255
79 Views
Visibility into an environment attack surface is the fundamental cornerstone to sound security decision making.

However, the standard process of 3rd party threat assessment as practiced today is both time consuming and expensive.

Cynet changes the rules of the game with a free threat assessment offering based on more than 72 hours of data collection and enabling organizations to benchmark
253
153 Views
In a world that's growing increasingly digital, Magecart attacks have emerged as a key cybersecurity threat to e-commerce sites.

Magecart, which is in the news a lot lately, is an umbrella term given to 12 different cyber criminal groups that are specialized in secretly implanting a special piece of code on compromised e-commerce sites with an intent to steal payment card details of their
252
39 Views
Drupal, the popular open-source content management system, has released security updates to address multiple "moderately critical" vulnerabilities in Drupal Core that could allow remote attackers to compromise the security of hundreds of thousands of websites.

According to the advisories published today by the Drupal developers, all security vulnerabilities Drupal patched this month reside in
251
92 Views
Good morning readers, it's patch Tuesday again—the day of the month when Adobe and Microsoft release security patches for their software.

Adobe just released its monthly security updates to address a total of 40 security vulnerabilities in several of its products, including Flash Player, Adobe Acrobat and Reader, and Shockwave Player.

According to an advisory, Adobe Acrobat and Reader
248
51 Views
The Apache Software Foundation (ASF) has released new versions of its Tomcat application server to address an important security vulnerability that could allow a remote attacker to execute malicious code and take control of an affected server.

Developed by ASF, Apache Tomcat is an open source web server and servlet system, which uses several Java EE specifications such as Java Servlet,
247
0 View

logicfish Security Editorial   Discuss    Share
244
0 View

logicfish Security Editorial   Discuss    Share
242
61 Views
Matrix—the organization behind an open source project that offers a protocol for secure and decentralized real-time communication—has suffered a massive cyber attack after unknown attackers gained access to the servers hosting its official website and data.

Hackers defaced Matrix's website, and also stole unencrypted private messages, password hashes, access tokens, as well as GPG keys the
238
42 Views
An unprotected database belonging to JustDial, India's largest local search service, is leaking personally identifiable information of its every customer in real-time who accessed the service via its website, mobile app, or even by calling on its fancy "88888 88888" customer care number, The Hacker News has learned and independently verified.

Founded over two decades ago, JustDial (JD) is the
234
96 Views
If you have a "private" blog with WordPress.com and are using its official iOS app to create or edit posts and pages, the secret authentication token for your admin account might have accidentally been leaked to third-party websites.

WordPress has recently patched a severe vulnerability in its iOS application that apparently leaked secret authorization tokens for users whose blogs were using
231
29 Views
A cybersecurity professional today demonstrated a long-known unpatched weakness in Microsoft's Azure cloud service by exploiting it to take control over Windows Live Tiles, one of the key features Microsoft built into Windows 8 operating system.

Introduced in Windows 8, the Live tiles feature was designed to display content and notifications on the Start screen, allowing users to continuously
227
60 Views
Yes, you read that right!

Russia has fined Facebook with 3,000 rubles, roughly $47, for not complying with the country's controversial Data Localization law.

It's bizarre and unbelievable, but true.
<!-- adsense -->
In December last year, Russian Internet watchdog Roskomnadzor sent notifications to Twitter and Facebook asking them to provide information about the location of servers that
226
81 Views
What could be worse than this, if the software that's meant to protect your devices leave backdoors open for hackers or turn into malware?

Researchers today revealed that a security app that comes pre-installed on more than 150 million devices manufactured by Xiaomi, China's biggest and world's 4th largest smartphone company, was suffering from multiple issues that could have allowed remote
221
72 Views
The Georgia Institute of Technology, well known as Georgia Tech, has confirmed a data breach that has exposed personal information of 1.3 million current and former faculty members, students, staff and student applicants.

In a brief note published Tuesday, Georgia Tech says an unknown outside entity gained "unauthorized access" to its web application and accessed the University’s central
213
75 Views
Cybersecurity researchers yesterday unveiled the existence of a highly sophisticated spyware framework that has been in operation for at least last 5 years—but remained undetected until recently.

Dubbed TajMahal by researchers at Kaspersky Lab, the APT framework is a high-tech modular-based malware toolkit that not only supports a vast number of malicious plugins for distinct espionage
206
115 Views

WikiLeaks founder Julian Assange has been arrested at the Ecuadorian Embassy in London—that's almost seven years after he took refuge in the embassy to avoid extradition to Sweden over a sexual assault case.



