Month: August 2020

Top Software Testing Services

27 Years Old Russian Arrested for offering $1 Million to USA based company employee for planting malware

Cybercrime is the greatest threat to every company in the world – Ginni Rommety. With the advancement of technology, the Cyberworld is also emerging with some evil mindsets. They are always waiting for the opportunity to take privileges of the system. The FBI has arrested recently Russian nationalist named Egor Igorevich Kriuchkov on the charge of…
Read more

ReVoLTE: Eavesdropping Possible on Encrypted LTE Calls

A new study revealed a foundational vulnerability in the VoLTE calls, which could enable the attacker to eavesdrop on voice calls and even extract important data. The vulnerability is named ReVoLTE. The study Call Me Maybe is conducted by researchers from Ruhr University Bochum. A theoretical framework for the study was laid down by Raza…
Read more

Microsoft logo

Microsoft August 2020 New Patch fixes 120 vulnerabilities, two 0-days

Microsoft released its updated version recently for its users. It fixed 120 vulnerabilities in 13 products in this new version. Out of these 120, 17 are rated as most critical. The rate at which Microsoft is patching its vulnerabilities is probably putting a lot of pressure on its CVE team. Out of the patched vulnerabilities so far,…
Read more

browser

Browser CSP Bug Exposes Billions of Users Vulnerable to Data Theft

A bug was discovered recently in chromium-based browsers- chrome, opera, edge on Windows, Mac, and Android, which allows the attacker to bypass the CSP protocols entirely.  Gal Weizman, a JavaScript expert at Perimeter X, found the browser bug and vividly talked about it in his blog. The bug, CVE-2020-6519, was present in the chrome versions 73…
Read more

HaveIbeenPwned to go Open-Source

HaveIBeenPwned (HIBP) is a website that allows its users to check whether their data has been compromised. Its founder Troy Hunt who is also a Microsoft Regional Director, an MVP, and a renowned speaker, regularly shares his journey about HIBP through his blog. A recent announcement about the platform going open source has put it into the limelight. …
Read more

GEDmatch Breach: DNA Data of Million Users Exposed

A major breach in GEDmatch led to alterations in the permission setting of all the users. On 19 July, a security breach was reported to the GED officials when an attack was targeted at the server via an existing account. To handle the situation, the site was taken down by the authorities. The breach resulted…
Read more

Flawed Satellite Internet to Compromise Plane and Ship Safety

Satellite broadband services have applications in various sectors- Aviation, marine, and terrestrial, from domestic to commercial. Discrepancies in the security of the systems have been identified earlier. With time, the systems advanced, but they are often unencrypted and vulnerable to eavesdropping attacks by anybody sitting anywhere using remote access. The high cost of equipment has…
Read more

India as an Emerging Hack-For-Hire Hub

As the Cyberworld is advancing, so are the methods of invading cybersecurity by the attackers. Hacking, just like any other profession, has two types of usage- legitimate and non-legitimate. A recent report by Google TAG indicated a rise in hack-for-hire operations and claimed that most operations are based in countries like Iran, India, China, etc. …
Read more

New credit card attack, Inter skimming kit used in homoglyph attacks

Hackers working for financial motives to extract the credit card information of the users is not new. Several methods are being adopted over the span of time to trick users into giving their details. Further progress has been made in this regard. Malwarebytes has identified a new type of attack used for credit card skimming.  It combines…
Read more

Coordinated attack on Reddit, Hackers Hijack Mod Account

A coordinated hack attack happened on Reddit a few days ago. The hackers have reportedly posted messages or changed subreddit design in support of President Donald Trump.  The attack seemed to target high-profile subreddits just like the twitter hack that happened last month when twitter accounts of high-profile personalities were hacked, and tweets were made from the…
Read more