kernel Update, 20 Security Vulnerabilities Patched

Top Websites Are Using Keyloggers Recording Even Passwords, Research Shows

Alternative methods of becoming SYSTEM

Uber concealed hack of 57 million accounts for more than a year

Intel security flaws put laptops, servers and storage at risk of hacking

Adwind remote access Trojan makes a comeback and it’s got smarter

Fully undetectable backdooring PE files

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

This Hidden Comet/Atlas AI Browser Flaw That Hackers Are Exploiting

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Forget Metasploit: Inside Predator’s Zero-Click Advertising-Driven Phone Hacking System

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Live Malware Code Mutation: How AI Generates Evasive Malware

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

Cyber Security Channel

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022