News
TrickBot, a multi-purpose Windows malware, has evolved as one of the reliable backdoor for several other payloads. recently, a researcher found that TrickBot’s Anchor malware is now present with a new Linux version. TrickBot Anchor_Linux malware Named as Anchor_Linux, the malware carries a Windows executable designed to infect both Linux and Windows systems on the same […]
A zero-day vulnerability has been discovered in Zoom video conferencing software for Windows that could allow an attacker to execute arbitrary code on a victim’s computer running Microsoft Windows 7 or older. To successfully exploit the zoom vulnerability, all an attacker needs to do is tricking a Zoom user into performing some typical action like […]
Researchers caught a bunch of dubious apps preying on Android users. This time, malicious Android apps stole Facebook credentials. The apps potentially affected millions of users. They found numerous apps on Google Play Store that targeted Android users with malware. Specifically, these malicious apps stole Facebook credentials of Android users and revealed that they found […]
Researchers caught a bunch of dubious apps preying on Android users. This time, malicious Android apps stole Facebook credentials. The apps potentially affected millions of users. Researchers from a French cybersecurity firm Evina found numerous apps on Google Play Store that targeted Android users with malware. Specifically, these malicious apps stole Facebook credentials of Android […]
Twitter has made it to the news due to a cyber security incident. This time, Twitter has apologized to its business users due to a personal data breach. Twitter has admitted a data breach involving personal information of some of its business clients. The incident surfaced online after Twitter sent emails to the affected users […]
Google recently removed 106 more extensions from its Chrome Web Store after they were found illegally collecting sensitive user data as part of a “massive global surveillance campaign” targeting oil and gas, finance, and healthcare sectors. However, it’s not immediately clear who is behind the spyware effort. “This campaign and the Chrome extensions involved performed […]
38 different Android apps committing ad fraud. These apps included beauty camera and photo editing applications as well. In all, the apps boasted a whopping 20 million downloads altogether. Describing the types of frauds committed by the apps, there are three different types. Out-of-Context (OOC) Ads: That is, showed ads to the users sourced from […]
Microsoft released patches for 129 CVEs covering Microsoft Windows, Internet Explorer (IE), Microsoft Edge (EdgeHTML-based and Chromium-based in IE Mode), ChakraCore, Office and Microsoft Office Services and Web Apps, Windows Defender, Microsoft Dynamics, Visual Studio, Azure DevOps, and Microsoft Apps for Android . SMBv3 Flaws Trio of fixes stuck out in the Patch updates, for […]
Zoom Security Flaws Allowed Systems Hijacking Security researchers have caught a couple of security flaws in Zoom that allowed systems hijacking. As stated in their advisory, both of these were path traversal vulnerabilities that allowed an adversary to hack users’ systems via Zoom chats. The first of these bugs, CVE-2020-6109 existed in the way the […]
The security of the open-source supply chain is about the integrity of the entire software development and delivery ecosystem. A self-spreading and OSS supply chain malware was found abusing Github repositories. What has happened On March 9, 2020, GitHub’s Security Incident Response Team (SIRT) received its initial notification about a set of repositories that were actively serving […]