A group of researchers from Texas A&M University, Temple University, the New Jersey Institute of Technology, Rutgers University and the University of Dayton in the USA have revealed a side channel attack method called EarSpy, which allows you to listen to the conversations of the target user through the speakers of the device.
After Microsoft implemented, starting in July 2022, the blocking of Visual Basic for Applications (VBA) macros by default for Office files downloaded from the Internet, many attackers have revised their tactics and are experimenting with alternative ways of infection to deploy malware.
The seventh largest cryptocurrency mining pool has officially announced an incident in which attackers stole about $3 million worth of crypto assets, including 700,000 belonging to its customers and 2.3 million worth of digital assets belonging to the company.
Biden signed a bill on defense policy worth $858 billion, expanding the possibilities of conducting cyber operations of the US government, The Record reports.
As it turned out, the authors of malware carried out a decent upgrade and added a wide range of features to bypass security software.
By the end of the year, everyone is trying to knock out all the cases, as well as extortionists. Ransom House has added the Republic of Vanuatu (an island nation located in the South Pacific Ocean) to its list of victims by stealing more than 3 TB of data from the government network.
A seller named Ryushi claims that the data was collected as a result of parsing using an already fixed API vulnerability, offering an exclusive sale for $200,000.
Apparently, New Year's Eve is not up to updates, especially when online stores on WordPress are actively selling gift cards through the popular plugin YITH WooCommerce Gift Cards Premium.
Let's go back to Zerobot, which was originally reported by Fortinet two weeks ago.
The Internet of Things (IoT) botnet is a self-replicating and self-propagating malware written in the Golang (Go) language and aimed at more than twelve architectures, with a wide range of distributed DDoS capabilities.
CVE-2022-40602 is associated with hard-coded credentials by analogy with similar problems in Telnet in D-Link DWR-921. He analyzed ELF, focusing on amit features that contained a loophole in D-Link routers.
Experts warn of a critical vulnerability of the Linux kernel of 10 points on the CVSS scale, which affects SMB servers and can lead to RCE.
The critical vulnerability of the Linux kernel makes SMB servers with ksmbd enabled (a Linux kernel server that implements the SMB3 protocol in the kernel space for file exchange over the network) vulnerable to hacking.
Microsoft, as usual, quietly fixed an important security vulnerability in the Azure service (ACS) after researchers from Mnemonic discovered that the problematic function allows attacks to bypass the network between tenants.
If you are interested in someone's data, but you can't find it, then you have outdated tools. Today we have prepared the best extensions and services that work in 2022:
Friends, today I would like to tell you about a great tool called 4nonimizer. This utility allows you to mask all your traffic from the provider by changing the IP address using one of the 19 VPN services that support OpenVPN technology.
In this post we will talk about services that can find a person by his nickname on the Internet. They all conduct a fully automatic search on various services, social networks, websites, forums, and so on.
Spain
Portugal
