Collaborate Disseminate
In an effort to mitigate a large class of potential cross-site scripting issues in Firefox, Mozilla has blocked execution of all inline scripts and potentially dangerous eval-like functions for built-in “about: pages” that are the gateway to sensitive … Continue reading Firefox Blocks Inline and Eval JavaScript on Internal Pages to Prevent Injection Attacks
Lodash, a popular npm library used by more than 4 million projects on GitHub alone, is affected by a high severity security vulnerability that could allow attackers to compromise the security of affected services using the library and their respective … Continue reading Unpatched Prototype Pollution Flaw Affects All Versions of Popular Lodash Library
Bug opened door for malicious link attack, giving hacker access to stored DJI drone data of commercial and consumer customers. Continue reading DJI Patches Forum Bug That Allowed Drone Account Takeovers
Cybersecurity researchers have uncovered an espionage campaign that has targeted a national data center of an unnamed central Asian country in order to conduct watering hole attacks.
The campaign is believed to be active covertly since fall 2017 but w… Continue reading Chinese Hackers Carried Out Country-Level Watering Hole Attack
In what considered to be the largest system hack in the country’s history and a massive attack on the financial sector, several banks in Poland have been infected with malware.
What’s surprising? The source of the malware infection is their own financ… Continue reading Polish Banks Hacked using Malware Planted on their own Government Site