Of sharks, surveillance, and spied on emails
This week on Lock and Code, we speak with Matthew Guargilia about the NSA’s broad powers to sweep up Americans’...
Read more →News Archive
View All →
Cache Me If You Can: Messing with Web Caching
In this talk, Louis covers 3 web cache related attacks: cache deception, edge side includes, and cache poisoning. Note: this...
Read more →
Anonymous Sudan claims to have stolen 30 million Microsoft’s customer accountsSecurity Affairs
Microsoft denied the data breach after the collective of hacktivists known as Anonymous Sudan claimed to have hacked the company....
Read more →
Police Bust International Phone Scam Gang Targeting Elderly
The alleged ringleader of the phone scam gang, which preyed on elderly individuals through fraudulent phone calls, has also been...
Read more →
Chinese APT uses HTML smuggling to target European Ministries and embassiesSecurity Affairs
China-linked APT group was spotted using HTML smuggling in attacks aimed at Foreign Affairs ministries and embassies in Europe. A...
Read more →
Microsoft denies data breach, theft of 30 million customer accounts
Microsoft has denied the claims of the so-called hacktivists “Anonymous Sudan” that they breached the company’s servers and stole credentials...
Read more →
New Meduza Malware Targets Wallets, Passwords and Browsers on Windows
Meduza authors are pushing the malware as a subscription-based service, offering plans for 1-month, 3-month, and lifetime access. Crimeware-as-a-Service (CaaS)...
Read more →
What is post-quantum cryptography and why is it important?
[ This article was originally published here ] Whether you work in the tech field or not, it’s likely that...
Read more →
Patch Diffing CVE-2023-28121 to Compromise a WooCommerce – RCE Security
Back in March 2023, I noticed an interesting security advisory that was published by Wordfence about a critical “Authentication Bypass...
Read more →
Hackers target European government entities in SmugX campaign
A phishing campaign that security researchers named SmugX and attributed to a Chinese threat actor has been targeting embassies and...
Read more →
With new aerospace Cybersecurity rules set to land – What’s the standard for operators?
[ This article was originally published here ] The content of this post is solely the responsibility of the author. ...
Read more →
Trellix ESM Flaw Let Attackers Execute arbitrary commands
According to recent reports, there have been two serious vulnerabilities found in the Trellis SIEM. These vulnerabilities could potentially allow...
Read more →