npm packages caught serving TurkoRAT binaries that mimic NodeJS
Researchers have discovered multiple npm packages named after NodeJS libraries that even pack a Windows executable that resembles NodeJS but instead drops a sinister trojan. These…
Month: May 2023
IT Security FAQ 3: What password-managers are good? Why should you use one?
People tend to use the same password on many sites because it’s hard to remember multiple passwords in your head for every service you are…
HP rushes to fix bricked printers after faulty firmware update
HP is working to address a bad firmware update that has been bricking HP Office Jet printers worldwide since it was released earlier this month. While…
Cloned CapCut websites push information stealing malware
A new malware distribution campaign is underway impersonating the CapCut video editing tool to push various malware strains to unsuspecting victims. CapCut is ByteDance’s official…
Webinar: Learn How Hacker-Powered Pentests Give You More For Less
Penetration tests are a fundamental part of any security apparatus, but they’re traditionally seen as a one-and-done annual exercise. You hire a consultant, they run…
What is an SQL Injection and how do you fix it?
SQL injection flaws are very critical. A remote attacker will gain access to the underlying database. In the worst case scenario it allows the attacker…
The Journey to 100% Responsive Programs
Hackers, we hear you. Unresponsive programs are a drain on your time and your sanity. That’s why over the past few months we’ve been maniacally…
IT Security FAQ 4: Is two-factor authentication really necessary online? How do you activate it?
Activating 2-step verification or Two-factor authentication on a service means that you have to identify yourself twice in order to access your account – often…
Lawfully Hacked | HackerOne
The best way to prevent getting hacked is to try to get hacked. Paradoxical as this may sound, evidence shows it is true. The worst…
How To Improve Your WordPress Security
WordPress is a great Content Management System, it’s easy to use, maintain and there is an ocean of plugins and themes from developers worldwide. What…
H1-702 CTF Winners Announced! | HackerOne
Thanks to all the hackers who participated in the h1-702 2018 CTF! For the first time ever, we had both web and mobile challenges. Six…
A TikTok ‘Car Theft’ Challenge Is Costing Hyundai $200 Million
But wait, there’s more. Each week we round up the security stories we didn’t cover in depth ourselves. Click on the headlines to read the…