According to a short note released by London's Metropolitan Police Service, Assange was arrested immediately after the Ecuadorian government today withdraws his political asylum.



Assange


Read More
pe; picture-in-picture" allowfullscreen>
201
38 Views
Microsoft today finally released the first new reborn version of its Edge browser that the company rebuilds from scratch using Chromium engine, the same open-source web rendering engine that powers Google's Chrome browser.

However, the Chromium-based Edge browser builds haven't yet entered the stable or even the beta release; instead, Microsoft has released two testing-purpose preview builds
200
44 Views

Once again, a spy app exposed sensitive and private data on an unsecured server. The Android spy app named ‘MobiiSpy’



Android Spy App ‘MobiiSpy’ Exposed Private Photos And Recordings Publicly on Latest Hacking News.

200
57 Views
A cybersecurity researcher at Tenable has discovered multiple security vulnerabilities in Verizon Fios Quantum Gateway Wi-Fi routers that could allow remote attackers to take complete control over the affected routers, exposing every other device connected to it.

Currently used by millions of consumers in the United States, Verizon Fios Quantum Gateway Wi-Fi routers have been found vulnerable
200
49 Views
Multiple pre-auth remote code exec holes need pasting over, enterprise IT giant warns

Oracle today issued its quarterly security updates, patching a total of 296 vulnerabilities across its massive line of enterprise software.…

200
143 Views
Norks trigger Uncle Sam's alarm with attack variant

The Lazarus Group hacking operation, thought to be controlled by the North Korean government, has a new malware toy to pitch at potential targets and the US is getting worried about it.…

200
61 Views
Microsoft today released its April 2019 software updates to address a total of 74 CVE-listed vulnerabilities in its Windows operating systems and other products, 13 of which are rated critical and rest are rated Important in severity.

April 2019 security updates address flaws in Windows OS, Internet Explorer, Edge, MS Office, and MS Office Services and Web Apps, ChakraCore, Exchange Server, .
200
82 Views
You satmad, bro?

Misinformation coming from Russia isn't merely an internet phenomenon; it also affects navigation systems.…

197
81 Views
App devs fail to lock down their databases, yet again

The details of millions of Facebook accounts have been left ripe for harvesting thanks to a pair of careless developers.…

197
64 Views
Mark J Cox, one of the founding members of the Apache Software Foundation and the OpenSSL project, today posted a tweet warning users about a recently discovered important flaw in Apache HTTP Server software.

The Apache web server is one of the most popular, widely used open-source web servers in the world that powers almost 40 percent of the whole Internet.

The vulnerability, identified as
197
88 Views
When Irish eyes are prying

A family staying at an Airbnb rental in Ireland made an unsettling discovery when they found their unit had a hidden camera livestreaming their stay.…

197
76 Views

Another day, another breach. Allegedly, AeroGrow – an indoor gardening systems vendor – faced a data breach due to malware.



AeroGrow Suffered Data Breach Following Malware Attack on Latest Hacking News.

196
67 Views

Baldr malware developed for long-term use, Xiaomi mobile browser vulnerability difficult to patch, FIN6 moves from card skimming to ransomware on episode 258 of our daily cybersecurity podcast.



Latest Hacking News Podcast #258 on Latest Hacking News.

196
101 Views

Sn1per is an automated scanner that can be used during a penetration test to enumerate and scan for vulnerabilities. Let’s



Sn1per – An Automated Pentesting Framework on Latest Hacking News.

196
39 Views
Reported to be stepping stone for attacks on customers

Indian IT outsourcing behemoth Wipro admitted this morning to falling victim to a "sophisticated" phishing attack.…

195
106 Views

Today’s Agenda is as follows: Exodus Malware Bypasses Google Play Store Security Chinese Telecom Equipment and Electronics Manufacturer Suffers Security



Latest Hacking News Podcast #251 on Latest Hacking News.

195
59 Views
Proposed bill would bring immediate sanctions for tampering with democracy

The US Senate is mulling a bill that would call for sanctions on any country caught trying to hack or influence American elections.…

Newsletter
Sign up for our newsletter


Unsubscribe at Anytime | Privacy Policy
Welcome, DisDroidians

Sign up and post your links!

sponsored
Most Viewed Stories
Latest Comments
Statistics
Disdroid.co.uk - ranking and value