data security

Threat actors could have hacked the U.S. Drug Enforcement Administration (DEA) and other related law enforcement agencies. Investigation still ongoing

On: May 13, 2022

The U.S. Drug Enforcement Administration (DEA) reports that it has begun an investigation into alleged cyberattacks that would have compromised up to 16 databases of federal agencies. According to KrebsOnSecurityRead More →

Now you can ask Google to remove your phone number, email address, physical address and other personal contact data from Search Results. Learn how to do it

On: April 28, 2022

In: Technology

After multiple scandals of inappropriate handling of personal information, reinforcing users’ privacy has become one of the primary goals of large technology companies. Such is the case of Google, whichRead More →

Critical vulnerability in Java allows forgery of certificates, signatures, WebAuthn messages and evade authentication mechanisms: Update immediately

On: April 21, 2022

In: Incidents

Some versions of Java are affected by a critical vulnerability in the Elliptic Curve Digital Signature Algorithm (ECDSA) signature validation that would allow threat actors to digitally sign files andRead More →

It’s now legal to scrap LinkedIn users’ data for marketing purposes without their permission

On: April 19, 2022

In: Incidents

The practice of data scraping has always been the subject of controversy, because although data on websites are considered public, thousands of users and specialists believe that there should beRead More →

Do not open this WhatsApp message offering Free Cadbury Chocolates; hackers can empty your bank accounts

On: April 5, 2022

In: Incidents

The famous Cadbury confectionery issued a statement warning its customers about a WhatsApp scam in which threat actors offer consumers a basket of free Easter chocolates, which they can claimRead More →

Email marketing company Mailchimp was hacked. Customer accounts control taken over by attackers

On: April 4, 2022

In: Incidents

Email marketing company Mailchimp confirmed this morning that a malicious hacking group managed to compromise its systems to access customer accounts and extract potentially sensitive information. Siobhan Smyth, director ofRead More →

Hard-coded credentials vulnerabilities in 10 models of Lenovo Networking Switches

On: March 24, 2022

In: Vulnerabilities

Cybersecurity specialists reported the detection of multiple vulnerabilities affecting Lenovo Networking Switches. According to the report, successful exploitation of these flaws would allow malicious actors to deploy dangerous hacking activities.Read More →

Check the integrity of the browser extension using this WhatsApp tool before running WhatsApp web

On: March 11, 2022

In: Data Security

Users of the WhatsApp version for laptops and desktops will now be able to use a browser extension to check the integrity of the software running on their browser. ThisRead More →

Hacker took control of US school district systems and mailed every student cancelling all classes

On: February 17, 2022

In: Incidents

Dozens of families in the Needham School District fell for what appears to be a bad joke after receiving an email notifying them that this week’s classes would be canceled.Read More →

Why is the Zoom app on Apple devices listening to your microphone when not in a meeting?

On: February 10, 2022

In: Data Security

Dozens of Mac device users report that the Zoom video conferencing app keeps their devices’ microphone on even when the app isn’t active. According to reports, the problem lies inRead More →

data security

Threat actors could have hacked the U.S. Drug Enforcement Administration (DEA) and other related law enforcement agencies. Investigation still ongoing

Now you can ask Google to remove your phone number, email address, physical address and other personal contact data from Search Results. Learn how to do it

Critical vulnerability in Java allows forgery of certificates, signatures, WebAuthn messages and evade authentication mechanisms: Update immediately

It’s now legal to scrap LinkedIn users’ data for marketing purposes without their permission

Email marketing company Mailchimp was hacked. Customer accounts control taken over by attackers

Hard-coded credentials vulnerabilities in 10 models of Lenovo Networking Switches

Check the integrity of the browser extension using this WhatsApp tool before running WhatsApp web

Hacker took control of US school district systems and mailed every student cancelling all classes

Why is the Zoom app on Apple devices listening to your microphone when not in a meeting?

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

Your Google Cloud Security Might Be at Risk. Hacking GCP via Google Workspace flaw

Azure CLI stores credentials in plaintext in logs. A easy technique to hack cloud environments

Hackers’ new favorite: CVE-2023-4911 targeting Debian, Ubuntu and Fedrora servers in the Cloud

The Terrifying Reality of Citrix’s CVE-2023-4966 Vulnerability “Patching can’t help”

Cisco’s Ticking Time Bomb: CVE-2023-20198 with CVSS Score 10 Hits Cisco Devices

Is Your etcd an Open Door for Cyber Attacks? How to Secure Your Kubernetes Clusters & Nodes

CVSS 4.0 Explained: From Complexity to Clarity in Vulnerability Assessment

The Art of Interception :Active and Passive Surveillance in Mobile Signaling Networks

Unmasking Cracked Cobalt Strike 4.9: The Cybercriminal’s Tool of Choice

How to send phishing or malware to Teams users evading Teams security features

Caldera: Free Operational technology OT Attack Emulation Tool to secure ICS, SCADA and PLC devices

Azure cloud security tutorial series – Chapter 4 [Establish VNet Peering]

Azure cloud security tutorial series – Chapter 3 [Add resource to VNet]

Azure cloud security tutorial series – Chapter 2 [Virtual Network]

Azure cloud security tutorial series – Chapter 1 [Azure Account]

How hrserver.dll stealthy webshell can mimic Google’s Web Traffic to hide and compromise networks

This new technique allows you to install ransomware and avoid EDR on any system

Guardians of the Hackers Galaxy: Unlock the tool of ToddyCat’s Group

Silent Predator Unveiled: Decoding WebWyrm Stealthy Malware affecting 50 countries

Sony Corporation hacked by ransomware, PS5 lovers worried

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]