Warning: ASUS Software Update Server Hacked to Distribute Malware

cyber

Remember the CCleaner hack? CCleaner hack was one of the largest supply chain attacks that infected more than 2.3 million users with a backdoored version of the software in September 2017. Security researchers today revealed another massive supply chain attack that compromised over 1 million computers manufactured by Taiwan-based tech giant ASUS. A […]

التلفزة الوطنية تعلن تعرض صفحتها في الفايسبوك للقرصنة وتنفي إعتزام الشاهد إلقاء كلمة

cyber

أعلنت  التلفزة  التونسية في تدوينة نشرتها، منذ قليل، تعرض صفحتها في الفايسبوك الى عملية لقرصنة ونفت إعتزام رئيس الحكومة يوسف الشاهد إلقاء كلمة بين شوطي مقابلة جمعية جربة والترجي الرياضي التونسي .ويشار إلى انه تم نشر تدوينة في صفحة التلفزة الوطنية أعلنت من خلالها أن رئيس الحكومة سيلقي كلمة بين […]

Cisco addresses High-Severity flaws in IP Phone 8800 and 7800 series

cyber

Cisco released security updates to address vulnerabilities in its IP Phone 7800 and 8800 series that could be exploited by remote, unauthenticated attackers. Cisco released security patches to address vulnerabilities in its IP Phone 7800 and 8800 series that could be exploited by remote, unauthenticated attackers. Cisco IP Phone 8800 […]

A new rash of highly covert card-skimming malware infects ecommerce sites

cyber

The rash of e-commerce sites infected with card-skimming malware is showing no signs of abating. Researchers on Thursday revealed that seven sites—with more than 500,000 collective visitors per month—have been compromised with a previously unseen strain of sniffing malware designed to surreptitiously swoop in and steal payment card data as […]

Unprotected Elasticsearch DB exposed 33 Million job profiles in China

cyber

Security expert discovered an unprotected Elasticsearch database exposed online that was containing approximately 33 million job profiles in China.  Security expert Sanyam Jain at GDI Foundation has discovered an unprotected database exposed online that was containing approximately 33 million profiles for people in China who provided their resume to job recruitment sites.  […]

Experts published details of the actively exploited CVE-2019-0808 Windows Flaw

cyber

Experts from Qihoo 360 disclosed technical details of the actively exploited Windows zero-day flaw CVE-2019-0808 recently patched by Microsoft. Researchers at the security firm Qihoo 360 disclosed technical details of the zero-day vulnerability CVE-2019-0808 that was recently patched by Microsoft. The vulnerability was reported to Microsoft by researchers from Google’s Threat Analysis […]

New WordPress Flaw Lets Unauthenticated Remote Attackers Hack Sites

cyber

If for some reason your WordPress-based website has not yet been automatically updated to the latest version 5.1.1, it’s highly recommended to immediately upgrade it before hackers could take advantage of a newly disclosed vulnerability to hack your website. Simon Scannell, a researcher at RIPS Technologies GmbH, who previously reported multiple critical vulnerabilities in […]