flash zero day

Windows DDE Protocol Abused by Latest Flash 0-day

Last week, the latest Adobe patched a zero-day vulnerability (CVE-2016-4171) was used in targeted cyber-espionage attacks. According to the Russian security vendor Kaspersky Lab, the vulnerability abused the Windows DDE protocol...
adobe patch

Adobe Patches Latest Flash Zero-Day Vulnerability

Adobe has patched the Flash Player zero-day vulnerability exploited by APT group. This is a relatively new advanced persistent threat, dubbed “ScarCruft”, in attacks aimed at high-profile targets Alongside the release of...
uk

A UK Council Fell Victim to Ransomware 13 Times in a Year

The endpoint security software company Avecto reported that at least 30% of the councils in the UK have been victims of a ransomware attack The company's report was based on a freedom...
nemucod malware

Nemucod Becomes Stealthier, Evades Most Anti-Viruses

During the past few months, Nemucod malware has suffered some improvements which have made it even harder to detect while it's performing its activity Nemucod is a trojan which falls in the...
badtunnel

Network Traffic of All Windows Systems is Vulnerable to Hijacking Due to BadTunnel Bug

Founder of the Tencent Xuanwu Lab, Yang Yu, has collaborated with Microsoft to patch a major security flaw. A bug in the implementation of the NetBIOS protocol affected all versions of...
javascript

New JavaScript Redirect Takes Phishing to a New Level

If cyber criminals get smart about their mode of operation, hovering links to check their actual location may soon turn out be a useless security tip Normally, phishing emails contain links which...
ole malware

Microsoft OLE Allows Embedding Malicious Code in Office Documents

Developers of malware have discovered a macro-like infection method which abuses Microsoft Object Linking and Embedding (OLE) system with malicious scripts Microsoft OLE system is a proprietary Microsoft technology that is used...
paypal

New Phishing Attack Harvests Paypal Credentials

My Online Security has reported of a new phishing scheme, directed at PayPal users. The scam involves misleading users into filling in their login details. The data is recorded, allowing hackers...
verizon hacked

Verizon’s Webmail Flaw Allowed Hackers to Collect Users’ Emails

A serious vulnerability was recently discovered in the email portal of telecom company Verizon. The flaw could have allowed hackers to forward users' emails to an arbitrary address. The targeted users...
mofang

Mofang Cyber Gang Attacks via ShimRat Malware

Mofang, which means "to imitate" in Chinese, is a recently found cyber-espionage group which has targeted many countries worldwide. The main malware of this group is called ShimRat and it was...