Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack

Peripheral devices with unsigned firmware can expose Windows and Linux machines to hack, warn experts from firmware security firm Eclypsium. Experts at firmware security firm Eclypsium have discovered that many peripheral device manufacturers have not implemented security checks to prevent the installation of firmware from an untrusted source. An attacker could exploit the lack of […]

The post Unsigned Firmware running on peripherals could expose Windows, Linux systems to hack appeared first on Security Affairs.

February 18, 2020
Read More >>

CVE-2019-0604 SharePoint Remote code execution (RCE) vulnerability

A security expert found a flaw in SharePoint that could be exploited to remotely execute arbitrary code by sending a specially crafted SharePoint application package. Summary:A few days ago I saw a post from Alienvault which says attackers are still exploiting SharePoint vulnerability to attack Middle East government organization. Having said that I found Income Tax Department […]

The post CVE-2019-0604 SharePoint Remote code execution (RCE) vulnerability appeared first on Security Affairs.

February 18, 2020
Read More >>

Flaw in WordPress ThemeGrill Demo Importer WordPress theme plugin expose 200K+ sites to hack

A serious flaw in the ThemeGrill Demo Importer WordPress theme plugin with over 200,000 active installs can be exploited to wipe sites and gain admin access to the site. Experts from the security firm WebARX have discovered a serious flaw in the WordPress theme plugin ThemeGrill Demo Importer with over 200,000 active installs. The vulnerability […]

The post Flaw in WordPress ThemeGrill Demo Importer WordPress theme plugin expose 200K+ sites to hack appeared first on Security Affairs.

February 18, 2020
Read More >>

Iran Threatens to Attack America with Animated Video – Breaking Israel News #BreakingIsraelNews #BreakingNews #Trump2020 #AP #TopStories #AmericaFirst #tech #news #pft #MAGA #NBC #proguns #guns #Bibi #Gaza #Israel #Israeli #IStandWithIsrael #Jerusalem #MaryPatriotNews #Netanyahu #Zion [Video]

On February 11, 2020, Fars News Agency (Iran) published an animation titled “Harsh Revenge” that was produced by the Research & Production Center of TV & Animation at the behest of the Islamic Development Organization, which is under the auspices of Iranian Supreme Leader Ayatollah Ali Khamenei. The animation shows a U.S. drone locking in and firing upon a vehicle in which IRGC Qods Force Commander Qasem Soleimani is riding outside of Baghdad Airport. The animation then shows a massive crowd chanting slogans and holding up pictures of Iranian “martyrs.” Soleimani’s coffin is shown magically illuminated, and the animation cuts to an Iranian control center from which missiles are launched at an American military base. The missiles are shown destroying the base and its equipment, including a drone similar to the one that shot the missile that killed Soleimani. The animation concludes with a quote from Iran’s Supreme Leader Khamenei in which he says that America’s corrupting presence in the region must come to an end. More

The post Iran Threatens to Attack America with Animated Video – Breaking Israel News [Video] appeared first on MaryPatriotNews.

February 18, 2020
Read More >>

Launching the First “Yomi Hunting” Challenge!

About a year ago, Yoroi released the Yomi Hunter sandbox, today, they love to challenge the malware community with the first “Yomi Hunting” contest. About a year ago, we publicly released the Yomi Hunter sandbox for a few simple reasons: in Yoroi we believe in the InfoSec community value, we think it plays a central […]

The post Launching the First “Yomi Hunting” Challenge! appeared first on Security Affairs.

February 17, 2020
Read More >>

Fox Kitten Campaign – Iranian hackers exploit 1-day VPN flaws in attacks

Iranian hackers have been hacking VPN servers to plant backdoors in companies around the world Iran-linked attackers targeted Pulse Secure, Fortinet, Palo Alto Networks, and Citrix VPNs to hack into large companies as part of the Fox Kitten Campaign. During the last quarter of 2019, experts from security firm ClearSky uncovered a hacking campaign tracked […]

The post Fox Kitten Campaign – Iranian hackers exploit 1-day VPN flaws in attacks appeared first on Security Affairs.

February 17, 2020
Read More >>

US administration requests $9.8B for cyber 2021 budget for the Department of Defense

The US administration requested $9.8 billion for cyber in next year’s budget for the Department of Defense, the amount is the same as last year. The US administration requested $9.8 billion for cyber operations in next year’s budget for the Department of Defense, a data that confirms the strategic importance of the fifth domain of […]

The post US administration requests $9.8B for cyber 2021 budget for the Department of Defense appeared first on Security Affairs.

February 17, 2020
Read More >>

SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors

Security experts have discovered multiple flaws, dubbed SweynTooth, in the Bluetooth Low Energy (BLE) implementations of major system-on-a-chip (SoC) vendors. A group of researchers has discovered multiple vulnerabilities, tracked as SweynTooth, in the Bluetooth Low Energy (BLE) implementations of major system-on-a-chip (SoC) vendors. The group was composed of researchers Matheus E. Garbelini, Sudipta Chattopadhyay, and […]

The post SweynTooth Bluetooth flaws affect devices from major system-on-a-chip (SoC) vendors appeared first on Security Affairs.

February 15, 2020
Read More >>

The cyber attack against Austria’s foreign ministry has ended

Austria’s foreign ministry announced that the cyber attack against its systems, allegedly carried by a state actor has ended. Earlier January, Austria’s foreign ministry announced it was facing a “serious cyberattack” and that it could be the work of a nation-state actor. “Due to the gravity and nature of the attack, it cannot be ruled out […]

The post The cyber attack against Austria’s foreign ministry has ended appeared first on Security Affairs.

February 15, 2020
Read More >>

MoleRATs APT group targets Palestinian territories

Security experts uncovered a new cyberespionage campaign conducted by one of the Gaza Cybergang groups (aka MoleRATs) targeting the Middle East. Experts from the Cybereason Nocturnus team have uncovered a cyber espionage campaign allegedly carried out by one of the Gaza Cybergang groups (aka MoleRATs).  MoleRATs is an Arabic-speaking, politically motivated group of hackers that […]

The post MoleRATs APT group targets Palestinian territories appeared first on Security Affairs.

February 13, 2020
Read More >>