CISA experts warned that a PoC exploit for the BrakTooth problem, which threatens millions of devices, has become public. me remind you that the BrakTooth name hides a whole set of 16 vulnerabilities that affect the Bluetooth...
Author - Emma Davis
Hackers laundered money through Twitch: at least $10 million in total
Studying the data published by hackers after the recent compromise of Twitch, journalists discovered a scheme according to which cybercriminals laundered money through the service. In fact, at least $10 million passed through it...
Hacking group BlackShadow hacked Israeli hoster and blackmails its clients
The hacker group BlackShadow attacked the Israeli hosting provider Cyberserve, stealing client databases and disrupting the company’s services. hoster is used by various organizations in the country, including local radio...
Facebook Ditches Facial Recognition and Will Delete Billion Users’ Data
Facebook announced that it is ditching the Face Recognition system on its platform and will remove the corresponding profiles previously created for a billion people. Recognition analyzed the photos taken by tagged users and the...
OptinMonster WordPress plugin lets to inject code into vulnerable sites
The popular OptinMonster WordPress plugin, installed over a million times, had a serious code injection vulnerability. The problem allowed an unauthorized party to gain access to the API, which ultimately led to the disclosure of...
Cyberattack disrupted operation of gas stations across Iran
Due to some kind of “software collapse” (which experts consider to be a cyberattack), gas stations across Iran were disrupted this week. In addition, screens at petrol terminals and billboards with gas prices stopped...
151 Android Apps Subscribed Users to Paid Services
Avast experts discovered a large-scale fraudulent campaign that has been active since May 2021, involving 151 Android apps, with a total of about 10.5 million downloads. All of these apps were used to subscribe users to premium...
Attackers hacked the UA-Parser-JS npm package, which is downloaded millions of times weekly
The hackers broke into the popular UA-Parser-JS npm (JavaScript library) and injected malicious code that downloaded and installed a password stealing tool and cryptocurrency miner on users’ systems. is an extremely popular...
CISA: GPS devices may behave unpredictably in the coming days due to a bug in the GPS Daemon
Experts from the Department of Homeland Security’s Cybersecurity and Infrastructure Protection Agency (DHS CISA) warned that GPS devices could run into problems over the coming weekend due to a bug in the GPS Daemon. This...
SmashEx attack compromises Intel SGX enclaves
Scientists from universities in China, Singapore and Switzerland talked about a new SmashEx attack that helps to compromise Intel SGX enclaves and steal sensitive data from the most secure area of the Intel processor. me remind...