Information Security (Page 99)

This is how the new Emotet spam email looks like

On: November 17, 2021

The operators of the dangerous Emotet malware attacked again after almost a year of inactivity, this time in the form of a spam campaign that aims to deliver malicious filesRead More →

2 critical vulnerabilities in Fortinet FortiPortal

On: November 16, 2021

In: Vulnerabilities

Cybersecurity specialists reported the finding of two vulnerabilities in Fortinet FortiPortal. According to the report, successful exploitation of these flaws would allow the deployment of multiple attack scenarios. Below isRead More →

4 critical vulnerabilities in Moodle, an open-source learning platform/course management system (CMS)

On: November 16, 2021

In: Vulnerabilities

Cybersecurity specialists reported the detection of multiple security flaws at Moodle, a free and open-source learning management system (LMS) written in PHP and distributed under the GNU General Public License.Read More →

3 critical BIOS vulnerabilities affect Intel microchips in laptops and IoT devices

On: November 16, 2021

In: Vulnerabilities

Intel security teams announced the detection of two critical vulnerabilities in a wide variety of products and whose exploitation would allow threat actors to perform privilege escalation attacks on affectedRead More →

New research: AWS API Gateway could be exploited via a HTTP header smuggling attack

On: November 16, 2021

In: Data Security

Recent research details a method to exploit a security flaw in the Amazon Web Services (AWS) API Gateway through an HTTP header smuggling attack. Pentesting specialist Daniel Thatcher, in chargeRead More →

3 vulnerabilities in Zoom allow hackers to intercept data from meetings and attack customer infrastructure

On: November 15, 2021

In: Vulnerabilities

Zoom Video Communications security teams announced the patching of several vulnerabilities in their local solutions for video conferencing and other products, including Zoom Meeting Connector Controller, Zoom Virtual Room ConnectorRead More →

Vulnerabilities in Apple Pay, Samsung Pay and Google Pay allow easy unauthorized purchases

On: November 12, 2021

In: Vulnerabilities

During the first day of BlackHat Europe, Positive Technologies researcher Timur Yunusov described a number of vulnerabilities residing in payment services such as Apple Pay, Samsung Pay and Google Pay.Read More →

How Apple Mac users were spied upon easily according to Google Cyber Security Team?

On: November 12, 2021

In: Vulnerabilities

Researchers at Google Threat Analysis Group (TAG) have revealed a report detailing how a group of threat actors managed to spy on visitors to certain websites in Hong Kong usingRead More →

Threat actors penetrate Australian Sunwater water supply systems

On: November 11, 2021

In: Incidents

One of Australia leading water supply platforms confirmed that its systems were compromised by threat actors for nine long months. Apparently, threat actors left malicious files on a web serverRead More →

CVE-2021-22048 with high severity rating affects VMware vCenter Server. No patch available

On: November 11, 2021

In: Incidents

VMware developers released the detection of a privilege escalation vulnerability in vCenter Server. Tracked as CVE-2021-22048, the flaw received a score of 7.1/10 according to the Common Vulnerability Scoring SystemRead More →

Information Security (Page 99)

This is how the new Emotet spam email looks like

2 critical vulnerabilities in Fortinet FortiPortal

4 critical vulnerabilities in Moodle, an open-source learning platform/course management system (CMS)

3 critical BIOS vulnerabilities affect Intel microchips in laptops and IoT devices

New research: AWS API Gateway could be exploited via a HTTP header smuggling attack

3 vulnerabilities in Zoom allow hackers to intercept data from meetings and attack customer infrastructure

Vulnerabilities in Apple Pay, Samsung Pay and Google Pay allow easy unauthorized purchases

How Apple Mac users were spied upon easily according to Google Cyber Security Team?

Threat actors penetrate Australian Sunwater water supply systems

CVE-2021-22048 with high severity rating affects VMware vCenter Server. No patch available

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

This Hidden Comet/Atlas AI Browser Flaw That Hackers Are Exploiting

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

MFA? Irrelevant. CitrixBleed 2 Lets Hackers Take Over Without Logging In

MotW Bypassed: Zero Warning, Full Control – New WinRAR Flaw Silently Bypasses Windows Security

New Vulnerability in GCP Cloud Run Shows Why Least Privilege Isn’t Enough

Forget Metasploit: Inside Predator’s Zero-Click Advertising-Driven Phone Hacking System

How Hackers Intercept Mobile OTP and Calls Without ‘Hacking’ — The Shocking Power of SIM Boxes

13 Insanely Easy Techniques to Hack & Exploit Agentic AI Browsers

How to Use Google’s OSS Rebuild: A New Open Source Software Supply Chain Security Tool

Phishing 2.0: AI Tools Now Build Fake Login Pages That Fool Even Experts

How TokenBreak Technique Hacks OpenAI, Anthropic, and Gemini AI Filters — Step-by-Step Tutorial

Comparing Top 8 AI Code Assistants: Productivity Miracle or Security Nightmare. Can You Patent AI Code Based App?

No Login Required: How Hackers Hijack Your System with Just One Keystroke: utilman.exe Exploit Explained

How to Send DKIM-Signed, 100% Legit Phishing Emails — Straight from Google That Bypass Everything

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Live Malware Code Mutation: How AI Generates Evasive Malware

Backdooring ATMs via Bootloader? These Hackers Showed It’s Still Possible in 2025”

How Lynx Ransomware Extorts Millions from U.S. Companies

A Malware That EDR Can’t See?If You Rely on Antivirus for Protection, Read This Before It’s Too Late!

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

Cyber Security Channel

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022