VMware fixes a high-severity vulnerability that affects multiple products, exploitation allows attackers to obtain sensitive information. CVE-2020-3960 The out-of-bounds read vulnerability affects VMware ESXi, Workstation, and Fusion, users are recommended to update with the fixed versions. “A malicious actor with

Google has warned of a rise in COVID-19 threats in specific parts of the world, as cyber-criminals adapt their campaigns regionally. The tech giant’s Gmail security product manager, Neil Kumaran, and lead security PMM for G Suite and GCP, Sam

A group of contracted hackers known as “Dark Basin” which is also known as BellTroX (BellTroX InfoTech Services) has attacked thousands of people and hundreds of institutions around the world that include non-profit organizations, journalists, officials, lawyers, investment fund companies,

Magecart is a malicious threat actor ,operating in structured groups ( Group 1 to Group 6 ) and all this groups and their modus operandi is web skimming. Magecart groups uses varies tools ,techniques and tactics to get a unauthorized

Japanese gaming giant Nintendo has confirmed that hackers have breached 300,000 accounts since early April, financial data were not exposed. The Japanese video game giant Nintendo has admitted that threat actors have breached 300,000 accounts since early April. The hackers

An Alabama city is paying over a quarter of a million dollars to cyber-criminals to recover data encrypted in a ransomware attack. Florence became a victim of the DoppelPaymer ransomware gang on June 5 in an attack that shut down

A new cyber weapon system being created by the United States Air Force will cost over five times more than originally estimated, according to a government watchdog. The United Platform program was initiated in August 2018 as part of the

Healthcare provider Babylon has reported a data breach of its GP video appointment app. Whilst the company said it has fixed an issue where video recordings of other patients’ consultations could be accessed, and notified regulators, one UK-based user found

Discussing strategies for how to achieve full lifecycle cloud security at the Cloud Security Alliance European Virtual Summit, Chris Hertz, VP, and Jeremy Snyder, senior director at DivvyCloud by Rapid7, said the challenge is not just about adopting cloud services,

Security researchers have uncovered a major new hacking-for-hire operation against journalists, rights groups, government officials, financial institutions and others, seemingly orchestrated by a shady Indian tech firm. Thousands of individuals and hundreds of organizations globally were targeted with cyber-espionage tactics

The industry needs to do more to prevent the sharp rise in COVID-19 phishing attempts. In an open statement shared with Infosecurity, the Messaging, Malware and Mobile Anti-Abuse Working Group (M3AAWG) made a call for further steps to be taken

Microsoft released a security update under patch Tuesday with the fixes of 129 vulnerabilities, and this patch is the largest patch ever released by Microsoft. Several Microsoft software products were patched in the June security release of following:- Microsoft Windows

Microsoft released fixes for 129 vulnerabilities in its regular monthly update round yesterday, the fourth month in a row to hit over 100 CVEs and the largest of any Patch Tuesday. Of the 129 CVEs, only 11 are rated critical

Nintendo has added another 140,000 accounts to those it claimed were compromised by hackers from April this year, bringing the total to 300,000. The updated figure was given as a result of its ongoing investigation into the incident. The additional

Recently, a security researcher has warned about a security threat posed by the WhatsApp messenger known as ‘Click to Chat’ this function allows Google to index the phone numbers of users, and all the indexed numbers can be easily found