A Wiper malware dubbed Meteor was found behind the cyberattack on Iranian railwa...

Google Play protect failed the Android security test once again. It ranked 15th ...

An RCE vulnerability in Moodle could be exploited to steal data and manipulate r...

Wiper

Meteor

Malware

Meteor, an emerging Wiper Malware, behind the cyberattack on Iranian Railway Sys...

A Wiper malware dubbed Meteor was found behind the cyberattack on Iranian railways, not ransomware. Threat actors abused the Group Policy and corrupted the master boot record... ...

30-Jul-2021

4 min read

Android

Google Play Protect

Malware

Google Play Protect fails the Android Security test yet again, ranking 15th (las...

Google Play protect failed the Android security test once again. It ranked 15th among other security apps detecting only 68.8% of malicious samples from the endurance test... ...

30-Jul-2021

3 min read

E-learning

Moodle

Vulnerability

Moodle, a popular e-learning platform detected with an RCE Vulnerability leading...

An RCE vulnerability in Moodle could be exploited to steal data and manipulate results. It is a PHP object injection vulnerability in Moodle’s Shibboleth authentication module... ...

30-Jul-2021

3 min read

Grief

DoppelPaymer

Ransomware

DoppelPaymer ransomware gang resurrected with a rebranded name Grief, aka Pay or...

Notorious DoppelPaymer gang is active again under a new name, Grief. Both threats share the same code, encryption algorithms, and distribution channel - the Dridex botnet......

29-Jul-2021

3 min read

UBEL

Oscorp

WebRTC

Oscorp transformed into UBEL: Android Credential Stealing malware Operational Ag...

A previously known malware, Oscorp, transformed into a new Android botnet UBEL capable of accessing SMS messages and making unauthorized phone calls using WebRTC protocol... ...

29-Jul-2021

2 min read

Healthcare

Express MRI

Databreach

Data Breach at a US-based Express MRI potentially exposed patient's medical info...

Express MRI suffered a data breach compromising patient's medical information. Names, addresses, and MRI scan information of several patients accessed......

28-Jul-2021

2 min read

XSS

Zimbra

SSRF

Zimbra vulnerabilities can enable unauthorized access to its webmail servers

Zimbra Webmail servers detected two chained vulnerabilities (XSS & SSRF) with JavaScript payloads. Emails and web sessions of victims could be compromised…...

28-Jul-2021

4 min read

Biometrics

IDEMIA

RCE

IDEMIA Biometric devices patched the vulnerability allowing threat actors to ope...

IDEMIA issued a security patch for an 'open remote doors' flaw. The vulnerability currently tracked as CVE-2021-35522 was rated 9.8/10 on the CVSSv3 severity scale......

27-Jul-2021

2 min read

Argo

Kubernetes

Monero

Kubernetes Clusters targeted via Argo Workflows to establish cryptocurrency mine...

Kubernetes installs targeted via Argo Workflows to deploy cryptocurrency miners. It enables threat actors to execute unauthorized code on the victim's device......

27-Jul-2021

3 min read

NTLM

PetitPotam

MS-EFSRPC

New PetiPotam Attack enables threat actors to obtain password hashes of Windows ...

PetiPotam, a new relay attack obtaining password hashes of Windows systems. It forces the domain controller to authenticate using the EfsRpcOpenFileRaw function... ...

27-Jul-2021

4 min read