Google released a patch for 5 vulnerabilities found in Chrome. One of the vulnerabilities was being exploited in the wild, and it was altogether the 17th vulnerability found this year in chrome. Labeled CVE-2021-4102, the flaw concerns a use-after-free bug…
The MANGA(aka Dark Mirai) botnet operators’ exploitation of a vulnerability in the TP-Link TL-WR4840N EU V5 has come to light. The vulnerability allows hackers to execute codes remotely. Botnets keep evolving—keep getting better— to target new vulnerabilities for breaching the…
A ransomware attack on CS energy network was warded off. If the ransomware attack had been successful, the attack would have deprived millions of homes of electricity. Chinese attackers, on November 27, tried to hack CS energy’s network but the…
BitMart, a cryptocurrency trading platform, revealed a “large-scale security breach” caused by a stolen private key. The breach led to the theft of more than $150 million spanning different cryptocurrencies. The breach affected two of its most hot wallets on…
14 new cross-site data leakage have been uncovered by researchers. The attack affects most of the modern web browsers: Mozilla Firefox, Google Chrome, Microsoft Edge, Apple Safari, and Opera. The attacks are made possible by bugs that plague these browsers.…
New malware is targeting E-commerce platforms in U.S., Germany, and France. The malware attacks the Nginx servers to conceal its identity and go undetected by security solutions. “This novel code injects itself into a host Nginx application and is nearly…
Threat actors from three countries—China, Russia, India—are using a new method, RTF (Rich Text Format) template injection, to plant malware in targeted systems. “RTF template injection is a novel technique that is ideal for malicious phishing attachments because it is…
Mozilla released patches for vulnerabilities in its cross-platform Network Security Services (NSS) cryptographic library. The vulnerability can be exploited for crashing an application or executing arbitrary code remotely. The vulnerability labelled CVE-2021-43527 plagues earlier NSS versions before 3.73 ESR. the…
A small but potent ransomware campaign has been carrying out attacks, and these cyberattacks, for the most part, have gone undetected mainly because of their size and new methods. Mandiant stated that the campaign labelled UNC2190 or “Sabbath,” launched in…
A new class of malware plagues at least 9.3 million Android devices. The malware camouflages as arcade, shooter, and strategy games on Huawei’s AppGallery marketplace to obtain device details and victim’s mobile numbers. Doctor Web classifies the trojan as “Android.…
