Category: Security

13 Mar 2019

Microsoft has added a new safety measure which will automatically uninstall any kinds of buggy software updates installed on your system if Windows 10 detects a startup failure either due to incompatibility or any issues in the software. A new document published by Microsoft says that like Windows “automatically installs updates to keep your device…

11 Mar 2019

Facebook has filed a case against two Ukrainian developers for creating Facebook apps and browser extensions that collected user data and injected ads into users’ timelines. The two developers are Gleb Sluchevsky and Andrey Gorbachov, both based out of Kiev, and working for Web Sun Group. According to court documents, Sluchevsky and Gorbachov ran at…

09 Mar 2019

Two smart alarms namely Viper and Pandora Car Alarm System, that serve at least three million customers were found to be vulnerable after testing by cybersecurity researchers from Pen Test Partners. The two companies claimed their products to be smart and even unhackable but it was proved to be wrong by the researchers. Compromising the…

08 Mar 2019

A high severity vulnerability has been discovered in Google Chrome last month which could allow remote attackers to execute arbitrary code and take complete control of the computers. The flaw was discovered by Clement Lecigne, the security researcher at Google’s Threat Analysis Group. The vulnerability which has been dubbed as CVE-2019-5786, affects the web browsers…

07 Mar 2019

Mozilla is soon to bring a new user anti-fingerprinting feature to Firefox in its latest version 67 which is scheduled for mid-May this year. The new technique known as letterboxing adds “gray spaces” to the sides of a web page when the user resizes the browser window, which are then gradually removed after the window…

07 Mar 2019

The National Security Agency released a free software reverse engineering tool called Ghidra which is useful for malware analysts and software engineers. The agency had been using this internally for more than a decade. At present, Ghidra is available for download only through its official website, and the NSA is planning to release its source…

06 Mar 2019

Saudi caller ID app leaves data of 5+ million users in unsecured MongoDB server Dalil which is an Android caller ID app similar to Truecaller but for Saudi and other Arabian users was found to be leaking user data for over a week due to a MongoDB database which was available online and could be…

06 Mar 2019

A 13-year old female student from Kariya was arrested and questioned by the Japanese police for sharing a browser exploit code online. The code was a prank that activated a popup which could not be closed when users click on a particular link. In some browsers like desktop versions of Edge and Firefox the popup…

05 Mar 2019

Google’s cybersecurity venture Chronicle announced its first commercial product, called Backstory which is a cloud-based enterprise-level threat analytics platform designed to help companies quickly investigate incidents, pinpoint vulnerabilities and check for potential threats. The network infrastructures in most companies generate large quantity of network data and logs regularly on a daily basis that can be…

02 Mar 2019

Adobe has released an emergency out-of-band update for its ColdFusion development platform to patch a zero-day vulnerability which was being exploited in the wild. According to Adobe the vulnerability is described as a “file upload restriction bypass” and was given the severity critical. The attack involves uploading executable code to a web-accessible directory, and then…