News

NETGEAR routers vulnerable to “root” code execution, no patch yetNETGEAR routers vulnerable to “root” code execution, no patch yet

NETGEAR routers vulnerable to “root” code execution, no patch yet

In a recently released vulnerability disclosure from d4rkn3ss from VNPT ISC as well as Adam Nichols of GRIMM, we learn…

5 years ago
Operation In(ter)ception targeted European Space and Military Companies via LinkedInOperation In(ter)ception targeted European Space and Military Companies via LinkedIn

Operation In(ter)ception targeted European Space and Military Companies via LinkedIn

In a new report published by ESET's researchers, we learn of Operation In(ter)ception which heavily targeted aerospace and military organizations.…

5 years ago
Major U.S. companies face network disruptions: some blame DDoS attacksMajor U.S. companies face network disruptions: some blame DDoS attacks

Major U.S. companies face network disruptions: some blame DDoS attacks

Yesterday, reports emerged of widespread network outages across major U.S. telecoms and companies like T-Mobile, Instagram, Comcast, and Chase Bank.…

5 years ago
Indian hacker-for-hire firm wanted by FBI targeted ExxonMobil and othersIndian hacker-for-hire firm wanted by FBI targeted ExxonMobil and others

Indian hacker-for-hire firm wanted by FBI targeted ExxonMobil and others

  Last week we reported on CloudEyE which was a legitimate Italian business helping hackers with spreading malware. Now, Citizen…

5 years ago
Hackers blackmail exchange with $5 million of Ethereum fees – Decrypt.coHackers blackmail exchange with $5 million of Ethereum fees – Decrypt.co

Hackers blackmail exchange with $5 million of Ethereum fees – Decrypt.co

By Tim Copeland and Colin Harper   In the last two days, three bizarre Ethereum transactions have spent $5.7 million on fees. But…

5 years ago
WordPress Block Editor could let even most basic users exploit XSS vulns!WordPress Block Editor could let even most basic users exploit XSS vulns!

WordPress Block Editor could let even most basic users exploit XSS vulns!

  WordPress 5.4.2 release announcement stated the update shipped with multiple fixes for Cross-Site Scripting (XSS) vulnerabilities. Out of this…

5 years ago
Patient video consultations leaked in medical data breach: Babylon Health UKPatient video consultations leaked in medical data breach: Babylon Health UK

Patient video consultations leaked in medical data breach: Babylon Health UK

  In an a unfortunate incident, video consultants of some patients using the Babylon Health app were leaked to other…

5 years ago
The SSL issue: your smart TVs, fridges and devices may stop working soonThe SSL issue: your smart TVs, fridges and devices may stop working soon

The SSL issue: your smart TVs, fridges and devices may stop working soon

On May 30th, Roku streaming channels experienced an unexplained disruption, leaving impacted customers clueless with no idea what was wrong.…

5 years ago
Security firm admits to exposure of 5 billion records, after attempting to censor researchersSecurity firm admits to exposure of 5 billion records, after attempting to censor researchers

Security firm admits to exposure of 5 billion records, after attempting to censor researchers

  In March 2020, Bob Diachenko reported discovering an unprotected, publicly accessible  Elasticsearch instance which exposed two collections of records:…

5 years ago
Keepnet Labs case study: how NOT to handle a data breachKeepnet Labs case study: how NOT to handle a data breach

Keepnet Labs case study: how NOT to handle a data breach

  We just released news on this one but here's a summary of what happened: In March 2020, Bob Diachenko,…

5 years ago