On Thursday, VMWare, a cloud computing and virtualisation technology firm, pushed an update to fix a critical vulnerability in its Cloud Director product. The…
General
General
LFI Vulnerability of Critical Importance was reported in Hashnode Blogging Platform
Hashnode, a developer-oriented blogging platform, has a previously undiscovered local file inclusion (LFI) vulnerability that might be exploited to gain access to sensitive data…
General
The Qbot malware has switched to a new infection vector: Windows Installer
Phishing emails with password-protected ZIP archive attachments containing malicious MSI Windows Installer packages are now being used by the Qbot botnet to spread malware…
General
APT Hackers Targeting ICS/SCADA Systems with Specialized Malware, the US Warns
Nation-state actors are using specialised malware to maintain access to industrial control systems (ICS) and supervisory control and data acquisition (SCADA) equipment, according to…
General
Fakecalls: A Novel Approach to Banking Customer Service Frauds
Fakecalls is a financial malware that targets Android users, hijacking their calls to a bank’s customer service number and connecting them directly with hackers.…
General
Operation TOURNIQUET shuts down RaidForum, an illegal dark web marketplace
RaidForums, an illegal dark web marketplace, has been closed, and its infrastructure seized in an international law enforcement Operation TOURNIQUET. Europol’s European Cybercrime Center…
General
Parrot Traffic Direction System (TDS) is a new web redirection service by Parrot
In harmful campaigns, a Traffic Direction System (TDS) is used to lead individuals who fit a specific profile to phishing sites. The FakeUpdate campaign…
General
Google drags fake-puppy-website scammer to court
On Monday, Google said that it’s suing a threat actor who has been tracked operating fraudulent websites to dupe people into buying puppies that…
General
Access control vulnerability in Easy! Appointments platform exposed sensitive personal data
Unprotected API could expose names, places, times of bookings made using app An open-source scheduling platform has an access control vulnerability. Unauthenticated attackers had…
General
Human factors are still a major issue for organisations
Egress reports that 56% of IT leaders say their non-technical staff are partially prepared or not at all prepared for a security attack. A…