Hijacking Firefox
The SSDP engine of the victims' Firefox browsers can be tricked into triggering an Android intent by simply replacing location of the XML file in the response packets with a…
Maze infects via VM 🐾
The gang responsible for the Maze ransomware family conducted an attack in which they distributed their malware payload inside of a virtual machine (VM). The attackers packaged the ransomware payload…
Ngrok Abused
Cybercriminals have been using ngrok—a cross-platform application to expose local development servers to the internet, for malicious purposes for years now. An organization was targeted by a keylogger, where malicious…
Posted inMobileApps
BLESA .. Bluetooth Disguised
The improper BLE reconnection procedure has made billions of Android and iOS devices vulnerable to the new attack dubbed Bluetooth Low Energy Spoofing Attack (BLESA). Two critical security flaws in…
Crowdstrike joins hand with ServiceNow for IR
CrowdStrike has today announced it has joined the ServiceNow® Service Graph Connector Program, a new designation within the Technology Partner Program. Users can now integrate device data from the CrowdStrike…
Windows 10 Sandbox has a Vulnerability inside
A researcher discovered a new zero-day vulnerability in most Windows 10 editions, which allows creating files in restricted areas of the operating system. Exploiting the flaw is trivial and attackers…
Posted inMobileApps
Zoom 2FA goes for all
Zoom has announced that it has added two-factor authentication (2FA) support to all user accounts to make it simpler to secure them against security breaches and identity theft. With 2FA, Zoom users…
Posted inCrypto currency Sql
MrbMiner ! Havocing SQL databases
Thousands of Microsoft SQL Servers (MSSQL) have been found to be infected by a new malware gang, named this new malware gang which is hacking into the servers and installing…