Office 365 phishing page evades detection using Google captcha
A newly discovered phishing campaign makes the recipient solve captchas in an effort to both add some legitimacy to itself...
Ax Sharma
Ax Sharma is a UK-based security researcher, journalist and TV subject matter expert experienced in malware analysis and cybercrime investigations. His areas of interest include open source software security and threat intel analysis. Frequently featured by leading media outlets like the BBC, Channel 5, Fortune, WIRED, The Register, among others, Ax is an active community member of the OWASP Foundation and the British Association of Journalists (BAJ).
Slack is down and lagging for users across the world
Slack, the widely popular workplace messaging app has stopped working for multiple users across the globe or at least experiencing...
Gravatar API lets you scrape millions of user profiles
Yesterday, I reported on BleepingComputer how Gravatar API makes it easy for web scrapers and bots to automatically enumerate Gravatar...
Telegram app used by malware to infiltrate online stores
An ongoing trend observed by cybersecurity analysts and malware researchers reveals Telegram messaging service is being abused by malware authors...
NodeJS malware caught exfiltrating IPs, username, and device information on GitHub
Multiple NodeJS packages laden with malicious code have been spotted on npm registry. These "typosquatting" packages served no purpose other...
Can a Windows wallpaper really hijack your Microsoft account password?
This month security researcher bohops demonstrated a credential harvesting trick that uses Windows theme files. Setting a Windows wallpaper location to a...
A malware alert left hundreds of Bank of America customers panicking
According to reports, hundreds of Bank of America customers had trouble accessing their bank accounts yesterday due to Avast and...
Apple SSH privacy bug “exploited at large” remains unpatched after 2 years
A privacy bug lurking around in Apple Mac OS X since at least 2018 continues to remain unpatched. The severity...
Why do airplanes use floppy disks in 2020 for critical updates?
Airplanes are a luxury for most people to own, let alone toy with—given all the national security regulations. This year's...
Hacker Noon fixes leaky drafts: what about your blog?
Update Aug-13-2020: Hacker Noon has fixed the issue and a reply via a tweet provided more information: "URL removal request...