Researchers from Check Point have discovered more than 400 vulnerabilities in Qualcomm Snapdragon chips, which are installed on approximately 40% of smartphones in the world. Using these vulnerabilities, attackers can: turn your...
Security
Firefox has fixed the “evil cursor” problem
Firefox developers have fixed an “evil cursor” problem exploited by fake tech support scammers. Due to this bug, attackers did not allow victims easily leave malicious sites. The vulnerability was fixed in Firefox 79...
Microsoft spent twice more than Google on bug bounty programs last year
Microsoft reported on its 15 bug bounty programs last year. It turned out that in 2019 company paid the researchers a total of $13,700,000 for the discovered vulnerabilities, that is, three times more than a year earlier...
Hack group Maze has published over 70 GB of data stolen from LG and Xerox
Operators of the Maze ransomware kept their promise: without receiving a ransom from LG Electronics and Xerox, the attackers published on their website the data stolen from the companies. Thus, the hackers revealed 50.2 GB of...
Zoom bug allowed to matching a password for conferences
SearchPilot specialist Tom Anthony discovered that a bug in Zoom allowed brute forcing a password to someone else’s conference. fact is that since April of this year, Zoom protects all conferences with a mandatory six-digit...
Doki malware exploits Dogecoin API to communicate with C&C servers
Intezer Labs discovered Doki, new Linux malware, targeting poorly secured Docker installations. According to their report, the Doki malware exploits the Dogecoin API to communicate with C&C servers. say that the Ngrok group...
CouchSurfing investigates data leak of 17 million users
The popular service CouchSurfing, with the help of which you can find accommodation while traveling (or provide your accommodation to other users), “leaked” the data of 17,000,000 users. The database is sold on hacker...
“Meowing” attack completely destroyed more than 1000 databases
The head of Comparitech and well-known information security expert Bob Diachenko discovered a strange wave of attacks on unprotected installations of Elasticsearch and MongoDB. He said that the so-called “meowing” attack...