A new strand of malware uses Word files with macros to download a PowerShell script from GitHub. This PowerShell script further downloads a legitimate image file from image hosting service Imgur to decodeÂ a Cobalt Strike script.
RecentlyÂ discoveredÂ Gitpaste-12Â worm that spreads via GitHub and also hosts malicious payload on Pastebin, has returned with over 30 vulnerability exploits, according to researchers at Juniper Labs.
A severe authentication bypass vulnerability has been reported inÂ Bouncy Castle, aÂ popular open-source cryptography library. When exploited, the vulnerability (CVE-2020-28052) can allow an attacker to gain access to user and administrator accounts due to a cryptographic weakness in the manner passwords are checked.
The team behindÂ a popular WordPress plugin has disclosedÂ a critical file upload vulnerability and issued a patch. The vulnerable plugin,Â Contact Form 7, has over 5 million active installations making this upgrade a necessity for WordPress site owners out there.
This week, Mattermost, in coordination with Golang has disclosed 3 critical vulnerabilities withinÂ Go language's XML parser. If exploited, these vulnerabilities, also impacting multiple Go-based SAML implementations, can lead to a complete bypass of SAML authentication which powers prominent web applications today.
This week Samsung has started rolling out Android's December security updates to mobile devices to patchÂ critical security vulnerabilities in the operating system. This comes afterÂ Android had published their December 2020 security updates bulletin, which includes patches for critical bugs.
This week OpenSSL has released fixes for a high severity Denial of Service (DoS) vulnerability, CVE-2020-1971. U.S. DHS Cybersecurity and Infrastructure Security Agency (CISA)Â has warnedÂ adminsÂ to upgrade theirÂ vulnerableÂ OpenSSL instancesÂ immediately.
An artist has claimed responsibility for the mysterious monolithsÂ that have been appearing across the world, including Utah, California, and Romania. The pseudonymous artist has these monumental structures for sale on their website for $45,000.
Threat actors are exploiting legitimate SendGrid mailing service to send HMRC phishing emails that bypass spam filters.
This week, British music streaming service, Last.fm has fixed a credentials leak on their systems. The leak occurred due to a misconfigured Symfony profiler, exposing admin username and password.
A hacker has now leaked the credentials of almost 50,000 Fortinet SSL VPNs vulnerable to CVE-2018-13379. Exploits for these VPNs had been posted over the weekend on hacker forums, as reported by BleepingComputer.
This week researchers analyze BAT script obfuscation techniques used by Trickbot's 100 to evade antivirusÂ detection.
Thousands of domains, including those belonging to high street banks and government organizations are vulnerable to a critical Path Traversal flaw in Fortinet SSL VPN.
The Vote Joe site set up by Biden Presidential campaign was hacked this week and defaced by a Turkish group called RootAyyÄ±ldÄ±z. The defacement appears to have lasted for over 24 hours.
Micropayments platform Coil, used by content creators and popular blogs accidentally exposed the email addresses of some users in a mass email announcement.