Hacking – Page 105

Hacking

Researcher Uses macOS App Screenshot Feature to Steal Passwords, Tokens, Keys

Haythem Elmir 7 ans ago

Malicious app developers can secretly abuse a macOS API function to take screenshots of the user’s screen and then use OCR (Optical Character Recognition) to programmatically read the text found in the image. The function is CGWindowListCreateImage, often utilized by Mac apps that take screenshots or live stream a user’s […]

Cyber Attack Disrupts Winter Olympics Website During Opening Ceremony

Haythem Elmir 7 ans ago

The Winter Olympics Games Organizing Committee is investigating a cyber attack on the event’s Internet and Wi-Fi system. The attack was carried out 45 minutes before the opening ceremony on Friday night in South Korea. According to the Committee’s spokeswoman, Nancy Park, the country’s Ministry of Defense and a cybersecurity team is investigating […]

fail0verflow hackers found an unpatchable flaw in Nintendo Switch bootROM and runs Linux OS

Haythem Elmir 7 ans ago

The group of hackers known as ‘fail0verflow’ has discovered a vulnerability in the gaming console Nintendo Switch that could be exploited to install a Linux distro. The hackers announced their discovery in a post on Twitter, the published an image of a console running the Debian Linux distro after the hack. View […]

Hacking

Hackers are exploiting the CVE-2018-0101 CISCO ASA flaw in attacks in the wild

Haythem Elmir 7 ans ago

Hackers are exploiting the CVE-2018-0101 CISCO ASA flaw in attacks in the wild and a Proof-of-concept exploit code is available online. This week, Cisco has rolled out new security patches for a critical vulnerability, tracked as CVE-2018-0101, in its CISCO ASA (Adaptive Security Appliance) software. This is the second the tech giant issued a […]

Hacking

New Tech Support Scam Freezes Chrome, Firefox & Brave Browser

Haythem Elmir 7 ans ago

Another day, another tech support scam – This scam aims at freezing Internet browsers and trick users into calling tech support scam where scammers try stealing personal data. A new scam campaign has been discovered by Malwarebytes researchers that targets the most reliable internet browsers in the world including Google […]

UDPOS PoS malware exfiltrates credit card data DNS queries

Haythem Elmir 7 ans ago

A new PoS malware dubbed UDPoS appeared in the threat landscape and implements a novel and hard to detect technique to steal credit card data from infected systems. The UDPoS malware was spotted by researchers from ForcePoint Labs, it relies upon User Datagram Protocol (UDP) DNS traffic for data exfiltration instead of HTTP that is the […]

Hacking

WordPress Update Breaks Automatic Update Feature—Apply Manual Update

Haythem Elmir 7 ans ago

WordPress Update Breaks Automatic Update Feature Apply Manual Update WordPress administrators are once again in trouble. WordPress version 4.9.3 was released earlier this week with patches for a total 34 vulnerabilities, but unfortunately, the new version broke the automatic update mechanism for millions of WordPress websites. WordPress team has now issued a […]

Hacking

Researcher found multiple vulnerabilities in NETGEAR Routers, update them now!

Haythem Elmir 7 ans ago

Security researchers Martin Rakhmanov from Trustwave conducted a one-year-study on the firmware running on Netgear routers and discovered vulnerabilities in a couple of dozen models. Netgear has just released many security updates that address vulnerabilities in a couple of dozen models. The vulnerabilities have been reported by security researchers Martin Rakhmanov […]

Joomla 3.8.4 release addresses three XSS and SQL Injection vulnerabilities

Haythem Elmir 7 ans ago

Joomla development team has released the Joomla 3.8.4 that addresses many issues, including an SQL injection bug and three cross-site scripting (XSS) flaws. Joomla development team has released the Joomla 3.8.4 that addresses a large number of issues, including an SQL injection bug and three cross-site scripting (XSS) vulnerabilities. The latest release also includes several improvements. The XSS and SQL […]

Hacking

Reddit site spoofed by cyber-criminals to steal credentials of users

Haythem Elmir 7 ans ago

Cyber-criminals set up a malicious website that spoofed the original Reddit site and stole login credentials of unsuspecting visitors, yet managed to obtain a valid SSL certificate from a domain registry. reddit-teamviewer Cyber-criminals set up a malicious website that spoofed the original Reddit site and stole login credentials of unsuspecting […]