Archive
New Banking Regs Increase Cyber-Attack Risk
A report released today by Trend Micro has found that new European open-banking rules could leave financial services organizations and their customers more susceptible to cyber-attacks. The European Union’s Revised Payment Services Directive (PSD2) is designed to give users greater
The news is shocking, thousands of Google Calendars are leaking private information posing a severe threat to the privacy of the users. Thousands of Google Calendars are leaking private information online threatening the privacy of the users. Google Calendar has
Tens of millions of records belonging to passengers of two airline companies owned by Lion Air have been exposed and exchanged on forums. Data belonging to passengers of two airline companies owned by Lion Air have been exposed and exchanged
Researchers discovered many flaws in over a dozen small office/home office (SOHO) routers and network-attached storage (NAS) devices. Security experts have discovered multiple vulnerabilities in over a dozen small office/home office (SOHO) routers and network-attached storage (NAS) devices. The research
Webcam Security Snafus Expose 15,000 Devices
Researchers have discovered 15,000 private webcams around the globe which could be accessed by anyone with an internet connection, raising serious security and privacy concerns. Working for Wizcase, white hat Avishai Efrat located the exposed devices from multiple manufacturers including:
Emotet is Back and Spamming Again
A notorious botnet has begun sending out spam again after a several month hiatus, which could spend bad news for organizations around the world. Emotet has been dormant for around four months, but starting pumping out spam on Monday morning,
Linux Malware Skidmap Uses kernel-mode Rootkits to Hide Cryptocurrency Mining Activities
Skidmap is a recent sample of the Linux malware that loads malicious kernel modules to hide it’s Cryptocurrency mining activities by faking network traffic and CPU usage. The malware not only generates Cryptocurrency, but it also set’s up a secret
The vast majority of vulnerabilities in ports are found in just three, making it theoretically easier for organizations to defend them against attack, according to Alert Logic. The security vendor analyzed 1.3 petabytes of security data, over 2.8 billion IDS
A high severity authentication bypass vulnerability that resides in ES-File Explorer due to insecure FTP activity let remote attackers gain access to all your files saved in your Android phone. Ealier this year, another ES File Explorer Vulnerability Puts 100
While most people worry about threats from hackers trying to breach their security from the outside, it’s just as, if not more, important to also protect against insider threats as they can have disastrous effects on every facet of your
A new Android malware has appeared in the threat landscape, tracked as MobiHok RAT, it borrows the code from the old SpyNote RAT. Experts from threat intelligence firm SenseCy spotted a new piece of Android RAT, dubbed MobiHok RAT, that
Data of Virtually All Ecuadoreans Leaked Online
The personal data of almost every citizen of Ecuador has been leaked online in a catastrophic data breach. The names, phone numbers, and financial information of approximately 20 million Ecuadoreans were found on an unsecured cloud server by researchers working
Experts discovered a huge data leak affecting Ecuador, maybe the largest full-country leak, that exposed data belonging to 20 million Ecuadorian Citizens. Security experts at vpnMentor have discovered a huge data leak affecting Ecuador that exposed data belonging to 20
Threat Actor Sells Entire Source Code of Popular Android RAT in the Dark Web for $15,000
Dark web forums are the nesting grounds for threat actors to distribute hacking tools and other illicit documents. These dark web forums are known for anonymity and they can be reached only using a browser such as Tor. SenseCy observed
An expert discovered a flaw in the LastPass password manager that exposes login credentials entered on a site previously visited by a user. Tavis Ormandy, the popular white-hat hacker at Google Project Zero, has discovered a vulnerability in the LastPass
The UK government is in hot water again after Freedom of Information (FOI) requests revealed its Environment Department has misplaced hundreds of laptops and mobile devices over recent years. Security vendor Absolute Software sent requests for info to the Department