US-CERT issued an alert on two malware associated with North Korea-linked APT Hidden Cobra

US-CERT issued an alert on two malware associated with North Korea-linked APT Hidden Cobra The Department of Homeland Security (DHS) and th...

Abusing Interactive Voice Response systems – Legacy Telecom [CVE-2018-11518]

Abusing Interactive Voice Response systems – Legacy Telecom [CVE-2018-11518] A vulnerability tracked as CVE-2018-11518 could be exploited b...

Hacker stole $1.35 million from cryptocurrency startup Taylor

Hacker stole $1.35 million from cryptocurrency startup Taylor Hacker stole $1.3 million from cryptocurrency startup Taylor, the development...

Electron Windows Protocol Handler MITM/RCE (bypass for CVE-2018-1000006 fix)

Electron Windows Protocol Handler MITM/RCE (bypass for CVE-2018-1000006 fix) As part of an engagement for one of our clients, we analyzed t...

The ZipperDown Vulnerability could affect roughly 10% of iOS Apps

The ZipperDown Vulnerability could affect roughly 10% of iOS Apps Experts from Chinese jailbreakers Pangu Lab, have recently discovered the...

Tech giants are all working on new Spectre and Meltdown attacks, so-called variant 3 and variant 4

Tech giants are all working on new Spectre and Meltdown attacks, so-called variant 3 and variant 4 Yesterday AMD, ARM, IBM, Intel, Microsof...

Google awarded a young expert a total of $36,337 for an RCE in the Google App Engine

Google awarded a young expert a total of $36,337 for an RCE in the Google App Engine Google awarded the 18-year-old student Ezequiel Pereir...

Operation Hotel – Ecuador spent millions on spy operation for Julian Assange

Operation Hotel – Ecuador spent millions on spy operation for Julian Assange According to The Guardian newspaper, Ecuador spent millions on...

Researchers disclosed details of EFAIL attacks on in PGP and S/MIME tools researchers. Experts believe claims...

Researchers disclosed details of EFAIL attacks on in PGP and S/MIME tools researchers. Experts believe claims... EFAIL attacks – Researcher...

May 2018 Android Security Bulletin includes additional Meltdown fix

May 2018 Android Security Bulletin includes additional Meltdown fix Google releases additional Meltdown mitigations for Android as part of ...

Secret Conversation – Twitter is testing End-to-End Encryption for direct messages

Secret Conversation – Twitter is testing End-to-End Encryption for direct messages A security researcher found evidence that Twitter is tes...

Reading the 2017 Internet Crime Complaint Center (IC3) report

Reading the 2017 Internet Crime Complaint Center (IC3) report The FBI’s Internal Crime Complaint Center (IC3) released the FBI 2017 Interne...

Google Syzkaller fuzzer allowed to discover several flaws in Linux USB Subsystem

Google Syzkaller fuzzer allowed to discover several flaws in Linux USB Subsystem The Google researcher Andrey Konovalov discovered several ...

Security Affairs newsletter Round 161 – News of the week

Security Affairs newsletter Round 161 – News of the week A new round of the weekly SecurityAffairs newsletter arrived! The best news of the...

Security Affairs newsletter Round 161 – News of the week

Security Affairs newsletter Round 161 – News of the week A new round of the weekly SecurityAffairs newsletter arrived! The best news of the...

GLitch attack, Rowhammer attack against Android smartphones now leverages GPU

GLitch attack, Rowhammer attack against Android smartphones now leverages GPU A team of experts has devised the GLitch attack technique tha...