The FBI reported threat actors taking over FBI email system to send thousands of false messages about a “sophisticated chain attack.” Threat intelligence non-profit SpamHaus released information about the attack first. The attack entailed sending false warning emails with the…
Google researchers have detected a zero-day MacOs vulnerability in operating system. The hackers have targeted Hong Kong websites of a media outlet and pro-democracy labour political group to plant a new backdoor entry in affected machines. Based on our findings,…
Palo Alto’s network GlobalProtect VPN has a new zero-day vulnerability reported by researchers. The vulnerability allows the hacker to use an unauthenticated network to execute arbitrary code on affected devices with root user privileges. The vulnerability is identified as CVE-2021-3064…
Cybersecurity researchers discovered 14 critical vulnerabilities in the BusyBox Linux utility. The hackers can exploit the vulnerability for carrying out a denial-of-service (DoS) attack, and in some cases, the vulnerability can lead to information leaks and remote code execution. DevOps…
Robinhood, the popular investment & trading platform, was recently hacked and fell prey to an extortion attempt. The extorter used their unauthorized access to millions of customers’ email addresses and full names as leverage. The Platform informed about the incident…
Cyberfraud victims are increasingly being asked to pay through Quick Response (QR) code and cryptocurrency ATMs. This makes recovery of payment impossible. The FBI has seen an increase in scammers directing victims to use physical cryptocurrency ATMs and digital QR…
Researchers discovered an email-based phishing scam: emails containing QR codes for pilfering users’ Microsoft details and other data. Between September 15 and October 13, Abnormal reported that it warded off 200 emails that constituted the phishing scam. Hackers tried to…
Israeli researcher identifies more than 3500 Wifi networks were hacked in Israel Tel Aviv without any difficulty. A total 0f 5000 wifi networks were targeted. The hacking underscored how weak passwords could become an entry point for serious threats to…
Many spam emails are acting as a channel for an unknown malware loader. The malware loader is undocumented, and it allows attackers to access enterprise networks and plant malicious payloads on compromised systems. The spam email drive began in the…
BillQuick, a time & billing system, had a critical vulnerability -now fixed- disclosed by cybersecurity researchers. The vulnerability was exploited to introduce ransomware in vulnerable systems. CVE-2021-42258, a SQL-based injection attack, allowed the attackers to execute code remotely, and it…
