-
Dec 2, 2019
This week i was very busy at work, so i wasn't able to collect a lot of news. However, the few news i've read are really juicy stuff: for example, E.T. is back! So, let's talk about Mixcloud, Signal, unsecure… read more »
-
Nov 29, 2019
Despite in the last months the infection number is decreasing (source), finding yourself with personal or corporate files blocked by a ransomware attack is a widespread drama. But luckily there are little-known people who work to get out of trouble… read more »
-
Nov 28, 2019
In last years, the way that operating systems are developed, deployed, and maintained evolved quickly.Similarly, the skillsets of memory analysts and their preferred work flows have changed to meet a world with increasingly large volumes of complex data. In order… read more »
-
Nov 27, 2019
Cloudflare released a new open source vulnerability scanner that uses Nmap results to generate more complex vulnerability reports. The tool, called Flan Scan, is a Python script developed in order to fill-the-gap between “industry standard” scanners and Cloudflare's compliance scans… read more »
-
Nov 26, 2019
Researchers from Paloalto Networks' Unit42 discovered an issue in the implementation of the Docker cp command that can lead to full container escape if exploited by an attacker. This would allow an attacker full root control of the host and… read more »
-
Nov 25, 2019
Sure, the main event of this week was the launch of Tesla Cybertruck, but I've also other interesting topics, for example Wordpress sites under attack, Roboto Linux botnets, Mac malware related to Lazarus and Nextcry, a ransonware that targets Nextcloud… read more »
-
Nov 22, 2019
Researchers from Checkmarx Security Research Team has discovered and disclosed a vulnerability [2] in Android camera app that may allows a malicious app to bypass camera access permissions. How it works? Android camera applications usually store their photos and videos… read more »
-
Nov 21, 2019
Update your client ASAP! In October, a double-free vulnerability was disclosed in WhatsApp messenger: this flaw could be triggered through the sending of a crafted .GIF file and, if exploited, could result in the remote execution of code. The vulnerability… read more »
-
Nov 20, 2019
Researchers at Purdue College and University of Iowa have revealed a paper detailing how the baseband processors of a large number of common Android smartphones may be compromised using malicious USB and Bluetooth accessories. The research team is, for the… read more »
-
Nov 19, 2019
Researchers by security firm Kryptowire have discovered and revealed 146 vulnerabilities in various version of Android. The vulnerabilities were found by scanning the phones of 29 different Android models using a set of custom automated tools [1]. https://www.youtube.com/watch?v=8GK9RiyKRXU The discovery… read more »
-
Nov 18, 2019
The week kicked off with the launch of Disney+, but also other things happened! So let's not waste time, and let's start to talk about WhatsApp, ZoneAlarm, Telegram, Python, Java and JQuery, Further, some news about Elon Musk's Neuralink, a… read more »
-
Nov 15, 2019
The e-mail provider Tutanota advertises to be the "world's most secure e-mail service". The company offers encrypted e-mail communication and claims to have six million customers relying on this security promise. However, on October 2, 2018, the district court of… read more »
-
Nov 15, 2019
Just a short post to report an interesting phenomenon! Today i've been targeted by an unusual phishing attempt on my Facebook account: I've received a notification sayng that a account named Fəcebook Servıce 05 (pay attention to ə character) the… read more »
-
Nov 14, 2019
Security researchers at Purdue University and the University of Iowa have found new vulnerabilities that can be used to track a victim’s real-time location, spoof emergency alerts or silently disconnect a phone from the 5G network. Despite some net neutrality… read more »
-
Nov 13, 2019
UPDATE 2019/11/14: Facebook released version 247.0 that fixes the glitch. Joshua Maddux published on his Twitter account a video captured from an iPhone running iOS 13.2.2: in this video, a glitch in the interface of Facebook App reveals that the… read more »
-
Nov 12, 2019
Some days ago, a group of servers belonging to multiple VPN providers has been breached.After this events, many people have expressed doubts about the real usefulness of VPNs. In my opinion, VPNs are great privacy tools, but some providers tryes… read more »
-
Nov 11, 2019
Over the past seven days, i've read a lot of interesting news.So, today let's talk about the BerlusconiMarket shutdown, LulSecITA and FifthOfNovember, ransomware attack on a hospital, GoLang birthday, Apple vs. Electron, EA and VisualStudio, GraphQL, strange naming policies for… read more »
-
Nov 8, 2019
FireEye reports on a Chinese-sponsored espionage campaign to eavesdrop on text messages, violating telco servers: yet another example that demonstrates why end-to-end message encryption is so important. A new malware, dubbed “Messagetap”, developed by the Chinese APT41 [2] hacker group… read more »
-
Nov 7, 2019
Security researchers from Akamai published interesting details about the Web Services Dynamic Discovery (WS-Discovery) protocol, which they say can be abused to launch massive DDoS attacks. What is WS-Discovery? WS-Discovery is a multicast protocol that can be used on local networks… read more »
-
Nov 6, 2019
Researchers from the University of Michigan and the University of Electro-Communications in Tokyo, demonstrated that is possible to hack smart voice assistants like Siri, Alexa and Google using a lasers beam to send them inaudible commands. This new technique, dubbed… read more »