Information Security News|Cyber Security|Hacking Tutorial

Using Google Fonts in a website violates GDPR: New court decision affects 50 million websites

On: February 1, 2022

A couple of weeks ago, a German court imposed a fine of 100 Euros on a website after determining that its administrators violated one of the provisions of the EuropeanRead More →

Crypto company Qubit Finance got hacked. The firm is begging hackers for returning the stolen $78 million USD in cryptocurrency

On: January 31, 2022

In: Incidents

In recent days, cryptocurrency platform Qubit Finance confirmed that its systems were compromised by a group of unidentified threat actors. The platform, specializing in decentralized lending, has even appealed toRead More →

Critical zero-day vulnerability in Windows 10 that allows local privilege escalation to admin: Exploit code published

On: January 31, 2022

In: Vulnerabilities

Cybersecurity specialists recently published an exploit for a local privilege escalation vulnerability whose successful exploitation would allow malicious users to obtain administrator privileges on Windows 10 systems. Tracked as CVE-2022-21882,Read More →

Iranian state TV was hacked to show a broadcast calling for Khamenei’s death

On: January 28, 2022

In: Incidents

This Thursday night, multiple Iranian state TV channels broadcasted footage showing the leaders of an exiled dissident group and explicitly calling for the death of the country’s supreme leader, anRead More →

Novel phishing technique uses hacker-operated devices connected to an organization’s network via lateral phishing

On: January 28, 2022

In: Data Security

This week, Microsoft security teams reported the discovery of a phishing campaign characterized by the inclusion of a novel technique that consists of attaching a malicious device to the networkRead More →

Remote code execution vulnerability in Ghidra, NSA’s reverse engineering tool

On: January 27, 2022

In: Vulnerabilities

Information security specialists report the detection of a critical vulnerability in Ghidra, a free and open-source reverse engineering tool developed by the U.S. National Security Agency (NSA), broadly used byRead More →

New RAT malware evades detection using JavaScript code embedded in HTML receipt files instead of downloading an ISO file from remote servers

On: January 27, 2022

In: Malware

Cybersecurity specialists report the detection of a new phishing campaign dedicated to the delivery of the AsyncRAT Trojan hidden in an HTML attachment. This malware allows threat actors to monitorRead More →

Code from the BotenaGo botnet is posted on GitHub. Millions of companies at risk of DDoS attack

On: January 27, 2022

In: Malware

In late 2021, an AT&T security team published research on a new malware variant written in Golang, a popular open-source programming language. The source code of this malware, known asRead More →

New Linux LPE vulnerability affects millions of Ubuntu, Debian, CentOS and Fedora servers worldwide. Exploit code published

On: January 26, 2022

In: Vulnerabilities

Cybersecurity specialists report the detection of a critical vulnerability in the pkexec component of Polkit whose exploitation would allow obtaining root user privileges in the main Linux distributions. Tracked asRead More →

New vulnerability on Mac provides full access to iCloud accounts, PayPal and more of the affected users, as well as granting access to their microphone, camera and screen. The greatest reward ever delivered by Apple

On: January 26, 2022

In: Vulnerabilities

This week, a young cybersecurity researcher demonstrated how to hack the webcams of Mac devices to leave the devices completely open to other attack variants. Ryan Pickren submitted his reportRead More →

Using Google Fonts in a website violates GDPR: New court decision affects 50 million websites

Crypto company Qubit Finance got hacked. The firm is begging hackers for returning the stolen $78 million USD in cryptocurrency

Critical zero-day vulnerability in Windows 10 that allows local privilege escalation to admin: Exploit code published

Iranian state TV was hacked to show a broadcast calling for Khamenei’s death

Novel phishing technique uses hacker-operated devices connected to an organization’s network via lateral phishing

Remote code execution vulnerability in Ghidra, NSA’s reverse engineering tool

New RAT malware evades detection using JavaScript code embedded in HTML receipt files instead of downloading an ISO file from remote servers

Code from the BotenaGo botnet is posted on GitHub. Millions of companies at risk of DDoS attack

New Linux LPE vulnerability affects millions of Ubuntu, Debian, CentOS and Fedora servers worldwide. Exploit code published

New vulnerability on Mac provides full access to iCloud accounts, PayPal and more of the affected users, as well as granting access to their microphone, camera and screen. The greatest reward ever delivered by Apple

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Hackers Can Manipulate Your Heart Rate Monitor – Unbelievable Security Flaw!

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]