Posts From CCME
Researchers discovered a previously unknown fully-featured Python RAT called”PiXie” escalate the Windows admin privilege to the ransomware in the healthcare and education industries. PyXie initially observed in 2018, since then it targets various industries and now deployed in an ongoing
Wireshark 3.0.7 Released – Fixes for Security Vulnerabilities & Update for BGP, IEEE 802.11, TLS Protocols
Wireshark 3.0.7 released with a number of security updates and fixed several other bugs that reside in the Wireshark components. Wireshark also updated Protocol Support for various protocols such as BGP, HomePlug AV, IEEE 802.11, and TLS. Wireshark is known
Ransomware attacks continue to threaten organizations worldwide, CyrusOne, one of the biggest data center providers in the US, is facing with an infection. A new ransomware attack made the headlines, systems at CyrusOne, one of the biggest data center providers
Today, nine of the most exceptional new cybersecurity businesses will pitch their latest products and innovations aimed at securing the digital economy at CyLon’s 10th London Demo Day. The nine companies will showcase their products to over 150 prospective customers,
Experts at Cisco Talos found two vulnerabilities in the GoAhead embedded web server, including a critical remote code execution flaw. GoAhead is the world’s most popular, tiny embedded web server. It is developed by EmbedThis that defines it as compact,
FBI: FaceApp Potential Spy Risk
The FBI has confirmed to a US senator that the popular mobile application FaceApp could be a counter-intelligence risk because of its Russian developers. The app — which uses AI to transform the faces of users to make them look
Opening the 19th Black Hat Europe in London, founder Jeff Moss said that over the years the diversity of the security community has grown as well has the expansion of skills to include both hard and soft skills. He also
Delivering the opening keynote at Black Hat Europe, offensive security engineer Amanda Rousseau talked about the move from a defensive to offensive role, and how narrow that has made our thinking. In the first part of her talk, she said
FTC: Fraudsters Go Low-Tech to Trick the Elderly
Fraudsters are increasingly going back to basics in a bid to trick particularly elderly victims into handing over money, according to the Federal Trade Commission (FTC). The regulator posted two warnings on Tuesday highlighting the lengths scammers are prepared to
Critical Vulnerability in Microsoft Azure Let Hackers Take Over the Complete Control of the Azure Accounts
Researchers discovered a critical vulnerability in Microsoft Azure named “BlackDirect” that allows attackers to take over the Azure user’s accounts and creating the Token with the victim’s permissions. The vulnerability specifically affected Microsoft’s OAuth 2.0 applications that allow malicious attacker
Almost all small and medium-sized businesses in America have executives who are living in fear of a cyber-attack from foreign adversaries, according to new research published today. The Q4 Cyberthreat Index for Business Survey by Zix-AppRiver found that 93% of
FBI Issues Smart TV Cybersecurity Warning
The Federal Bureau of Investigation has issued a warning to holiday shoppers who are planning to swap some of their hard-earned cash for a smart TV. In a statement released by the Oregon branch of the FBI, members of the
Festive Virtual Hacker Conference Returns
A free holiday-themed cybersecurity conference set in a virtual North Pole is scheduled to take place for the second year running. KringleCon 2019 invites hackers and cybersecurity professionals from across the globe to hear expert speakers, watch educational demos, share
Digital skimming hackers have been in action again, this time targeting the website of a leading US gun-maker and its customers. Springfield, Massachusetts-based Smith & Wesson was attacked on Black Friday, during one of the busiest shopping weekends of the
Researchers observed a new malware family in May involved in various cyberespionage campaigns advertised as a chat app dubbed “Chatrious” downloaded from the malicious website by clicking the download button on the site. The campaign back in action again with
Tens of Millions Exposed by SMS Data Leak
Tens of millions of Americans may have been caught in another data leak after business SMS provider TrueDialog left a massive database exposed online, according to researchers. The team at vpnMentor discovered the Oracle Marketing Cloud database hosted on Microsoft