ACME TLS-SNI-01 shared hosting exploit using Let’s Encrypt
On Tuesday, January 9, Detectify’s security advisor Frans Rosén discovered and reported a security issue in in TLS-SNI-01 validation in Let’s Encrypt. Exploiting the issue…
Month: May 2023
Cisco Phone Adapters Flaw Let Attackers Execute Arbitrary Code
Cisco SPA112 2-Port Phone Adapters have been reported to be vulnerable to arbitrary code execution via a malicious firmware upgrade. Cisco has classified this vulnerability…
Apple Data Transfer Faces Breach Threat
Researchers have raised concerns about the security of Apple data transfer process. Hackers may attempt to intercept and analyze network packets containing sensitive information related…
Alt News Cyber Attack: Indian Fact-Checking Website Targeted
An update about Alt News cyber attack has put Indian media again on cybersecurity news. Threat actor group named “Mysterious Team Bangladesh” has listed the…
Live Hacking Goes Virtual | HackerOne
At a time when security must be managed remotely, HackerOne and Verizon Media called on the naturally remote and global community of skilled hackers and…
GDPR security from an ethical hacker’s perspective
Discussions about the GDPR (General Data Protection Regulation) often touch upon security, a topic that few people know as well as ethical hackers. What can…
Universal Business Components (UBC) – Daniel Miessler
Seems like everyone, including me, is talking about how AI is going to take over everything. Cool, but what does that mean exactly? And how…
CERT-UA Warns of SmokeLoader and RoarBAT Malware Attacks Against Ukraine
May 08, 2023Ravie LakshmananCyber Attack / Data Safety An ongoing phishing campaign with invoice-themed lures is being used to distribute the SmokeLoader malware in the…
Slack Increases Bounty Minimums For the Next 90 Days
This blog post was contributed by Slack Staff Technical Program Manager Branden Jordan. Given the success of Slack’s previous promotion and their continued focus on…
How 5G network is immune to Cyber Attacks
It is not accurate to say that 5G networks are completely immune to cyber attacks. Like any other network, 5G networks are vulnerable to various…
The WhatsApp of secure computation
A key term when discussing encryption these days is end-to-end (E2E) encryption. The idea with E2E encryption is that data is kept confidential between the…
The National Board Of Revenue Cyber Attack Claimed By KCX
Kerala Cyber Xtractors, a hacking group claiming to be from India, posted names of targets from Pakistan and Dhaka, Bangladesh. Besides claiming the National Board…