Information Security News|Cyber Security|Hacking Tutorial

Content Injection Vulnerability in WordPress 4.7.0 or 4.7.1

On: February 2, 2017

As part of a vulnerability research project for our Sucuri Firewall (WAF), we have been auditing multiple open source projects looking for security issues. While working on WordPress, we discoveredRead More →

Twitter Verify Account Phishing Scam Steals Credentials, Credit Card Data

On: February 2, 2017

In: Important, Incidents, Vulnerabilities

Twitter is now the target of a phishing attack that uses methods to trick brand managers and social influencers into fake account verification. Security firm Proofpoint discovered the phishing attack,Read More →

Windows DRM Files Used to Decloak Tor Browser Users

On: February 2, 2017

In: Incidents, Vulnerabilities

Downloading and trying to open Windows DRM-protected files can deanonymize Tor Browser users and reveal their real IP addresses, security researchers from Hacker House have warned. Attacks using DRM-protected multimediaRead More →

Pentagon Servers Flawed, Easy to Hack

On: February 2, 2017

In: Incidents, Vulnerabilities

The Pentagon has known about the problem for 8 months. The U.S. Department of Defense could be at risk of being attacked by hackers quite easily, one security researcher warns.Read More →

LATEST UBUNTU UPDATE INCLUDES OPENSSL FIXES

On: February 2, 2017

In: Vulnerabilities

Ubuntu users are being urged to update their operating systems to address a handful of recently patched OpenSSL vulnerabilities which affect Ubuntu and its derivatives. Developers with Canonical, the company that oversees theRead More →

Mobile Security Firm Wants to Buy Expired Zero-Days

On: February 1, 2017

In: Mobile Security, Vulnerabilities

Zimperium, the mobile security company that discovered the Stagefright bug in the summer of 2015, announced yesterday its intention to buy fully-working exploits for former Android and iOS zero-days. Zero-daysRead More →

Hacking printers exploiting Cross-site printing (XSP) attacks

On: February 1, 2017

In: Incidents, Vulnerabilities

A group of researchers from the University Alliance Ruhr has found a cross-site printing bug in the old PostScript language. Popular printer models manufactured by Dell, Brother, Konica, Samsung, HP, and LexmarkRead More →

2.5 million XBOX 360 and PSP ISO forum accounts breached

On: February 1, 2017

In: Incidents

An unidentified hacker reportedly breached the XBOX 360 and PlayStation Portable ISO forums compromising 2.5 million gamer accounts. The breaches occurred approximately around September 2015 and compromised email addresses, accountRead More →

These hackers set a ‘trap’ for security researchers probing their malware

On: February 1, 2017

In: Malware

Malicious Word document with ‘Russian doll’ technique targets NATO countries. Security researchers have identified a hacking campaign seemingly targeted at NATO members, which employs a sophisticated method to infect victimsRead More →

In not-too-distant future, brain hackers could steal your deepest secrets

On: February 1, 2017

In: Incidents

Religious beliefs, political leanings, and medical conditions are up for grabs. OAKLAND, Calif.—In the beginning, people hacked phones. In the decades to follow, hackers turned to computers, smartphones, Internet-connected securityRead More →

Content Injection Vulnerability in WordPress 4.7.0 or 4.7.1

Twitter Verify Account Phishing Scam Steals Credentials, Credit Card Data

Windows DRM Files Used to Decloak Tor Browser Users

Pentagon Servers Flawed, Easy to Hack

LATEST UBUNTU UPDATE INCLUDES OPENSSL FIXES

Mobile Security Firm Wants to Buy Expired Zero-Days

Hacking printers exploiting Cross-site printing (XSP) attacks

2.5 million XBOX 360 and PSP ISO forum accounts breached

These hackers set a ‘trap’ for security researchers probing their malware

In not-too-distant future, brain hackers could steal your deepest secrets

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]