Information Security News|Cyber Security|Hacking Tutorial

PayPal XSS Vulnerability Found, Fixed Before Being Exploited

On: September 2, 2015

A stored XSS vulnerability was identified and reported by Bitdefender’s staff to PayPal, one that could have been easily used by hackers as an entry point for further attacks. WeRead More →

UPnP Trouble Puts Devices Behind Firewall at Risk

On: September 2, 2015

In: Vulnerabilities

Security vulnerabilities in UPnP continue to crop up and continue to put millions of home networking devices at risk for compromise. The latest was revealed in early August, but promptedRead More →

Hidden password-stealing malware lurking in your GPU card? Intel Security thinks not

On: September 2, 2015

In: Malware

Fears that malware is hiding in people’s graphics chipsets may be overclocked, according to Intel Security. Earlier this year, researchers from the self-styled “Team JellyFish” released a proof-of-concept software nastyRead More →

Microsoft slips user-tracking tools into Windows 7, 8 amidst Windows 10 privacy storm

On: September 1, 2015

In: Data Security, Important

Worried about Windows 10’s deep-reaching user tracking? Some of it’s coming to Windows 7 and 8, too. Windows 10 is a deliciously good operating system, all things considered, but itsRead More →

Lizard Squad cyber-attackers disrupt National Crime Agency website

On: September 1, 2015

In: Important, Incidents

Cyber-attackers launch Distributed Denial of Service (DDoS) violation on law enforcement agency in apparent revenge for previous arrests. Cyber-attackers have taken down the website of the National Crime Agency (NCA)Read More →

Shifu: ‘Masterful’ New Banking Trojan Is Attacking 14 Japanese Banks

On: September 1, 2015

In: Important, Malware

A brand-new advanced banking Trojan discovered in the wild has been named “Shifu” by IBM Security X-Force, after the Japanese word for thief. The malware appears to have been activeRead More →

ORX Locker, the new Darknet Ransomware-as-a-service platform

On: September 1, 2015

In: Data Security, Important, Malware

Security experts at Sensecy have uncovered ORX-Locker, a Darknet Ransomware-as-a-service platform that could allow everyone to become a cyber criminal. It is becoming even easier to become a cyber-criminal thanksRead More →

CoreBot Malware Steals Credentials-For Now

On: September 1, 2015

In: Malware

A new piece of data-stealing malware has a real thirst for credentials—and the potential for worse trouble down the line. IBM today published a report on CoreBot, generic information-stealing malwareRead More →

Malware infecting jailbroken iPhones stole 225,000 Apple account logins

On: September 1, 2015

In: Malware, Mobile Security, Vulnerabilities

A newly discovered malware family that preys on jailbroken iPhones has collected login credentials for more than 225,000 Apple accounts, making it one of the largest Apple account compromises toRead More →

Hackers Linked to Russian Government Impersonate EFF Website to Spread Malware

On: August 31, 2015

In: Important, Malware

The Electronic Frontier Foundation (EFF) has issued an alert, urging users to watch out for a spear phishing email campaign that’s infecting victims with the Sednit malware. This was broughtRead More →

PayPal XSS Vulnerability Found, Fixed Before Being Exploited

UPnP Trouble Puts Devices Behind Firewall at Risk

Hidden password-stealing malware lurking in your GPU card? Intel Security thinks not

Microsoft slips user-tracking tools into Windows 7, 8 amidst Windows 10 privacy storm

Lizard Squad cyber-attackers disrupt National Crime Agency website

Shifu: ‘Masterful’ New Banking Trojan Is Attacking 14 Japanese Banks

ORX Locker, the new Darknet Ransomware-as-a-service platform

CoreBot Malware Steals Credentials-For Now

Malware infecting jailbroken iPhones stole 225,000 Apple account logins

Hackers Linked to Russian Government Impersonate EFF Website to Spread Malware

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Nigeria spends more than any other African country in spying its citizens

How to Hack Bank’s Voice Recognition System – Voice Biometrics with DeepFake Voice Cloning

Step by step process of hacking ATMs using black box. ATM jackpotting

CVE-2022-23093 FreeBSD vulnerability allows remote execution of malware on devices including PlayStation, WhatsApp etc

Zero day Privilege escalation flaw CVE-2022-4139 (CVSS score: 7.0), impacts Linux kernel

Critical RCE vulnerability in Oracle Fusion Middleware is being exploited by adversaries in the wild

New Acer UEFI firmware vulnerability (CVE-2022-4020) makes Antivirus or EDR useless in Acer laptops

New Zero Day Heap buffer overflow in GPUVulnerability in Google Chrome

Top 8 Free Tools for security testing and audit of your Kubernetes cluster in 2022

3 Techniques that allow bypassing phishing emails through Cisco Secure Email Gateway and are being actively used by ransomware gangs

RedEye: A great opensource cyber security Log Visualization tool for Red and Blue teams

How to easily spoof mac address automatically and be more anonymous

How to Use Advanced Network Intelligence Toolkit for Pentesting: badKarma

Tutorial for pentesting Android apps using the free ZANTI toolkit

5 best free API security testing tools. Protecting your cloud CI/CD Pipeline

How to find zero-day vulnerabilities with Fuzz Faster U Fool (ffuf): Detailed free fuzzing tool tutorial

How to do professional vulnerability assessment on your website for free using Juice Shop?

How to do local privilege escalation attacks on Windows to brute force the local administrator account?

Wiper malware destroyed data of multiple Russian government agencies

KmsdBot, new botnet infects systems via an SSH & targets the gaming industry, technology industry, and luxury car manufacturers

This ransomware can steal your Veeam credentials and encrypt your backups

Ransomware LockBit 3.0 code leaked on GitHub. Now Anyone can start their ransomware business

Ransomware gang DEV-0270 now using Windows BitLocker function to encrypt devices

Cyber Security Channel

Nigeria spends more than any other African country in spying its citizens

How to Hack Bank’s Voice Recognition System – Voice Biometrics with DeepFake Voice Cloning

Step by step process of hacking ATMs using black box. ATM jackpotting