Following the public disclosure of a critical zero-day vulnerability in Webmin last week, the project's maintainers today revealed that the flaw was not actually the result of a coding mistake made by the programmers.Instead, it was secretly planted by an unknown hacker who successfully managed to inject a backdoor at some point in its build infrastructure—that surprisingly … [Read more...] about Hackers Planted Backdoor in Webmin, Popular Utility for Linux/Unix Servers
hacking
European Central Bank Shuts Down ‘BIRD Portal’ After Getting Hacked
The European Central Bank (ECB) confirmed Thursday that it had been hit by a cyberattack that involved attackers injecting malware into one of its websites and potentially stealing contact information of its newsletter subscribers.Headquartered in Germany, the European Central Bank (ECB) is the central bank of the 19 European Union countries which have adopted the euro and is … [Read more...] about European Central Bank Shuts Down ‘BIRD Portal’ After Getting Hacked
Patches for 2 Severe LibreOffice Flaws Bypassed — Update to Patch Again
If you are using LibreOffice, you need to update it once again.LibreOffice has released the latest version 6.2.6/6.3.0 of its open-source office software to address three new vulnerabilities that could allow attackers to bypass patches for two previously addressed vulnerabilities.LibreOffice is one of the most popular and open source alternatives to Microsoft Office suite and … [Read more...] about Patches for 2 Severe LibreOffice Flaws Bypassed — Update to Patch Again
Bluetana App Quickly Detects Hidden Bluetooth Card Skimmers at Gas Pumps
In recent years, gas stations have become one of the favorite targets for thieves who are stealing customers' credit and debit card information by installing a Bluetooth-enabled payment card skimmers at gas stations across the nation.The media has also reported several recent crimes surrounding credit card skimmers, including:Gas pump skimmer found at a 7-Eleven in Pinellas … [Read more...] about Bluetana App Quickly Detects Hidden Bluetooth Card Skimmers at Gas Pumps
Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows
Update — With this month's patch Tuesday updates, Microsoft has finally addressed this vulnerability, tracked as CVE-2019-1162, by correcting how the Windows operating system handles calls to Advanced Local Procedure Call (ALPC). A Google security researcher has just disclosed details of a 20-year-old unpatched high-severity vulnerability affecting all versions of Microsoft … [Read more...] about Google Discloses 20-Year-Old Unpatched Flaw Affecting All Versions of Windows
New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections
Over a billion Bluetooth-enabled devices, including smartphones, laptops, smart IoT devices, and industrial devices, have been found vulnerable to a high severity vulnerability that could allow attackers to spy on data transmitted between the two devices.The vulnerability, assigned as CVE-2019-9506, resides in the way 'encryption key negotiation protocol' lets two Bluetooth … [Read more...] about New Bluetooth Vulnerability Lets Attackers Spy On Encrypted Connections
A New Android ‘Banking Malware For Rent’ Emerges
After a few popular Android Trojans like Anubis, Red Alert 2.0, GM bot, and Exobot, quit their malware-as-a-service businesses, a new player has emerged on the Internet with similar capabilities to fill the gap, offering Android bot rental service to the masses.Dubbed "Cerberus," the new remote access Trojan allows remote attackers to take total control over the infected … [Read more...] about A New Android ‘Banking Malware For Rent’ Emerges
Let Experts Do Their Job – Managed WAF by Indusface
WAF (Web Application Firewall) has been the first line of defence when it comes to application security for a while now. Many organizations have adopted WAF in one form or the other and most cases, compliance has been the driver for adoption.But unfortunately, when it comes to the efficacy of WAF in thwarting attacks, it has not lived up to the expectations. In most … [Read more...] about Let Experts Do Their Job – Managed WAF by Indusface
Canon DSLR Cameras Can Be Hacked With Ransomware Remotely
The threat of ransomware is becoming more prevalent and severe as attackers' focus has now moved beyond computers to smartphones and other Internet-connected smart devices.In its latest research, security researchers at cybersecurity firm CheckPoint demonstrated how easy it is for hackers to remotely infect a digital DSLR camera with ransomware and hold private photos and … [Read more...] about Canon DSLR Cameras Can Be Hacked With Ransomware Remotely
Apple will now pay hackers up to $1 million for reporting vulnerabilities
Apple has just updated the rules of its bug bounty program by announcing a few major changes during a briefing at the annual Black Hat security conference yesterday.One of the most attractive updates is…Apple has enormously increased the maximum reward for its bug bounty program from $200,000 to $1 million—that's by far the biggest bug bounty offered by any major tech company … [Read more...] about Apple will now pay hackers up to $1 million for reporting vulnerabilities