News

Amey suffers cyber attack from ransomwareAmey suffers cyber attack from ransomware

Amey suffers cyber attack from ransomware

UK's prominent infrastructure management company Amey has been hit by Mount Locker ransomware group in what the company has called…

5 years ago
Backdoor master password for thousands of Zyxel firewalls revealedBackdoor master password for thousands of Zyxel firewalls revealed

Backdoor master password for thousands of Zyxel firewalls revealed

Thousands of Zyxel firewalls and access point controllers contain a secret, undocumented hardcoded password giving anyone admin access through this…

5 years ago
New Golang malware runs Monero miner on serversNew Golang malware runs Monero miner on servers

New Golang malware runs Monero miner on servers

The Golang malware breaches Windows, Linux servers and exploits popular vulnerabilities such as a critical RCE in Oracle WebLogic.

5 years ago
Kaggle fixes vulnerability that disclosed private leaderboard data via APIKaggle fixes vulnerability that disclosed private leaderboard data via API

Kaggle fixes vulnerability that disclosed private leaderboard data via API

Kaggle, an online community of data scientists and machine learning practitioners had been exposing private competition data due to a…

5 years ago
Hacker selling Vodafone’s Ho Mobile database of 2.5M usersHacker selling Vodafone’s Ho Mobile database of 2.5M users

Hacker selling Vodafone’s Ho Mobile database of 2.5M users

The database contains ICCID that can be used in SIM swapping attacks. Other information in the leaked dump includes mobile…

5 years ago
Joomla fixes ACL violation vulnerability after 2 yearsJoomla fixes ACL violation vulnerability after 2 years

Joomla fixes ACL violation vulnerability after 2 years

Joomla! CMS project has fixed an access control violation flaw, CVE-2020-35616 nearly after 2 years of its reporting.

5 years ago
Google ‘Send Feedback’ bug could expose your sensitive data to attackersGoogle ‘Send Feedback’ bug could expose your sensitive data to attackers

Google ‘Send Feedback’ bug could expose your sensitive data to attackers

Google Docs "Send Feedback" feature vulnerability which could expose your sensitive files to attackers earns researcher a $3,134 bounty.

5 years ago
Word malware uses GitHub and Imgur pic to run Cobalt Strike scriptWord malware uses GitHub and Imgur pic to run Cobalt Strike script

Word malware uses GitHub and Imgur pic to run Cobalt Strike script

A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads…

5 years ago
UK energy supplier E.ON erroneously takes out Direct Debit payments earlyUK energy supplier E.ON erroneously takes out Direct Debit payments early

UK energy supplier E.ON erroneously takes out Direct Debit payments early

UK energy provider E.ON has apologised for mistakenly debiting customer bank accounts earlier than expected for their energy bill payments.

5 years ago
Insecure QR codes on COVID-19 test results come with data exposure risksInsecure QR codes on COVID-19 test results come with data exposure risks

Insecure QR codes on COVID-19 test results come with data exposure risks

Medical labs appointed by governments to test incoming international passengers for COVID-19 contain insecure QR code implementations that may lead…

5 years ago