Undetected e.04: TomNomNom – Hacking things back together
The post Undetected e.04: TomNomNom – Hacking things back together appeared first on Detectify Blog.
Web Security
Ring Doorbell’s Police Partnerships Questioned Over Racial Bias
Amazon has placed a moratorium on police use of its facial recognition platform – but a congressman asked if that extends to its Ring smart doorbell in a new inquiry.
A summer learning list for better security awareness
The post A summer learning list for better security awareness appeared first on Detectify Blog.
Cisco Warns of High-Severity Bug in Small Business Switch Lineup
A high-severity flaw allows remote, unauthenticated attackers to potentially gain administrative privileges for Cisco small business switches.
New Android Spyware Tools Emerge in Widespread Surveillance Campaign
Never-before-seen Android spyware tools have been used in a widespread APT campaign to spy on the Uyghur ethnic minority group – since 2013.
Email Sender Identity is Key to Solving the Phishing Crisis
Almost 90% of email attacks manipulate sender identity to fool recipients and initiate social engineering attacks.
Microsoft Releases Emergency Security Updates for Windows 10, Server
The patches fix two separate RCE bugs in Windows Codecs that allow hackers to exploit playback of multimedia files.
StrongPity APT Back with Kurdish-Aimed Watering Hole Attacks
The spy malware is being delivered via a complex infrastructure with multiple layers, in an effort to avoid analysis.
CISA: Nation-State Attackers Likely to Exploit Palo Alto Networks Bug
An authentication-bypass vulnerability allows attackers to access network assets without credentials when SAML is enabled on certain firewalls and enterprise VPNs.
How Do You Get Ransomware?
You must have known enough that ransomware has emerged as the most prevalent malicious software that kidnaps your data, locks your file, and denies access to your computer. All this…
The post How Do You Get Ransomware? appeared first on Hacker Combat.