Steam’s built-in browser runs in a no-sandbox mode. The latest version of the Steam gaming client is employing an outdated Web browser that puts users at risk due to unpatched vulnerabilitiesRead More →
Banking malware is using techniques once reserved for state-sponsored hacking gangs. To appreciate how malware targeting banks and other financial institutions is adopting sophisticated techniques once reserved for state-sponsored spiesRead More →
Tor Project patches critical bug but refuses to acknowledge the bug discovery by a security researcher. Tor Project’s website had a critical cross-site scripting (XSS) vulnerability which if exploited by a potentialRead More →
A hacker accessed an employee’s email account at the Department of Justice and stole 200GB of files including records of 9,000 DHS staffers and 20,000 FBI employees. Yesterday, the dataRead More →
Oracle patches Java installer against DLL hijacking issue. Oracle has released new Java installers to fix a well-known security issue (CVE-2016-0603) that also affects o plethora of other applications, from WebRead More →
During a recent penetration test, I was performing some packet captures and noticed some unencrypted Microsoft SQL Server (MSSQL) traffic. The syntax was unmistakable. At first I thought this might beRead More →
New WhatsApp scam deceives users into opening malware sent by ‘friends’. WhatsApp, the world’s largest cross-platform messaging app has allegedly been the target of a new scam, which misleads usersRead More →
T9000 can also steal files from your hard drives. A new backdoor trojan is making the rounds, coming equipped with features that allow it to steal files, take screengrabs, and recordRead More →
Russian authorities raided offices of a Russian film distribution and production company as part of an operation against the Dyre gang. Russian law enforcement and intelligence agencies in November raidedRead More →
Spam campaign targets Portuguese-speaking firms in Brazil and other regions to deliver malware and steal sensitive data. Symantec has observed an ongoing spam campaign targeting Brazil-based companies and other firmsRead More →
