Collaborate Disseminate
A new Windows zero-day vulnerability has been announced by CERT/CC. The organization just put out a warning of the flaw which is described as a privilege escalation one. The vulnerability was initially announced on Twitter by SandboxEscaper who also sa… Continue reading New Windows Zero-Day Bug Allows a Local User to Obtain SYSTEM Privileges
Last week, we reported about CVE-2018-11776, a new highly critical vulnerability residing in Apache Strut’s core functionality, also described as a remote code execution vulnerability that affects all supported versions of Apache Struts 2. The fl… Continue reading CVE-2018-11776 Proof-of-Concept Published on GitHub
Another significant data breach affecting an international company was recently disclosed. T-Mobile announced that it was hit by hackers and as a result of the attack, personal information of some 2 million customers was compromised. This personal info… Continue reading How Honest Was T-Mobile about the Enormous Data Breach?
A new vulnerability has been uncovered – the kind that could turn out worse than the one that triggered the Equifax breach. The vulnerability has been identified as CVE-2018-11776, residing in Apache Strut’s core functionality. It is a remo… Continue reading CVE-2018-11776: New Critical Struts Flaw Could Be Worse than Equifax
Mobile privacy is an area that every user should be paying attention to. In other words, users should be very concerned with the privacy of their smartphones and the personal information shared with app developers. And there are is plenty…Read more
T… Continue reading PII, Android and iOS: Most Invasive App Permissions in 2018
To no one’s surprise, there is a relatively easy way for hackers to breach thousands of smart homes. Avast researchers recently warned about the MQTT protocol (Message Queuing Telemetry Transport) which, if misconfigured, could give hackers compl… Continue reading Misconfigured MQTT Protocol Puts Thousands of Smart Homes at Risk
A new announcement has been made in regards of SUSE and the availability of the enterprise Linux kernel which is created specifically for Microsoft Azure. As a result, SUSE Linux Enterprise Server 15 on-demand instances now run on a custom-tuned…Read… Continue reading SUSE and Microsoft Announce Enterprise Linux Kernel for Azure
A Chrome browser vulnerability known under the CVE-2018-6177 identifier, recently discovered by Imperva researcher Ron Masas, was just patched by Google. The security flaw could allow an attacker to retrieve sensitive data from websites using audio or … Continue reading CVE-2018-6177 Chrome Bug Allows Hackers to Steal Sensitive Data via HTML Tags
Cosmos Bank, known as India’s second-largest cooperative bank, has been breached by hackers, and a total of 940 million rupees, or $13.5 million, were stolen. More specifically, attackers stole customer details via a malware attack on the bank… Continue reading Indian Cosmos Bank Malware Attack Ends with Theft of $13.5 Million
Just a few days ago, security researcher Brian Krebs reported that the FBI is warning banks of cybercriminals about to carry out a “highly choreographed, global fraud scheme known as an “ATM cashout,” in which crooks hack a bank or…… Continue reading Highly Choreographed ATM Cashouts Expected to Hit Banks