Information Security newsfeeds from around the world in English and French. Find it all in one place since 2004. You'll find online the last 5 years.
The security researchers of Trend Micro have recently detected that the XCSSET malware that has been outlined to attack the macOS operating system got updated. The analysts noted that the new updated version consists of a new feature, that enables the stealing of private data from different applications, which also includes the Google Chrome browser […]
Continue ReadingIn the quarterly Critical Patch Update for July 2021, Oracle has released 342 fixes for several of its products range. The security experts at Oracle have claimed that among those fixes there are some critical flaws, and a threat actor can easily exploit these flaws remotely. The most critical one is the deserialization flaw through […]
Continue ReadingResearchers uncovered a malicious NPM package that steals a Google Chrome password by abusing the legitimate password recovery tool. NPM is the largest package manager for Node Javascript that contains nearly 1.5 million packages with more than 20 million package downloads for every month. A Malicious NPM package was targeted the software developers by abusing […]
Continue ReadingCybersecurity analysts have recently discovered a vulnerability in a common printer driver used by major manufacturers like HP, Xerox, and Samsung. This occurrence was alerted by the security experts of SentinelOne security firm, and they have tracked this vulnerability with the following CVE ID:- CVE-2021-3438 They have claimed that since 2005 which means for 16 […]
Continue ReadingRecently the mobile security experts at zecOps have discovered a bug in the iPhone last month that intrudes wireless connectivity when it gets connected to an access point with a specific name. This bug was dubbed as WiFiDemon, and it is a remote code execution vulnerability, and for implementing operation it does not require any […]
Continue ReadingA new research report by the UK, NCSC with Alias, revealed that the Chinese hackers were merely responsible for the massive cyberattack on computer networks around the globe by exploiting Microsoft Exchange Server vulnerabilities. The chinse-State-sponsored hacking group known as HAFNIUM was reportedly responsible for this massive attack that took place earlier this year. HAFNIUM is an […]
Continue ReadingSecurity researchers recently spotted a cyberweapon, which is a Windows spyware that develops and sells by an Isreal based commercial spyware maker “Candiru” to attack Windows users around the globe. Candiru is also known as Sourgum is a private firm from Isreal that selling “untraceable” spyware exclusively to governments to attack and monitor iPhones, Androids, […]
Continue ReadingAfter scrutinizing so many security events, and in an attempt to provide better security and expand its product range, Microsoft finally decided to buy a security software company, RiskIQ. On Monday, Microsoft finally announced this deal on its official blog, but, they didn’t disclose any terms. Apart from this, Microsoft is paying $500 million in […]
Continue ReadingThe Great Firewall is an alliance of different authoritative activities as well as technologies that are administered by the People’s Republic of China to control and improve the internet regionally. However, the main goal of the Great Firewall in internet censorship in China is generally to block access to decided foreign websites and to reduce […]
Continue ReadingResearchers uncovered a new wave of Android malware campaign ” Joker” which posed as a QR scanner to target Android users. Joker malware carries functionalities of both Spyware and Trojan capabilities, and quite sophisticated remain undetected through the traditional malware analysis methods. The malware was initially found from the Google play store where their attacker […]
Continue Reading