The popular Screencastify Chrome extension for capturing and sharing videos from websites contains a cross-site scripting (XSS) vulnerability that could allow arbitrary websites to force users to unintentionally turn on their...
Author - Emma Davis
General Motors Users Hit by Credential Stuffing Attack
US automaker General Motors said it was the victim of a credential stuffing hack last month. As a result, information about some customers was disclosed, and hackers were able to exchange other people’s bonus points for...
Fail0verflow Announces PlayStation VR Hack
Members of the well-known hacking team Fail0verflow report that they have succeeded in hacking a PSVR (PlayStation VR) headset, discovering a series of vulnerabilities in it. In the end, they managed to dump all the hardware...
Hackers Are Actively Attacking Vulnerabilities in VMware Products
Experts have warned that alleged government hackers are actively exploiting two vulnerabilities in VMware (both rated 9.8 out of 10 on the CVSS scale) in the hope of infecting corporate networks with backdoors and other malware...
NVIDIA Released Update That Fixes Ten Vulnerabilities in Windows GPU Drivers
NVIDIA has released a security update for a wide range of graphics card models that resolves four critical and six moderate vulnerabilities in its GPU drivers. update fixes security issues in earlier versions of drivers that...
55-Year-Old Venezuelan Doctor Turned Out to Be the Author of Jigsaw and Thanos Ransomwares
U.S. authorities said Moises Luis Zagala Gonzalez, a 55-year-old cardiologist of French and Venezuelan citizenship living in Venezuela, created and rented out the notorious Jigsaw and Thanos ransomware ransomware to other hackers...
Hackers Attacked Critical Vulnerability in Zyxel Firewalls
Experts warn that hackers have already begun to exploit the critical vulnerability CVE-2022-30525 that affects firewalls and Zyxel VPN devices. exploitation allows unauthenticated hackers to remotely inject arbitrary commands and...
Qnap Recommends Disabling AFP Due to Critical Vulnerability
Qnap developers report they are working on updating of their QTS and QuTS operating systems, as Netatalk released patches last month that address seven vulnerabilities in their software at once, of which one vulnerability is...
US State Department Announces $10 Million Reward for Information on Sandworm Hackers
The US government has announced a reward of up to $10 million for information that will identify or locate the hackers of the Sandworm APT group, linked by Western experts to Russian intelligence agencies. Tuesday, April 26, the...
Bugs in ALAC audio codec threaten millions of Android devices
Check Point researchers have discovered that many Android devices running on Qualcomm and MediaTek chipsets are vulnerable to remote code execution due to a bugs in the Apple Lossless Audio Codec (ALAC) audio codec. Lossless...