Multiple zero-day vulnerabilities found in ManageEngine products
Digital Defense uncovered multiple, previously undisclosed vulnerabilities within several Zoho ManageEngine products.
Mozilla Patches Critical Vulnerability in Firefox
Mozilla Firefox was patched this week with 58 corrections that can be exploited by a remote attacker for arbitrary code execution. This vulnerability, tracked as CVE-2018-5124, affects Firefox versions 56 through 58 and it has been fixed with the release of Firefox 58.0.1.
Facebook Is Banning Advertisements for Bitcoin and ICOs
Facebook has revealed a new policy that bans advertisements related to bitcoin and initial coin offerings (ICOs), among others.
Cisco Patches Critical VPN Vulnerability
Another day, another vulnerability. Cisco Systems released this Monday a patch to fix a critical vulnerability in its Secure Sockets Layer VPN solution called Adaptative Security Appliance.
Hijackers can bypass Active Directory controls
Infosec researchers discovered a recent attack on Microsoft’s Active Directory software that let them insert their own domain controller into an existing enterprise setup.
There is life beyond passwords
IBM carried out a study focused on the authentication method used when a user logging into applications and devices. Fingerprint is the most used method.
Strava Fitness App Shares Secret Army Base Locations
Strava fitness tracking app published during November 2017 a visualization map to show where users make your own exercise. The exercise tracker published a data visualization map containing exercise routes shared by soldiers on active duty.
Keylogger campaign infects 2,000 WordPress sites
2,000 WordPress sites (possibly more) are infected with a keylogger that’s being loaded on the WordPress backend login page and a crypto jacking script (in-browser cryptocurrency miner) on their frontends.
Good news and bad news about Meltdown and Spectre in new Linux kernel
A new version of Linux kernel (4.15) has been released, nonetheless, more work is needed to be done security problems related to Meltdown and Spectre…
Hacker steals $150.000 in Ethereum
Experty‘s Initial Coin Offering (ICO), is composed to raise funds for a “Skype-like voice and video application” which could also take secure payments through the…
Newsletter: 21-27 January
The 17 biggest data breaches of the 21st century In recent years, 17 serious data breaches were published. The data breach constitutes a huge loss…
The 17 biggest data breaches of the 21st century
In recent years, 17 serious data breaches were published. The data breach constitutes a huge loss of information and this has been a trend in our recent memory.
The biggest hack in the cryptocurrency history! $534 Million stolen
This time Coincheck, Japanese cryptocurrency exchange has been hacked and lost $534 million in NEM tokens.
GDPR privacy tool provided by Facebook and Microsoft
In few months, GDPR is introduced into force, and companies racing against time to comply with the new rules. A GDPR tool was provided by Facebook and Microsoft.
VirtualBox patches ten discovered vulnerabilities
Oracle launches released patches for ten vulnerabilities in VirtualBox which allow attackers to break out of guest operating systems and attack the host operating system that VirtualBox runs on.
libcurl vulnerable since your inception
libcurl is a command-line transfer library that supports DICT, FILE, FTP, FTPS, Gopher, HTTP, HTTPS, IMAP and other. It is used to transfer data via URLs. Are you prepared? It is vulnerable since the first commit we recorded and it was fixed in 7.58.0 version.