Financial CERT réalise son premier cyber-exercice. Mardi le 28 Novembre 2017, Le Financial CERT de l’APTBEF qui est entité de coordination au sein du secteur financier tunisien pour la lutte contre les cyber-attaques a organisé un événement en collaboration avec l’agence nationale de la sécurité informatique qui s’est déroulé au […]
Haythem Elmir
Vulnérabilité dans Asterisk
RISQUE(S) Déni de service à distance RÉSUMÉ Une vulnérabilité a été découverte dans Asterisk . Elle permet à un attaquant de provoquer un déni de service à distance. CONTOURNEMENT PROVISOIRE Asterisk Open Source versions 13.x antérieures à 13.18.3 Asterisk Open Source versions 14.x antérieures à 14.7.3 Asterisk Open Source versions […]
Malware display fake BSOD to sell phony Windows anti-virus for $25
Microsoft has a never-ending malware problem, in fact, millions of Windows devices worldwide have been plagued with some sort of malicious software. Recently, the IT security researchers at Malwarebytes discovered a Windows tech support scam in which users are first infected with a malware and then tricked into spending $25 via […]
PayPal Admits That 1.6 Million Customer Details Stolen At Recently Acquired TIO Networks
PayPal notified clients on Friday that private data for 1.6 million individuals may have been stolen by hackers who breached the systems of its subsidiary TIO Networks, which is a Canadian organization that operates a network of over 60,000 utility and bills payment kiosks across North America. PayPal acquired it […]
Experts discovered a new variant of Shadow BTCware Ransomware Variant
The security expert Michael Gillespie discovered a new variant of the Shadow BTCware Ransomware which is manually installed on unsecured systems. The security expert Michael Gillespie discovered a new variant of the BTCWare ransomware, the malicious code was spread by hacking into poorly protected remote desktop services and manually installed by crooks. The new Shadow BTCware Ransomware variant appends […]
RSA Authentication SDK affected by two critical vulnerabilities, patch it now!
Two different critical vulnerabilities were found in the RSA Authentication SDK (software development kit), patch them asap. The first bug, tracked as CVE-2017-14377, is authentication bypass that affects the RSA Authentication Agent for Web for Apache Web Server. The flaw could be exploited by a remote unauthenticated user by sending a crafted packet that […]
Researchers discover a vulnerability in the DIRTY COW original patch
Researchers discovered that the original patch for the Dirty COW vulnerability (CVE-2016-5195) is affected by a security flaw. The original patch for the Dirty COW vulnerability (CVE-2016-5195) is affected by a security flaw that could be exploited by an attacker to run local code on affected systems and exploit a race condition […]
En collaboration avec Sagemcom: Ooredoo lance le premier réseau IoT en Tunisie
En collaboration avec Sagemcom: Ooredoo lance le premier réseau IoT en Tunisie Ooredoo Tunisie et Sagemcom viennent de lancer le premier réseau tunisien didié à l’internet des objet (IoT) basé sur la technologie LoRa. Ce réseau permet aux objets d’echanger des données de faible taille avec une autonomie qui peut […]
Websites use your CPU to mine cryptocurrency even if you close them
The trend of generating cryptocurrency is increasing, thanks to the growing popularity and rise in the value of the Bitcoin. Some use cryptocurrency mining software while some embed mining codes on their website and take advantage of visitors’ CPU time whenever they visit the site. The Pirate Bay and CBS’s ShowTimes websites were some […]
A Tricky PayPal Phishing Scam That Comes From Official PayPal Email
Nothing is surprising about a PayPal phishing scam but what might raise some eyebrows is the fact that these scams are becoming sophisticated day by day. Usually, phishing scams look for users’ login credentials but recently, HackRead.com discovered a scam that aims at stealing everything from a PayPal users, and […]