Cybersecurity News

Top Software Testing Services

Microsoft October 2020 Patch Tuesday fixes 87 vulnerabilities

Microsoft released its monthly batch of security fixes known as Patch Tuesday on the 13th of October, in which 87 bugs have been patched by the OS manufacturer this month across a wide variety of Microsoft software. Microsoft has released security patches for all supported versions of the company’s Windows operating system, as well as…
Read more

What is Open Source Intelligence (OSINT)- How can I make use of it?

OSINT represents Open Source Intelligence and it is one of the key viewpoints in understanding the cybersecurity awareness that leads the Internet nowadays. The term OSINT originates from numerous many years prior. Indeed, US military offices began utilizing the term OSINT in the last part of the 1980s as they were re-examining the idea of…
Read more

Security experts hacked Apple for 3 months- Here what they found

In the wake of getting some answers concerning Apple’s Bug Bounty Program, a gathering of security scientists — Sam Curry, Brett Buerhaus, Ben Sadeghipour, Samuel Erb, and Tanner Barnes — cooperated and hacked Apple from July 6, 2020, to October 6, 2020. During their commitment, they found several vulnerabilities in key parts of their infrastructure…
Read more

CONTI Ransomware explained: How it works and how to defend it

CONTI is malicious software categorized as ransomware. Systems infected with this malware have their data encrypted and request a ransom for decryption to the victims. All the affected files are appended with the “.CONTI” suffix during the encryption process. For instance, a file originally called “Example.jpg” will appear as “Example.jpg.CONTI” following encryption. A text file…
Read more

Federal Agency Compromised by Malicious Cyber Actor

Investigation on a recent malware attack by a threat actor on the corporate network of a federal organization has been released by the U.S. Department of Homeland Security Cybersecurity and Infrastructure Security Agency (CISA).  The cyber threat attacker leveraged compromised credentials to install sophisticated malware, including multi-stage malware that evaded the anti-malware security of the…
Read more

Operation SideCopy: Cyber Espionage targeting Indian Army – The Hack Report

Quick Heal researchers warn the government of a new cyber attack suspected to be routed by Pakistan based APT-31 and backed by China.Seqrite, Quick Heal’s threat intelligence group, recently found evidence of an Advanced Persistence Threat(APT) against the Indian Army and allied forces. The operation is dubbed as “Operation SideCopy.”The operation is said to be…
Read more

Zerologon vulnerability

Zero logon Vulnerability: Instantly Become Domain Admin by Subverting Netlogon Cryptography

Zerologon is the name that was assigned to a vulnerability found in CVE-2020-1472. Due to the error in the log on method, it is called Zerologon, where the initialization vector (IV) is set to all zeros all the time, random numbers should still be an initialization vector (IV). An emergency advisory urging civilian federal agencies to take…
Read more

Instagram vulnerability

Instagram Vulnerability Capable of Exploiting Smartphone by RCE, Now Fixed

Facebook patched a major vulnerability in Instagram, which was large enough to take over the whole smartphone. The issue was found in the android application of Instagram. The issue privately told to Facebook, the owner of Instagram, by Check Point was present in a third party project Mozpeg.  Mozpeg is a third-party open source project utilized…
Read more

Researchers finds ongoing surveillance campaign from 2014 targeting Iranian expats and defectors

The history of Iranian cyber-offensive operations has shown that the same threat actors responsible for espionage against the private sector are engaged in surveillance of human rights defenders and are significantly more successful. The relationship between Iran-originated cyber activities and the government, as well as the motivations for such operations, is made more apparent by the lens…
Read more

German Ransom

A German Patient Dies After Ransomware Attack Paralyzes German Hospital Systems

In an unusual case, a German woman died of ransomware. German police have launched a homicide case against the hackers.  In a first of it is kind, a female patient from Dusseldorf, Germany, due to getting a life-saving treatment died as a result of a cyber-attack at Dusseldorf University Hospital which resulted in locking the…
Read more