Information Security News|Cyber Security|Hacking Tutorial

iOS 9.3.4 and minor versions are vulnerable to the Trident Exploit

On: August 31, 2016

Its name is the Trident: a chain of zero-day exploits that aim to infect iPhone with commercial spyware. Researchers linked it to the NSO group.Its name is the Trident: aRead More →

Hackers Stole Account Details for Over 60 Million Dropbox Users

On: August 31, 2016

In: Incidents

Hackers have stolen over 60 million account details for online cloud storage platform Dropbox. Although the accounts were stolen during a previously disclosed breach, and Dropbox says it has alreadyRead More →

The Hunt for Lurk

On: August 31, 2016

In: Malware

When we first encountered Lurk, in 2011, it was a nameless Trojan. It all started when we became aware of a number of incidents at several Russian banks that hadRead More →

OSX/Keydnap spreads via signed Transmission application

On: August 31, 2016

In: Incidents, Malware

Last month ESET researchers wrote an article about a new OS X malware called OSX/Keydnap, built to steal the content of OS X’s keychain and maintain a permanent backdoor. AtRead More →

Google Login Page Bug Can Lead to Automatic Malware Download

On: August 30, 2016

In: Important, Incidents, Malware, Vulnerabilities

Google declined to classify this as a security issue. British security researcher Aidan Woods discovered an issue on Google’s login page that allows clever attackers to automatically download files on theRead More →

After Illinois hack, FBI warns of more attacks on state election board systems

On: August 30, 2016

In: Incidents, Vulnerabilities

Concern about more attacks mounting as presidential elections approach. Someone using servers in the US, England, Scotland, and the Netherlands stole voter registration from one state’s Board of Elections website inRead More →

RIPPER ATM MALWARE AND THE 12 MILLION BAHT JACKPOT

On: August 30, 2016

In: Malware

In this blog, FireEye Labs dissects this new ATM malware that we have dubbed RIPPER (due to the project name “ATMRIPPER” identified in the sample) and documents indicators that strongly suggestRead More →

Meet USBee, the malware that uses USB drives to covertly jump airgaps

On: August 30, 2016

In: Important, Incidents, Malware, Mobile Security, Vulnerabilities

Technique works on virtually all USB drives with no modifications necessary. In 2013, a document leaked by former National Security Agency contractor Edward Snowden illustrated how a specially modified USB deviceRead More →

Kaspersky Fixes Bug That Allowed Attackers to Crash Its

On: August 29, 2016

In: Incidents, Vulnerabilities

Kaspersky fixes three DoS flaws, one information leak bug. Russian security vendor Kaspersky Lab has recently patched four vulnerabilities in its flagship product, the Kaspersky Internet Security Suite, which allowed attackersRead More →

Tech Support Scammers Find New Trick to Hijack Chrome Browsers

On: August 29, 2016

In: Incidents

Tech support scams coming as phishing pages that contain fake alerts urging you to call for immediate assistance are common place these days. We collect hundreds of such URLs each day and haveRead More →

iOS 9.3.4 and minor versions are vulnerable to the Trident Exploit

Hackers Stole Account Details for Over 60 Million Dropbox Users

The Hunt for Lurk

OSX/Keydnap spreads via signed Transmission application

Google Login Page Bug Can Lead to Automatic Malware Download

After Illinois hack, FBI warns of more attacks on state election board systems

RIPPER ATM MALWARE AND THE 12 MILLION BAHT JACKPOT

Meet USBee, the malware that uses USB drives to covertly jump airgaps

Kaspersky Fixes Bug That Allowed Attackers to Crash Its

Tech Support Scammers Find New Trick to Hijack Chrome Browsers

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

This Hidden Comet/Atlas AI Browser Flaw That Hackers Are Exploiting

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Forget Metasploit: Inside Predator’s Zero-Click Advertising-Driven Phone Hacking System

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Live Malware Code Mutation: How AI Generates Evasive Malware

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

Cyber Security Channel

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022