News Clipping


PROACTIVE DETECTION CONTENT: CVE-2019-0708 [socprime]

I think the most of security community has agreed that CVE-2019-0708 vulnerability is of critical priority to deal with. And while saying “patch your stuff!” feels like the first thing that one should think of, the memories of WannaCry and NotPetya are still fresh in my mind. We know that...

Read more


PoC Exploit For Unpatched Windows 10 Zero-Day Flaw Published Online [thehackernews]

An anonymous hacker with an online alias “SandboxEscaper” today released proof-of-concept (PoC) exploit code for a new zero-day vulnerability affecting Windows 10 operating system—that’s his/her 5th publicly disclosed Windows zero-day exploit [1, 2, 3] in less than a year. Published on GitHub, the new Windows 10 zero-day vulnerability is a privilege escalation issue...

Read more


Hackers Used WhatsApp 0-Day Flaw to Secretly Install Spyware On Phones [hackernews]

Whatsapp has recently patched a severe vulnerability that was being exploited by attackers to remotely install surveillance malware on a few “selected” smartphones by simply calling the targeted phone numbers over Whatsapp audio call. Discovered, weaponized and then sold by the Israeli company NSO Group that produces the most advanced mobile spyware...

Read more


A Closer Look at the RobbinHood Ransomware [bleepingcomputer]

The RobbinHood Ransomware is the latest player in the ransomware scene that is targeting companies and the computers on their network. This ransomware is not being distributed through spam but rather through other methods, which could include hacked remote desktop services or other Trojans that provide access to the attackers. Since...

Read more


60 Million records of LinkedIn users exposed online [securityaffairs]

Researcher discovered eight unsecured databases exposed online that contained approximately 60 million records of LinkedIn user data.  Researcher Sanyam Jain at GDI foundation discovered eight unsecured databases exposed online that contained approximately 60 million records of LinkedIn user data. Most of the data are publicly available, the databases also include the email...

Read more


Windows 10 Version 1903 Drops Password Expiration Policies [source: bleepingcomputer]

Microsoft announced the configuration baseline settings draft release for Windows 10 v1903 (19H1) and Windows Server v1903, as well as the intention to drop password expiration policies starting with the Windows 10 May 2019 Update. Once removed, the preset password expiration settings should be replaced by organizations with more modern and better password-security...

Read more


Source Code for CARBANAK Banking Malware Found On VirusTotal[thehackernews]

Security researchers have discovered the full source code of the Carbanak malware—yes, this time it’s for real. Carbanak—sometimes referred as FIN7, Anunak or Cobalt—is one of the most full-featured, dangerous malware that belongs to an APT-style cybercriminal group involved in several attacks against banks, financial institutions, hospitals, and restaurants. In July last...

Read more


Page 3 of 5212345...102030...Last »