Ax Sharma

ThyssenKrupp suffers ransomware attack for the third time 3 min read

• News
• Security

ThyssenKrupp suffers ransomware attack for the third time

Ax Sharma February 1, 2021

ThyssenKrupp has again been hit by a cyber attack from the NetWalker ransomware group, after previously having been stricken by two other ransomware groups.... Read More

Hacker claims to sell 1.3 million Hyundai Russia customer records 1 min read

• News
• Security

Hacker claims to sell 1.3 million Hyundai Russia customer records

Ax Sharma January 14, 2021

Hacker claims to sell 1.3 million records of Hyundai Russia customers on hacker forum... Read More

Data of 500,000 Betway gambling customers being allegedly sold on hacker forum 2 min read

• News

Data of 500,000 Betway gambling customers being allegedly sold on hacker forum

Ax Sharma January 12, 2021

A hacker is allegedly selling data of 500,000 Betway UK customers, with 10,000 records leaked at almost no cost. The data can be abused in sophisticated spear-phishing attacks to target online gambling players.... Read More

PoC exploits for Apache Flink Path Traversal vulnerabilities posted 2 min read

• News

PoC exploits for Apache Flink Path Traversal vulnerabilities posted

Ax Sharma January 6, 2021

This week Apache Flink has disclosed 2 path traversal vulnerabilities CVE-2020-17518 and CVE-2020-17519. Hackers have already posted Proof-of-Concept (PoC) exploits for these bugs.... Read More

Source code revealed for malware that locks IoT male chastity devices 2 min read

• Malware
• News
• Security

Source code revealed for malware that locks IoT male chastity devices

Ax Sharma January 5, 2021

The ChastityLock malware locks your tool up and has got you by the balls, literally. ... Read More

Cloudflare WAF bypass exploits revealed 3 min read

• News
• Security

Cloudflare WAF bypass exploits revealed

Ax Sharma January 4, 2021

A Cross-Site Scripting (XSS) protection bypass technique has been revealed for Cloudflare Web Application Firewall (WAF). The exploit has been publicly known since 2019 but remains unpatched.... Read More

Amey suffers cyber attack from ransomware 4 min read

• Breaches
• Cybercrime
• News

Amey suffers cyber attack from ransomware

Ax Sharma January 1, 2021

UK's prominent infrastructure management company Amey has been hit by Mount Locker ransomware group in what the company has called a "complex" cyber attack.... Read More

Backdoor master password for thousands of Zyxel firewalls revealed 3 min read

• News
• Security

Backdoor master password for thousands of Zyxel firewalls revealed

Ax Sharma January 1, 2021

Thousands of Zyxel firewalls and access point controllers contain a secret, undocumented hardcoded password giving anyone admin access through this zero-day.... Read More

New Golang malware runs Monero miner on servers 2 min read

• Malware
• News
• Security

New Golang malware runs Monero miner on servers

Ax Sharma December 31, 2020

The Golang malware breaches Windows, Linux servers and exploits popular vulnerabilities such as a critical RCE in Oracle WebLogic. ... Read More

Kaggle fixes vulnerability that disclosed private leaderboard data via API 3 min read

• Breaches
• News
• Security

Kaggle fixes vulnerability that disclosed private leaderboard data via API

Ax Sharma December 30, 2020

Kaggle, an online community of data scientists and machine learning practitioners had been exposing private competition data due to a misconfigured API. This could potentially give an unfair competitive advantage to participants.... Read More