Saturday, June 12, 2021

Malware and Vulnerabilities

Google Chrome blocks eight ports against new NAT Slipstreaming attack

Following the discovery of the NAT Slipstreaming 2.0 attack this week, Google says it will block Chrome traffic on ports 69, 137, 161, 1719, 1720, 1723, 6566, and 10080. Google has blocked eight ports within the Chrome web browser to...

The fourth type of malware discovered in the SolarWind Hack

Symantec said it identified Raindrop, the fourth type of malware used in the SolarWinds breach, after Sunspot, Sunburst, and Teardrop. Cybersecurity company Symantec said it had identified another type of malware used during the attack on the SolarWinds, bringing the...

Researchers Disclosed a security vulnerability in UNEP that affects 100k staff records

Today, researchers have revealed a security vulnerability by exploiting which they could access more than 100,000 private worker records of United Nations Environmental Program (UNEP).  The information breach originated from Git directories and credentials, which permitted the researchers to clone...

Nvidia releases security update for high-severity flaws affecting Windows, Linux devices

NVIDIA has released security updates to address six security vulnerabilities found in Windows and Linux GPU screen drivers, as well as ten additional flaws affecting the NVIDIA Virtual GPU (vGPU) management software. Released on Thursday, the technology giant said the...

Firefox, Chrome, Edge Bugs Allows Remote System Hijacking

Major browsers get an upgrade to fix individual bugs which allow for remote attacks, which could potentially allow hackers to take over targeted devices. Makers of the Chrome, Firefox, and Edge browsers are urging users to patch critical vulnerabilities that...

Backdoor accounts found in More than 100,000 Zyxel firewalls, VPN gateways

Dutch cybersecurity researchers have discovered a backdoor account in 100,000 networking devices manufactured by Zyxel, which may grant hackers accessibility to all those vulnerable devices and put data at risk. The password and username (zyfwp/PrOw! AN_fXp) was observable in one...

Chrome and Microsoft Edge Malicious extensions hit 30 lakh Users

Threat Intelligence researchers from cybersecurity firm Avast have identified malware hidden in at least 28 third-party Google Chrome and Microsoft Edge extensions that may have affected 30 lakh users worldwide. Three million Google Chrome and Microsoft Edge users could be...

Adobe security update squashes critical vulnerabilities in Lightroom, Prelude

Adobe's final key patch around 2020 has coped with random code and JavaScript implementation bugs. Adobe's past scheduled security update of this year has solved critical vulnerabilities from Lightroom, Prelude, and Expertise Supervisor. The initial fix was issued for Adobe Lightroom,...

Amnesia:33 vulnerabilities Impact Countless Industrial and Smart Devices

Security researchers have identified 33 security defects in four accessible TCP/IP piles used across a broad selection of intelligent products. Security researchers have revealed now 33 security defects in four accessible TCP/IP libraries now used within the firmware of merchandise...

I made this ‘magic’ iPhone Wi-Fi hack in my bedroom, imagine what others could do: Google researcher

Do not assume there is not somebody out there who is willing and ready to discover the ideal bug to hack on your smartphone, warns Google Project Zero researcher. A Google Project Zero (GPZ) insect hunter that specializes in iPhone...

Latest News

An error of coding results attacker will delete a live video of Facebook

Facebook has solved the problem of Programming errors on live video services that allow attackers to successfully remove video...

What is a Cyber Attack or Virtual Attack

Firstly We Wil Discuss About Cyberattack or we will also say virtual attack. A Cyberattack is a type of attack that will be done...

Firefox 88 start disabling FTP with removal set for Firefox 90

Firefox 88 update has disabled File Transfer Protocol (FTP) support completely from the browser. The handling of clicking on FTP links from within Firefox...

Google Project Zero giving The 30-day grace period for user patch adoption

Google Project Zero will be shifting from a fairly hard 90-day deadline to a new model that incorporates a new 30-day grace period to...

Parking app ParkMobile experiences data breach of 21M Users

The popular mobile app that drivers use to pay and find available public parking in Pittsburgh and in other cities experienced a data breach...