pentagon hack

‘Hack the Pentagon’ Participants Discovered 138 Security Flaws with Five Government Websites

On Friday, the Defense Secretary Ash Carter reported that the US government invited hackers as part of a pilot program to find flaws with five Pentagon websites discovered 138 security vulnerabilities. According...
cryptxxx turns to neutrino

CryptXXX Ransomware Dumps Angler in Favor of Neutrino

Right after noticing the Necurs botnet, which used to send out malicious email blasts delivering Locky and Dridex, the of security experts registered another drop in Angler exploit kits and other...
flash zero day

Windows DDE Protocol Abused by Latest Flash 0-day

Last week, the latest Adobe patched a zero-day vulnerability (CVE-2016-4171) was used in targeted cyber-espionage attacks. According to the Russian security vendor Kaspersky Lab, the vulnerability abused the Windows DDE protocol...
adobe patch

Adobe Patches Latest Flash Zero-Day Vulnerability

Adobe has patched the Flash Player zero-day vulnerability exploited by APT group. This is a relatively new advanced persistent threat, dubbed “ScarCruft”, in attacks aimed at high-profile targets Alongside the release of...
uk

A UK Council Fell Victim to Ransomware 13 Times in a Year

The endpoint security software company Avecto reported that at least 30% of the councils in the UK have been victims of a ransomware attack The company's report was based on a freedom...
nemucod malware

Nemucod Becomes Stealthier, Evades Most Anti-Viruses

During the past few months, Nemucod malware has suffered some improvements which have made it even harder to detect while it's performing its activity Nemucod is a trojan which falls in the...
badtunnel

Network Traffic of All Windows Systems is Vulnerable to Hijacking Due to BadTunnel Bug

Founder of the Tencent Xuanwu Lab, Yang Yu, has collaborated with Microsoft to patch a major security flaw. A bug in the implementation of the NetBIOS protocol affected all versions of...
javascript

New JavaScript Redirect Takes Phishing to a New Level

If cyber criminals get smart about their mode of operation, hovering links to check their actual location may soon turn out be a useless security tip Normally, phishing emails contain links which...
ole malware

Microsoft OLE Allows Embedding Malicious Code in Office Documents

Developers of malware have discovered a macro-like infection method which abuses Microsoft Object Linking and Embedding (OLE) system with malicious scripts Microsoft OLE system is a proprietary Microsoft technology that is used...
paypal

New Phishing Attack Harvests Paypal Credentials

My Online Security has reported of a new phishing scheme, directed at PayPal users. The scam involves misleading users into filling in their login details. The data is recorded, allowing hackers...