Home

30 Jan 2019
Microsoft Exchange 2013 and newer versions are vulnerable to a new privilege escalation zero-day called “PrivExchange” that permits a remote attacker with the credentials of a single lowly Exchange mailbox user to gain Domain Controller admin privileges using a simple Python tool. A security researcher with Dutch cyber-security firm Fox-IT, Dirk-jan Mollema has revealed the...
30 Jan 2019
Dailymotion, the online video streaming service have been hit by a large scale and ongoing credential stuffing attack resulting in compromising the data of several users. Paris-based Dailymotion stated in a press conference that their technical support has successfully contained the attack by implementing measures to limit its scope. All the users who have been...
29 Jan 2019
Those of you using an Apple device must immediately turn OFF their FaceTime app at least for few days because an unpatched bug has been found in this app which would allows someone to see or hear you even before you pick the call. Several users have complained regarding this privacy issue which turns an...
29 Jan 2019
xDedic which is infamous online marketplace for cyber criminals was shut down by the FBI and the authorities from many European countries. This site was buying and selling hacked servers. The domains were seized and three suspects were also arrested in Ukraine. The website which was available since 2014 became famous due to a Kaspersky...
28 Jan 2019
A new law has been approved by the Japanese government last Friday which permitted the government employees to hack into their citizens Internet of Things (IoT) devices as part of an unusual survey of insecure IoT devices. The survey will be done by the staffs at the National Institute of Information and Communications Technology (NICT)...
28 Jan 2019
A peer-to-peer cryptocurrency exchange portal named LocalBitcoins has revealed a security breach that occurred on 26th January which lasted for around five hours. During the breach, while the users accessed the LocalBitcoins forum, they were redirected to a phishing forums login page. The attackers steal the login credentials from users, try to login to their...
25 Jan 2019
A malware named as Razy was detected by the cybers security firm at Kaspersky Lab which aims at legitimate browser extensions and also spoofs search results in pursuit to raid cryptocurrency wallets and steal virtual coins from victims. This malware is a Trojan that uses unusual methods while infecting the systems. The malware, Trojan.Win32.Razy.gen, is...
24 Jan 2019
A new ransomware called as Anatova is disguised as games or applications to fool the victims to download and install it in their computer. It was first appeared on 1st January and its new code indicates that this is the work of experienced malware developers. This ransomware can morph quickly and has the ability for...
24 Jan 2019
A Chinese security researcher published the technical details of many vulnerabilities in Apple Safari web browser and iOS which permits a remote hacker to jailbreak and compromise victims’ iPhoneX running iOS 12.1.2 and earlier versions. In order to do this, the hacker has to mislead the users to open a specifically crafted web page using...
23 Jan 2019
The National Data Protection Commission (CNIL) of France had issued a fine of €50 million (around $57 million) under the European Union’s new General Data Protection Regulation (GDPR) law on Google for “lack of transparency, inadequate information and lack of valid consent regarding the ads personalization.” CNIL has conducted investigation after receiving several complaints against...