Ebay is port scanning visitors to their website – and they aren’t the only ones – nem.ec

Ebay is port scanning visitors to their website – and they aren’t the only ones – nem.ec

Ebay – and others – have been caught deploying port scanning on your machine when you visit their website. We’re...

Zero-day in Sign in with Apple

Zero-day in Sign in with Apple

Apply awarded a 100K bug bounty for a relatively simple – but admittedly high impact – bug. This researcher got...

The problem with Zoom

The problem with Zoom

The rise of Zoom is undeniable in today’s climate. Work, school, communities, etc. are all adopting Zoom and other video...

Microsoft accidentally reveals Wormable Win SMBv3 CVE-2020-0796 FlawSecurity Affairs

Microsoft accidentally reveals Wormable Win SMBv3 CVE-2020-0796 FlawSecurity Affairs

A severe vulnerability is discovered in one of the core components of Windows. Microsoft has since released an urgent out-of-band...

Critical Security Flaw Found in WhatsApp Desktop Platform Allowing Cybercriminals Read From The File System Access

Critical Security Flaw Found in WhatsApp Desktop Platform Allowing Cybercriminals Read From The File System Access

This vulnerability affects WhatsApp desktop – which I didn’t know exists – for Mac and Windows. It does so by...

Inside ‘Evil Corp,’ a $100M Cybercrime Menace — Krebs on Security

Inside ‘Evil Corp,’ a $100M Cybercrime Menace — Krebs on Security

An inside look into the workings of a cybercrime organization. For an organization that purportedly develops sophisticated malware to steal...

How Attackers Used Look-Alike Domains to Steal $1 Million From a Chinese VC

How Attackers Used Look-Alike Domains to Steal $1 Million From a Chinese VC

This is a simple but brilliantly executed heist. Pretend to be the sender by sending from a similar looking domain....

1.2 billion people exposed in data leak includes personal info, LinkedIN, Facebook

1.2 billion people exposed in data leak includes personal info, LinkedIN, Facebook

Another data leak, this time involving, let’s see, 1.2 billion people. This was found by security researchers in an unsecured...

Indian nuclear power plant’s network was hacked, officials confirm

Indian nuclear power plant’s network was hacked, officials confirm

Worryingly, attacks on critical infrastructure is becoming more and more common. After initial denial, company says report of “malware in...

Samy Kamkar: PoisonTap – exploiting locked computers over USB

Samy Kamkar: PoisonTap – exploiting locked computers over USB

This is brilliant and scary at the same time. I’m always impressed by what Samy can think of. This particular...