If for some reason your WordPress-based website has not yet been automatically updated to the latest version 5.1.1, it’s highly recommended to immediately upgrade it before hackers could take advantage of a newly disclosed vulnerability to hack your website. Simon Scannell, a researcher at RIPS Technologies GmbH, who previously reported multiple critical vulnerabilities in […]
Hacking
Zero-Day Flaws in Counter-Strike 1.6 Let Malicious Servers Hack Gamers’ PCs
If you are a Counter-Strike gamer, then beware, because 39% of all existing Counter-Strike 1.6 game servers available online are malicious that have been set-up to remotely hack gamers’ computers. A team of cybersecurity researchers at Dr. Web has disclosed that an attacker has been using malicious gaming servers to […]
Users claim Samsung Galaxy S10 Face Recognition can be bypassed
The screen lock feature in the Samsung Galaxy S10 that is based on face recognition can be easily bypassed using a photo or a video of the owner. The discovery was made by users and tech reviewers that demonstrated how to bypass face recognition screen lock implemented in the Samsung […]
Saudi caller ID Dalil app exposed data of more than 5 million users
The Android caller ID app Dalil exposed online data belonging over 5 million users, security experts discovered a MongoDB database left accessible on the web without a password. The MongoDB behind the Android caller ID app Dalil was left exposed online, at least for a week, without a password, leaving 5 million […]
Citrix Data Breach – Iranian Hackers Stole 6TB of Sensitive Data
Popular enterprise software company Citrix that provides services to the U.S. military, the FBI, many U.S. corporations, and various U.S. government agencies disclosed last weekend a massive data breach of its internal network by « international cyber criminals. » Citrix said it was warned by the FBI on Wednesday of foreign hackers compromising its […]
Une faille critique met les utilisateurs de Windows 7 en danger
Google vient de révéler une faille critique dans le système d’exploitation de Microsoft qui est exploitée de manière active par des pirates. Un patch est en préparation. Mauvaise nouvelle pour les utilisateurs de Windows 7. Les chercheurs en sécurité de Google ont révélé hier avoir trouvé une faille zero-day dans Windows, […]
Research confirms rampant sale of SSL/TLS certificates on darkweb
A study conducted by academics discovered that SSL and TLS certificates and associated services can be easily acquired from dark web marketplaces. A study sponsored by Venafi and conducted by researchers from Georgia State University in the U.S. and the University of Surrey in the U.K. discovered that SSL and TLS certificates and associated […]
[SI-LAB] #OpJerusalem 2019 – JCry ransomware is now infecting Windows users
Over the last few days, a new ransomware campaign infected several users around the world as part of the #OpJerusalem campaign. SI-LAB analyzed this malware and noticed that it does not use sophisticated techniques. Criminals used UPX packer to protect malware code written in Go and a RSA public certificate […]
New Google Chrome Zero-Day Vulnerability Found Actively Exploited in the Wild
You must update your Google Chrome immediately to the latest version of the web browsing application. Security researcher Clement Lecigne of Google’s Threat Analysis Group discovered and reported a high severity vulnerability in Chrome late last month that could allow remote attackers to execute arbitrary code and take full control of the […]
Hackers have started attacks on Cisco RV110, RV130, and RV215 routers
Two days after Cisco patched a severe vulnerability in a popular brand of SOHO routers, and one day after the publication of proof-of-concept code, hackers have started scans and attacks exploiting the said security bug to take over unpatched devices. The vulnerability, tracked as CVE-2019-1663, was of note when it came […]