Security Report

WooCommerce fixes critical Upload Files vulnerability 3 min read

• News
• Security

WooCommerce fixes critical Upload Files vulnerability

Ax Sharma March 5, 2021

A critical vulnerability CVE-2021-24171 in WooCommerce Upload Files plugin can be exploited through multiple routes like double extension and path traversal attacks.... Read More

Grayhat pollutes npm, PyPI with thousands of fake supply chain dependencies 2 min read

• News
• Security

Grayhat pollutes npm, PyPI with thousands of fake supply chain dependencies

Ax Sharma March 4, 2021

A gray hat hacker has published over 7,000 dependency confusion packages to npm and PyPI repositories, and continues to post thousands more, in real time.... Read More

ThyssenKrupp suffers ransomware attack for the third time 3 min read

• News
• Security

ThyssenKrupp suffers ransomware attack for the third time

Ax Sharma February 1, 2021

ThyssenKrupp has again been hit by a cyber attack from the NetWalker ransomware group, after previously having been stricken by two other ransomware groups.... Read More

Hacker claims to sell 1.3 million Hyundai Russia customer records 1 min read

• News
• Security

Hacker claims to sell 1.3 million Hyundai Russia customer records

Ax Sharma January 14, 2021

Hacker claims to sell 1.3 million records of Hyundai Russia customers on hacker forum... Read More

Data of 500,000 Betway gambling customers being allegedly sold on hacker forum 2 min read

• News

Data of 500,000 Betway gambling customers being allegedly sold on hacker forum

Ax Sharma January 12, 2021

A hacker is allegedly selling data of 500,000 Betway UK customers, with 10,000 records leaked at almost no cost. The data can be abused in sophisticated spear-phishing attacks to target online gambling players.... Read More

What is a cryptocurrency wallet and how does it manage digital currency? 5 min read

• News

What is a cryptocurrency wallet and how does it manage digital currency?

Vin Boris January 9, 2021

Cryptocurrency wallet development services are a rage these days. Let’s understand what they are. A cryptocurrency wallet is a piece of software that is used... Read More

PoC exploits for Apache Flink Path Traversal vulnerabilities posted 2 min read

• News

PoC exploits for Apache Flink Path Traversal vulnerabilities posted

Ax Sharma January 6, 2021

This week Apache Flink has disclosed 2 path traversal vulnerabilities CVE-2020-17518 and CVE-2020-17519. Hackers have already posted Proof-of-Concept (PoC) exploits for these bugs.... Read More

Source code revealed for malware that locks IoT male chastity devices 2 min read

• Malware
• News
• Security

Source code revealed for malware that locks IoT male chastity devices

Ax Sharma January 5, 2021

The ChastityLock malware locks your tool up and has got you by the balls, literally. ... Read More

Cloudflare WAF bypass exploits revealed 3 min read

• News
• Security

Cloudflare WAF bypass exploits revealed

Ax Sharma January 4, 2021

A Cross-Site Scripting (XSS) protection bypass technique has been revealed for Cloudflare Web Application Firewall (WAF). The exploit has been publicly known since 2019 but remains unpatched.... Read More

Amey suffers cyber attack from ransomware 4 min read

• Breaches
• Cybercrime
• News

Amey suffers cyber attack from ransomware

Ax Sharma January 1, 2021

UK's prominent infrastructure management company Amey has been hit by Mount Locker ransomware group in what the company has called a "complex" cyber attack.... Read More