Securityinform.com Blog

0

Critical Google Chrome vulnerability could expose your passwords, how to protect yourself

A serious vulnerability has been discovered in Google’s Chrome web browser that could allow hackers to steal victim’s Microsoft service passwords and Windows login credentials remotely. Luckily, some workarounds exist to prevent the issue until Google releases a security update. The vulnerability exist in the way Chrome downloads files in it’s default configuration. Latest version of the popular web browser downloads files automatically...

65 total views, no views today

0

Database containing 560 million passwords discovered

Security researchers from Kromtech Security Research Center have discovered a massive database that contains more than 560 million email addresses and passwords collected from different sources. The database is 75+ gigabytes in size. It is also reported that this database contains structured email address-password data in readable json format (Javascript Object Notation – simply a way to store information in an...

81 total views, 1 views today

0

Bell Canada hacked, 1.9 million account details illegally accessed

Bell, Canada’s largest communications company has confirmed on Monday that an anonymous hacker has managed to illegally access Bell customer information. It has been announced that the data accessed included approximately 1.9 million customer’s active email addresses and 1.700 customer’s names and active phone numbers. Luckily, any financial data, password information or other type of sensitive data were not accesses, according to Bell...

74 total views, 1 views today

0

United Airlines cockpit door access codes accidentally posted online

United Continental Holdings Inc, the company that owns United Airlines and United Express, sent out an alert email to employees on Saturday about a breach in cockpit-door security procedures after a flight attendant mistakenly posted some information (including access codes) on a public website, Wall Street Journal reported. On some commercial aircraft, there is a keypad next to the flight deck door...

64 total views, no views today

0

WannaCry, the largest ransomware-spread campaign to date!

If you think that updating operating systems is not necessary, think again! Within the scope of the largest ransomware-spread campaign to date, more than 223.000 computers across 99 countries worldwide (including United States, Russia, India, Germany, Africa, Philippines, China …) have been infected. Here is the story behind the WannaCry ransomware and protection methods… On May 12th, National Cryptological Center of Spain...

129 total views, no views today

0

Multiple vulnerabilities found in Asus RT routers, update needed

Changing default credentials is one of the most important security precautions. And the latest Asus wireless router vulnerability is just another example that shows why you need to change it. Security experts from ‘Nightwatch Cybersecurity’ have discovered multiple vulnerabilities in 40 different Asus RT router models. According to experts, recent vulnerabilities allows malicious sites to login and change the router settings, exfiltrate router...

101 total views, no views today

0

New OpenBSD vulnerability allows man-in-the-middle (MitM) attack

OpenBSD is a free and open source Unix-like computer operating system based upon Berkeley Software Distribution (BSD, a Unix operating system derivative) and it is one of the most secure operating systems available. But, like all other operating systems, it is also vulnerable to attacks and needs patching. Network and wireless security researcher Mathy Vanhoef has discovered a new vulnerability in OpenBSD’s...

283 total views, no views today

0

A dangerous Android banking trojan discovered that targets 22 Turkish mobile banking apps

ESET researchers have discovered a dangerous Android banking trojan that masquerades as a weather forecast application on Google Play. The malware, dubbed Trojan.Android/Spy.Banker.HU, targeted the users of 22 Turkish mobile banking apps, whose credentials were harvested using fake login forms. Banking trojans are sophisticated piece of malware which designed to steal banking information by using message interception, form grabbing, keystroke logging, screen capturing, fake login...

412 total views, 1 views today

0

Filecoder.E: The new macOS-targeting ransomware distributed through Torrent websites

Experts from antivirus firm Eset have discovered a new ransomware variant, called OSX/Filecoder.E, that targets Macintosh users. It’s not the first time Mac-targeting ransomware has been detected by security researchers. In 2014, Kaspersky Labs discovered OSX.FileCoder.a ransomware, though it wasn’t complete at the time. And the next one, OSX.KeRanger was discovered in 2016 by Palo Alto researchers. The new Filecoder ransomware, designed...

267 total views, no views today

0

A new denial-of-service (DoS) vulnerability was discovered in BIND DNS, updates available

A serious vulnerability was discovered in multiple versions of BIND DNS software that allows a remote attacker to conduct denial-of-service (DoS) attack. BIND is the most widely used Domain Name System (DNS) on the internet that enables you to publish your Domain Name System (DNS) information on the Internet, and to resolve DNS queries for your users. On Unix-like operating systems it...

308 total views, no views today