Tag: security
Another devious antivirus killer tool has been found – so make sure you’re protected
Crypto24 ransomware group was seen disabling AV protection before deploying the encryptor In some cases, it can even uninstall the AV programs A layered defense is the best approach to mitigate the threat Security researchers have found another antivirus-killing tool out there that hackers are using before dropping any additional…
Read More
Thousands of guests at Italian hotels hit in wide-ranging cyberattack – here’s what we know
A threat actor is selling a huge database on the dark web They claim it was taken from multiple hotels in Italy The country’s digital transformation agency confirmed the breach A cybercriminal has managed to break into the booking system used by numerous hotels in Italy and steal highly sensitive…
Read More
Hackers could take over millions of Dahua CCTV cameras because of two critical flaws – here’s how to stay safe
Dahua CCTV flaws identified by Bitdefender affect over 100 popular security camera models Vulnerabilities allow remote code execution without authentication over local or internet connections Company urges firmware updates and network isolation to prevent exploitation Researchers at Bitdefender have announced two critical vulnerabilities affecting a large number of Dahua smart…
Read More
Windows Entra IDs can be bypassed worryingly easily – here’s what we know
Experts warn FIDO is not supported on certain clients when accessing Entra ID This triggers a fallback login mechanism that can be picked up Mitigations should be put in place, researchers say FIDO-based authenticator apps are considered one of the strongest practical defenses against phishing and credential theft, but judging…
Read More
UK immigration system targeted by hackers – dangerous new phishing campaign hits Sponsorship Management System
Mimecast uncovers phishing campaign targeting the UK Home Office Accounts are being stolen through phishing emails and fake websites The fake sites are almost indistinguishable A phishing campaign has been uncovered by Mimecast researchers targeting the Home Office Sponsorship Management System (SMS). The main aim of the campaign appear to…
Read More
Watch where you click – adult sites are hiding clickjacking malware in images, and all for Facebook likes
Malicious SVG files are being weaponized to secretly like Facebook posts without user consent Attackers hide obfuscated JavaScript in images to bypass detection and execute dangerous social media hijacks Trojan.JS.Likejack silently boosts targeted Facebook posts by exploiting active sessions of unsuspecting victims Security researchers have uncovered dozens of adult websites…
Read More