Collaborate Disseminate
Quite the peculiar botnet was detected in the wild by Qihoo researchers. The botnet, dubbed Fbot and based on the code of Satori, appears to be “just going after and removing another botnet com.ufo.miner”. Fbot is displaying other forms of…. Continue reading Fbot Botnet Chases Down and Cleans Systems Infected with com.ufo.miner
CCleaner is once again being criticized. The software is forcing an update to the latest version, 5.46, even in cases when users have configured it not to undergo automatic updates. On top of that, once the upgrade is done, the…Read more
The post CCl… Continue reading CCleaner Did It Again: Users Forced to Version 5.46
A denial-of-service vulnerability typical for older versions of Windows has resurfaced in the operating system. The security flaw has been dubbed FragmentSmack (identical to SegmentSmack in Linux) and has been given the CVE-2018-5391 identifier. As exp… Continue reading FragmentSmack (CVE-2018-5391) Old Windows DoS Flaw Returns
The Bristol Airport in the UK has become a victim of a ransomware attack. As a result, the airport’s in-house TV screens needed to display arrival and departure flight information were affected and literally blacked out. The attack happened sever… Continue reading Bristol Airport Hit by Ransomware, Officials Use Whiteboards to Announce Flights
A new tech support scam involving Google Chrome has been detected. Apparently, the scam is using a novel technique to hijack the browsing sessions of Chrome users. The scam relies on well-known tricks such as browser locking where the user…Read more
… Continue reading Novel Browser Locker Technique Hijacks Google Chrome
Another day, another vulnerability. Intel has just released firmware updates for a vulnerability (CVE-2018-3655) in the Intel Converged Security and Manageability Engine (CSME). The security flaw enables threat actors to recover, modify, or delete data… Continue reading CVE-2018-3655 Vulnerability Enables Disclosure of Intel ME Encryption Keys
Security researcher and privacy advocate Troy Hunt has reported an intriguing incident involving a free, public, and anonymous hosting service. Apparently, a large database containing email addresses, passwords in clear text and partial credit card det… Continue reading Dataset with 42 Million Emails and Passwords Uploaded on Kayo.me
Jaxx cryptocurrency wallet is the latest victim of hackers. A website spoofing the official website of Jaxx was recently taken down after Flashpoint researchers discovered several infections connected to the operation. The fake site had a URL similar t… Continue reading Jaxx Cryptocurrency Wallet Victim of Spoofing and Malware Operation
September Patch Tuesday 2018 has been released, fixing a total of 62 security vulnerabilities. The fixes include a recently discovered zero-day bug which was exploited in the wild. This vulnerability has been given the CVE-2018-8440 identifier. More ab… Continue reading CVE-2018-8440 Zero-Day Fixed in September 2018 Patch Tuesday
Zerodium recently reported the discovery of a new zero-day exploit in Tor browser. The same exploit vendor earlier this year offered $1 million for submitting such an exploit for Tor browser. The new Tor zero-day could reveal the identity of…Read mor… Continue reading Tor Browser Zero-Day Vulnerability Revealed: Patch Immediately!