Information Security News|Cyber Security|Hacking Tutorial

ADVANTECH PATCHES WEBACCESS REMOTE CODE EXECUTION FLAWS

On: June 23, 2016

Advantech has published a new version of its WebAccess product to address vulnerabilities that put installations at risk to remote code execution attacks. Exploiting the vulnerabilities would be a challenge,Read More →

Firm pays $950,000 penalty for using Wi-Fi signals to secretly track phone users

On: June 23, 2016

In: Data Security

InMobi ad network, which reaches more than 1 billion devices, settles FTC charges. A mobile advertising company that tracked the locations of hundreds of millions of consumers without consent hasRead More →

Zimbra Ransomware written in Python targets Zimbra Mail Store

On: June 23, 2016

In: Malware

A new ransomware was discovered that is written in Python and targets theZimbra enterprise collaboration software. Reported by one of our visitors, this ransomware targets the Zimbra email message store folder and encryptsRead More →

Hackers hit central banks in Indonesia and South Korea

On: June 22, 2016

In: Incidents

The central banks of Indonesia and South Korea have been hit by distributed denial of service attacks on their public websites, with officials linking the timing of the attacks toRead More →

3 Million Strong Botnet Grows Right Under Twitter’s Nose

On: June 22, 2016

In: Data Security, Vulnerabilities

There’s something fishy about this botnet. Social media and advertising fraud investigations firm Sadbottrue has discovered a botnet of three million Twitter accounts, along with two smaller botnets of 100,000 botsRead More →

JScript-toting Ransomware Can Steal Your Passwords and Bitcoin Wallets, Too

On: June 22, 2016

In: Incidents, Malware

In an effort to develop a target base and increase the conversion rate of victims, ransomware perpetrators will try to veer away from well-known families and create new family sportingRead More →

‘GODLESS’ Mobile Malware Uses Multiple Exploits to Root Devices

On: June 22, 2016

In: Important, Malware, Mobile Security, Vulnerabilities

We came across a family of mobile malware called Godless (detected as ANDROIDOS_GODLESS.HRX) that has a set of rooting exploits in its pockets. By having multiple exploits to use, GodlessRead More →

Former Twitter CEO Dick Costolo was hacked

On: June 21, 2016

In: Incidents

OurMine, the same group that hacked Mark Zuckberg’s Pinterest and Twitter accounts, seems to be behind it. Even the former CEO of Twitter isn’t protected from the occasional security hack.Read More →

Malware uses Google Talk to make malicious phone calls

On: June 21, 2016

In: Malware, Mobile Security

We found a new piece of mobile malware, Android/Trojan.Pawost, that’s using Google Talk to make malicious calls. As soon as the malicious app is opened, a blank Google Talk iconRead More →

Apple Disables Old Flash Player Versions Due to Security Vulnerabilities

On: June 21, 2016

In: Vulnerabilities

Users are now prompted to update to the latest version. Apple is now blocking older versions of Adobe’s Flash Player because of security vulnerabilities that were patched in the most recentRead More →

ADVANTECH PATCHES WEBACCESS REMOTE CODE EXECUTION FLAWS

Firm pays $950,000 penalty for using Wi-Fi signals to secretly track phone users

Zimbra Ransomware written in Python targets Zimbra Mail Store

Hackers hit central banks in Indonesia and South Korea

3 Million Strong Botnet Grows Right Under Twitter’s Nose

JScript-toting Ransomware Can Steal Your Passwords and Bitcoin Wallets, Too

‘GODLESS’ Mobile Malware Uses Multiple Exploits to Root Devices

Former Twitter CEO Dick Costolo was hacked

Malware uses Google Talk to make malicious phone calls

Apple Disables Old Flash Player Versions Due to Security Vulnerabilities

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Hacking with MagicDots: Exploiting Dots & Spaces in Filenames/Pathnames for Permanent Admin Rights

Compromising Cryptographic Key Security Through PuTTY: A Deep Dive into CVE-2024-31497

How to hack a LG Smart TV via vulnerabilities in LG WebOS?

How to Check if a Linux Distribution is Compromised by the XZ Utils Backdoor in 6 Steps

CVE-2023-5528: Kubernetes Flaw Jeopardizing Windows Node That Can’t Be Ignored

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

The API Security Checklist: 10 strategies to keep API integrations secure

11 ways of hacking into ChatGpt like Generative AI systems

How to send spoof emails from domains that have SPF and DKIM protections?

Silent Email Attack CVE-2023-35628 : How to Hack Without an Email Click in Outlook

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

How to exploit Windows Defender Antivirus to infect a device with malware

Inside the Scam: How Ransomware Gangs Fool You with Data Deletion Lies!

How to Bypass EDRs, AV with Ease using 8 New Process Injection Attacks

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]