Cyber Security Newsfeeds from around the world
JPCert/CC introduced the malware Datper, which is thought to be used by the attack group Tick [1] (also called BRONZE BUTLER [2] ) in the previous JPCERT / CC Eyes , but the attacks considered to be related to this attack group are still It continues. …
Continue Reading#################################################################### # Exploit Title : Joomla JWallPapers Components 2.0.1 CSRF Backdoor Access Vulnerability # Author [ Discovered By ] : KingSkrupellos # Team : Cyberizm Digital Security Army # Date : 1…
Continue ReadingGoogle security researchers have analyzed the impact of the data-leaking Spectre vulnerabilities afflicting today’s processor cores, and concluded software alone cannot prevent exploitation. The Chocolate Factory brainiacs – Ross Mcilroy, Jaroslav Sevc…
Continue Readingkdobieski Fri, 02/15/2019 – 09:12.
So, who is most at risk from such attacks? These certificate attacks threaten a range of organizations, starting with the certificate authority (CA) to governments and large enterprises. Certificate Authorities. Cybe…
Continue ReadingThe newly disclosed vulnerability is incredibly easy to exploit, and yet has serious consequences: Attackers can monitor the app’s usage, read all messages and even track the victim’s geographic location, researchers with Checkmarx, who discovered the …
Continue ReadingOriginal release date: February 12, 2019. Mozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system.The National Cybe…
Ori…
Continue Reading1) Use-after-free error Description. The vulnerability allows a remote attacker to cause DoS condition on the target system. The weakness exists due to use-after-free error in Skia when handling malicious input. A remote attacker can trick the victim i…
Continue ReadingOngoing Campaigns. EXE files used to infect Mac devices with malware Trend Micro researchers observed a new method of infecting macOS devices with malware that consists of running executable files that normally only execute on Windows devices. They wer…
Continue ReadingMozilla has released security updates to address vulnerabilities in Firefox and Firefox ESR. An attacker could exploit some of these vulnerabilities to take control of an affected system. The National Cybersecurity and Communications Integration Center…
Continue ReadingThis new attack is also functional against the recently released TLS 1.3 protocol. A new cryptographic attack capable of disrupting the encrypted (TLS) traffic has been discovered; according to network security and ethical hacking specialists from the …
Continue Reading