Unpatched Microsoft Exchange servers are being targeted by the Prometei botnet and added to its operators’ army of Monero (XMR) cryptocurrency mining bots. This modular malware can
Read more
Signal CEO hacks Cellebrite cellphone hacking, cracking tool
Moxie Marlinspike, CEO of Signal states that since Cellebrite itself makes a living from undisclosed vulnerabilities, he decided to disclose the vulnerability to the public
Read more
QNAP removes backdoor account in NAS backup, disaster recovery app
QNAP has addressed a critical vulnerability allowing attackers to log into QNAP NAS (network-attached storage) devices using hardcoded credentials. The hard-coded credentials vulnerability tracked as CVE-2021-28799
Read more
Attackers can hide ‘external sender’ email warnings with HTML and CSS
The “external sender” warnings shown to email recipients by clients like Microsoft Outlook can be hidden by the sender, as demonstrated by a researcher. Turns out, all
Read more
Signal CEO gives mobile-hacking firm a taste of being hacked
Software developed by data extraction company Cellebrite contains vulnerabilities that allow arbitrary code execution on the device, claims Moxie Marlinspike, the creator of the encrypted
Read more
Play Store apps plagued with malware have 700,000 downloads
Cybersecurity researchers at Trend Micro and McAfee have separately published reports to alert users about a new set of fake and malware-infected Android applications on
Read more
Massive Qlocker ransomware attack uses 7zip to encrypt QNAP devices
A massive ransomware campaign targeting QNAP devices worldwide is underway, and users are finding their files now stored in password-protected 7zip archives. The ransomware is
Read more
Linux bans University of Minnesota for committing malicious code
In a rare, groundbreaking decision, Linux kernel project maintainers have imposed a ban on the University of Minnesota (UMN) from contributing to the open-source Linux project.
Read more
Google fixes exploited Chrome zero-day dropped on Twitter last week
Google has released Chrome 90.0.4430.85 to address an actively exploited zero-day and four other high severity security vulnerabilities impacting today’s most popular web browser. The
Read more
Facebook ads used in spreading Facebook Messenger phishing scam
So far, Facebook Messenger users in 80 countries have been targeted by this phishing scam, reports Group-IB. The Singapore-based cybersecurity firm Group-IB has released a
Read more
CISA orders federal orgs to mitigate Pulse Secure VPN bug by Friday
The US Cybersecurity and Infrastructure Security Agency (CISA) has issued a new emergency directive ordering federal agencies to mitigate an actively exploited vulnerability in Pulse Connect
Read moreADS goes here!
If you don't see it, then please turn OFFAD blocker for this website.
Our ads are not aggressive and help us
pay for the server and coffee.
THANK YOU for your support!