Canadian government site canada.gc.ca SSL certificate expires, breaks links
If you head to https://canada.gc.ca right now, ideally it should redirect automatically to the newer canada.ca government domain. However, on...
Mitsubishi companies hit by cyber attack, ransomware
This month, multiple subsidiary companies of the Japanese motor giant Mitsubishi have been hit by a series of cyberattacks. Mitsubishi...
Feds arrest Romanian malware actors behind CyberSeal and Dataprotector
In a joint effort led by international law enforcement agencies, including the U.S. FBI, Europol, and the Romanian police, a...
DoS flaw lets attackers crash NodeJS apps via DNS lookups
This week, NodeJS project has released fixes for a DoS vulnerability, CVE-2020-8277, that could be triggered via DNS requests. An...
Drupal fixes critical Remote Code Execution vulnerability, patch now
Drupal, a popular CMS and blogging platform has patched a remote code execution vulnerability, CVE-2020-13671. Today, over half a million...
Chaes malware strikes Latin American e-commerce sites
Researchers from the Cybereason Nocturnus Team have been keeping tabs on an undetected malware known as "Chaes." The malware discovered...
2021 security predictions from HackerOne’s top ethical hackers
As 2020 comes to a close, top ethical hackers and researchers of HackerOne, a bug bounty and responsible vulnerability disclosure...
‘CursedGrabber’ Discord malware possibly linked to Russian and Ukrainian hackers
A new family of Discord malware has been spotted by Sonatype this week. Known as CursedGrabber, multiple strands of this...
Insomnia Cookies exposes database passwords, then quietly fixes the leak
American bakery company sweetly remembered for its late-night warm cookie trucks across college campuses was caught leaking sensitive data on...
‘Verified’ Twitter account of cURL dev hacked, renamed to ‘Elon Musk’ in Bitcoin scam
The Twitter account of Daniel Stenberg, creator of the cURL software project has been hacked. Hackers have renamed the "verified"...