Information Security News|Cyber Security|Hacking Tutorial

Decrypt files encrypted by Astralocker, Yashma ransomware for free. Gang publishes the keys

On: July 8, 2022

Those responsible for AstraLocker ransomware have decided to end its life cycle. Therefore, no more actions will be carried out with it and, in addition, they have published the necessaryRead More →

11 important vulnerabilities in Fortinet products FortiOS, FortiAnalyzer, FortiADC, FortiManager, FortiProxy, FortiClient, FortiDeceptor, FortiSwitch, FortiRecoder & FortiVoiceEnterprise

On: July 7, 2022

In: Vulnerabilities

Fortinet, an American multinational corporation headquartered in Sunnyvale, California. The company develops and sells cybersecurity solutions, such as physical firewalls, antivirus software, intrusion prevention systems, and endpoint security components. FortinetRead More →

Critical OpenSSL vulnerability CVE-2022-2274 allows threat actors to remotely run code on your servers and encrypt them

On: July 6, 2022

In: Vulnerabilities

OpenSSL is a famous cryptography library that provides an open source implementation of the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols. It allows generating RSA private keysRead More →

Marriott hotel chain hacked 6th time. Most comfortable place for vacations or to get hacked?

On: July 6, 2022

In: Incidents

Marriott hotel chain suffered a data breach , as it reported that hackers stole more than 20 gigabytes of confidential data, between clients and internal processes. The incident, first reportedRead More →

Zero-Day vulnerability in Chrome, Edge, Brave, Opera, Vivaldi browsers allow taking control of your laptop or mobile

On: July 5, 2022

In: Vulnerabilities

In many cases, security vulnerabilities appear that affect the programs that we use on a day-to-day basis. A clear example is the browser. It may have vulnerabilities and that canRead More →

Critical SQL injection vulnerability in Django

On: July 5, 2022

In: Vulnerabilities

The Django project, an open source web framework based on Python, has fixed a high severity vulnerability in its latest versions. Identified as CVE-2022-34265, the potential SQL injection vulnerability existsRead More →

New Versions of Carbanak Banking Malware Seen Hitting Targets in U.S. and Europe

Netherlands University paid €200,000 in Bitcoins to a ransomware gang & now got its money back, except now, the Bitcoin was worth €500,000

On: July 4, 2022

In: Incidents, Malware

A Netherland university that became the target of a massive ransomware attack has received back its ransom money that it paid to hackers. They got double the money back. UniversityRead More →

Israeli metro servers hacked by Iranian hackers

On: July 4, 2022

In: Incidents

Iranian media has reported that Iranian hackers managed to take control of servers of the Israel Metro. Sabereen News Telegram channel, said the “huge” cyberattack targeted the operating systems andRead More →

!HackerOne hacked! Bug bounty Platform becomes the victim of Insider Threat

On: July 2, 2022

In: Incidents

A HackerOne employee had improperly accessed vulnerability reports submitted to the platform by security researchers’ for personal gain. The employee anonymously took these reports, somewhat modified them and disclosed theseRead More →

SAN storage products of Dell, Fujitsu, HP, Huawei, IBM, Brocade and Lenovo affected by 9 critical vulnerabilities

On: June 30, 2022

In: Vulnerabilities

Broadcom published that software used by its storage networking company Brocade is affected by 9 important vulnerabilities, and the same vulnerabilities impact the SAN products of several major companies likeRead More →

Decrypt files encrypted by Astralocker, Yashma ransomware for free. Gang publishes the keys

11 important vulnerabilities in Fortinet products FortiOS, FortiAnalyzer, FortiADC, FortiManager, FortiProxy, FortiClient, FortiDeceptor, FortiSwitch, FortiRecoder & FortiVoiceEnterprise

Critical OpenSSL vulnerability CVE-2022-2274 allows threat actors to remotely run code on your servers and encrypt them

Marriott hotel chain hacked 6th time. Most comfortable place for vacations or to get hacked?

Zero-Day vulnerability in Chrome, Edge, Brave, Opera, Vivaldi browsers allow taking control of your laptop or mobile

Critical SQL injection vulnerability in Django

Netherlands University paid €200,000 in Bitcoins to a ransomware gang & now got its money back, except now, the Bitcoin was worth €500,000

Israeli metro servers hacked by Iranian hackers

!HackerOne hacked! Bug bounty Platform becomes the victim of Insider Threat

SAN storage products of Dell, Fujitsu, HP, Huawei, IBM, Brocade and Lenovo affected by 9 critical vulnerabilities

TunnelCrack: Two serious vulnerabilities in VPNs discovered, had been dormant since 1996

How to easily hack TP-Link Archer AX21 Wi-Fi router

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]

FortiGate Firewalls Zero-Day Chaos: How Hackers Are Gaining Control of Firewalls Worldwide – Is Your Network at Risk?

How Hackers Can Hijack Your Device Without You Knowing – MediaTek’s RCE Flaw Explained

Hacking Active Directory: Learn How LDAPNightmare Flaw Shuts Down AD Services

PAN-OS DoS Flaw: Is Your Network at Risk? Learn How to Secure It Now!

Don’t Get Hacked! Sophos Firewall Vulnerabilities Explained

WinRAR and ZIP File Exploits: This ZIP File Hack Could Let Malware Bypass Your Antivirus

5 Techniques Hackers Use to Jailbreak ChatGPT, Gemini, and Copilot AI systems

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hacking Pagers to Explosions: Israel’s Covert Cyber-Physical Sabotage Operation Against Hezbollah!

Five Techniques for Bypassing Microsoft SmartScreen and Smart App Control (SAC) to Run Malware in Windows

How Millions of Phishing Emails were Sent from Trusted Domains: EchoSpoofing Explained

How to implement Principle of Least Privilege(Cloud Security) in AWS, Azure, and GCP cloud

The 11 Essential Falco Cloud Security Rules for Securing Containerized Applications at No Cost

Hack-Proof Your Cloud: The Step-by-Step Continuous Threat Exposure Management CTEM Strategy for AWS & AZURE

Web-Based PLC Malware: A New Technique to Hack Industrial Control Systems

Top 2 Malicious Python Packages You Must Avoid! Zebo-0.1.0 & Cometlogger-0.1

This Hacker Toolkit Can Breach Any Air-Gapped System – Here’s How It Works

Hackers’ Guide to Rogue VM Deployment: Lessons from the MITRE hack

Eternal Malware: CVE-2024-3400 Rootkits Persist Through Palo Alto Firewalls Updates and Resets

Major Python Infrastructure Breach – Over 170K Users Compromised. How Safe Is Your Code?

Cyber Security Channel

US Govt wants new label on secure IoT devices or wants to discourage use of Chinese IoT gadgets

24,649,096,027 (24.65 billion) account usernames and passwords have been leaked by cyber criminals till now in 2022

How Chinese APT hackers stole Lockheed Martin F-35 fighter plane to develop its own J-20 stealth fighter aircraft [VIDEO]