Information Security (Page 43)

How to hack anyone using just a QR code?

On: April 14, 2022

Tagged: Cyberattack, cybercrime, cybersecurity, ethical hacking, Hacking, Hacking Tools, Information Security, International Institute of Cyber Security (IICS), Mobile Security, QR code, qrgen, Security breach, technology, tutorial, Tutorials

QR code (Quick Response) is the name by which we all know the modules to store information in a dot matrix or in a two-dimensional barcode. This matrix is readRead More →

Critical vulnerabilities affecting Citrix StoreFront, SD WAN, XenMobile Server, and Gateway Plug-in

On: April 13, 2022

In: Vulnerabilities

Tagged: Citrix, Citrix SD-WAN, Common Vulnerability Scoring System (CVSS), Cross-site scripting (XSS), Cyberattack, cybercrime, cybersecurity, Cybersecurity and Infrastructure Security Agency (CISA), Hacking, Information Security, security flaws, technology, vulnerability

Citrix announced the release of security patches for multiple vulnerabilities present in some of its products, including a severe issue in SD-WAN. Tracked as CVE-2022-27505, this flaw was described asRead More →

Ermenegildo Zegna confirms ransomware attack; interrupted systems and stolen data

On: April 13, 2022

In: Cyber Security

Tagged: Cyberattack, cybercrime, cybersecurity, Ermenegildo Zegna, Hacking, incidents, Information Security, malware, RansomExx ransomware, ransomware, Securities and Exchange Commission (SEC), security flaws

The prestigious Italian fashion house Ermenegildo Zegna has confirmed that it was the victim of a ransomware attack that severely affected its operations and could be fixed without paying aRead More →

OWASP updates its Top 10 web application security risks to include 3 new categories. Consider fixing these application issues

On: April 12, 2022

In: Technology

Tagged: Cyberattack, cybercrime, cybersecurity, data security, Hacking, Information Security, Open Web Application Security Project (OWASP), security risks, Server-side request forgery (SSRF), technology, Web Application, web application security

In its latest update, the Open Web Application Security Project (OWASP) announced the inclusion of three new categories to its list of top security risks that could put all kindsRead More →

Zero-day vulnerability in LDAP reference in NGINX

On: April 12, 2022

In: Vulnerabilities

Tagged: Cyberattack, cybercrime, cybersecurity, Hacking, incidents, Information Security, Lightweight Directory Access Protocol (LDAP), NGINX, vulnerability, Zero-day vulnerability

Those responsible for the NGINX web server released a series of security updates to fix a severe zero-day vulnerability in its Lightweight Directory Access Protocol (LDAP). The NGINX LDAP referenceRead More →

5 famous fake antivirus apps finally removed from Play Store. Remove these apps from your smartphone

On: April 11, 2022

In: Mobile Security

Tagged: antivirus, banking malware, cybersecurity, Google, Google Play Store, Hacking, Information Security, malicious apps, malware, Mobile Security, multi factor authentication, security flaws, SharkBot

Play Store security teams confirmed that SharkBot, a dangerous banking malware distributed through fake antivirus tools, has finally been removed from Google official repository. SharkBot was first spotted on theRead More →

Octo: New version of a dangerous banking Trojan for Android devices

On: April 11, 2022

In: Cyber Security

Tagged: Android, banking Trojan, Coper, Cyberattack, cybercrime, cybersecurity, Dark Web, electronic fraud, Exobot, ExobotCompact.D, Google Play Store, Hacking, incidents, Information Security, malware, Mobile Security, remote access Trojan (RAT), Smartphones, ThreatFabric

A few months ago, specialists from the security firm ThreatFabric reported the detection of a new malware variant for Android devices. Identified as Coper, this malware family appeared to beRead More →

If you have not fixed the Spring4Shell vulnerability, Mirai botnet will automatically take control of your network

On: April 8, 2022

In: Cyber Security

Tagged: Common Vulnerability Scoring System (CVSS), Cyberattack, cybersecurity, hackers, Hacking, incidents, Information Security, Mirai botnet, Qihoo 360, remote code execution (RCE), securty flaws, Spring, Spring4Shell, Trend Micro

After multiple rumors, researchers from security firm Trend Micro confirmed that the Spring4Shell vulnerability is being exploited by Mirai botnet hackers. As previously reported, CVE-2022-22965 and CVE-2022-22963 are critical vulnerabilitiesRead More →

Critical remote code execution vulnerability in Ruby library asciidoctor-include-ex. Secure your applications

On: April 8, 2022

In: Vulnerabilities

Tagged: AsciiDoc, Common Vulnerability Scoring System (CVSS), cybercrime, cybersecurity, cyebrattack, Hacking, Information Security, remote code execution (RCE), Ruby, Security breach, security flaws, vulnerability

Developers addressed a command injection vulnerability in asciidoctor-include-ext, a popular Ruby library that allows users to parse and convert AsciiDoc files. According to the report, this vulnerability allows remote codeRead More →