Severe flaws in password managers let hackers extract clear-text passwords

By Waqas Password Managers aren’t as secure as you might assume - Security researchers claim that hackers can steal master passwords in PC memory. Password managers are considered as one of the most suitable options when it comes to keeping your online credentials safe from being hijacked and...

Download Kali Linux 2019.1 with Metasploit 5.0

By Waqas Download Kali Linux 2019.1 now! - This is the first major update for Kali Linux ever since version 4.0 was released in 2011. Kali Linux is one of the most popular Debian-based Linux distribution for advanced Penetration Testing and that is why the InfoSec community eagerly waits for its...

Rietspoof malware distributes ransomware via messaging apps

By Waqas A malware strain dubbed as Rietspoof has been under the radar of researchers at Avast since last August. Reportedly, researchers suspect that the malware is on the rise and it is being distributed via Skype, Facebook Messenger, and other messaging apps. Researchers maintain that the...

Most & least radiation emitting smartphones in 2019

By Zehra Ali Smartphones are a utility in our lives more than any other thing. The addiction has increased to a level that most of us keep our smartphones by our side whether we are at the office, home or even while we are on the bed. According to the research by Cellular Telecommunication and...

Torrent uploader CracksNow caught distributing GrandCrab ransomware

By Waqas Famous Uploader CracksNow Banned from Torrents for Distributing GrandCrab Ransomware. CracksNow is a prominent software uploader who appears regularly on torrent sites. However, recently the account of CracksNow was banned by several torrent sites while the uploader is accused of...

Dark Web hacker selling 92M new accounts on Dream market

By Waqas The dark web hacker “Gnosticplayers” has quickly made a reputation for his high-profile data breaches and selling user data on the infamous Dream marketplace. A couple of days ago the hacker was selling 126 million accounts stolen from new data breaches and now, the same hacker is back...

Chinese facial recognition database tracking Muslims left exposed

By Waqas China is often held responsible for conducting surveillance campaigns and espionage activities discreetly not only on its citizens but governments across continents. Now, a misconfigured facial recognition database has emerged that confirms the allegations put forth against China...

Website uses Artificial Intelligence to create utterly realistic human faces

By Waqas A new way for cybercriminals to create fake social media profiles and carry identity scams using Artificial Intelligence powered tool? A couple of months ago it was reported that NVIDIA has developed a tool that uses Artificial Intelligence to create extremely realistic human faces which...

What is Ransomware and How to Prevent It?

By Zohar Pinhasi The threat of ransomware attack is growing but do you know what is ransomware and how you can protect yourself from this growing threat? If you’ve been following the news on malware scams and hacks from across the world, chances are that you might have come across the term...

Dark Web hacker selling 126M accounts stolen from new data breaches

By Waqas A dark web hacker going by the online handle of "Gnosticplayers" is selling a massive trove of user data stolen after compromising websites of several popular companies. The data which amounts to over 126 million accounts includes emails and passwords, etc. and is currently available on...

Hacked versions of popular iOS games available on App Store

By Waqas Software pirates are distributing hacked and infected versions of iPhone apps by hijacking Apple’s enterprise developer program. Reportedly, the hacked apps include versions of Minecraft, Spotify, Angry Birds, and Pokemon Go. These apps have been modified for making paid content/features...

Email service provider loses 2 decades worth of data due to hack attack

By Waqas Famed secure email service provider VFEmail has become a victim of a hack attack by an unknown cybercriminal. The company claims that it has suffered a “catastrophic destruction” of its US servers and almost two decades of data and backups in only a few hours. The entire digital...

Russian to shut down Internet to test its cyber deterrence

By Carolina To test the security of its data, Russia is considering disconnecting its Internet service for a short period of time. The test will affect all the data sent by Russian citizens or organizations as Internet access would be limited only within the national territory, meaning that they...

An info stealer .exe malware is targeting Mac users around the globe

By Waqas Cybercriminals have identified a unique method of attacking Mac devices, which involves exploiting executable or .EXE files. Those files that can be executed both on Mac and Windows devices have the potential of infecting Mac computers as these unload a .exe malware. Discovered by Trend...

Critical zero-day vulnerabilities hit Lifesize video conferencing products

By Waqas The IT security researchers at TrustWave have discovered critical zero-day vulnerabilities in video conferencing products developed by Lifesize which, if exploited by attackers can cause a great deal of damage. Lifesize is an audio and video telecommunication firm based in the United...

Clipper malware on Play Store replaces users BTC & ETH wallet address

By Waqas This is the first ever Clipper malware found on Play Store. Another day another Android malware on Google Play Store - This time the IT security researchers at ESET have discovered a malware known for replacing the content of clipboard on the targeted device. This type of malware is call...

These iOS apps have been secretly recording your screen activities

By Waqas Apple has vowed to remove iOS apps that record screen data. User data recording has become an issue of concern among the cyber-security community as the data is used to launch a variety of scams, identify customer demographics, and targeted marketing gimmicks. Mobile phone manufacturers...

Flaws in RDP protocols leaving machines prone to remote code execution

By Waqas Major Security Flaws Identified in RDP Protocols making Machines Prone to Remote Code Execution and Reverse RDP Attacks. Check Point researchers have identified that three remote desktop protocol RDP tools, which are probably the most popular ones for Windows, macOS, and Linux systems, a...

Upcoming Firefox version to offer fingerprinting & cryptomining protection

By Uzair Amir There is very good news for Mozilla Firefox users. After improving the user experience with tracking protection function offering content blocking features and other changes in Firefox 63, Mozilla is aiming for another significant update in the upcoming version of the browser. The n...

New cryptocurrency malware SpeakUp hits Linux & Mac devices

By Waqas The IT security researchers at Check Point have identified a new malware called SpeakUp targeting Linux and macOS - The new findings prove that there has been a surge in malware attacks against Linux and Apple devices. SpeakUp is a new backdoor Trojan that is being distributed by...

Crypto exchange loses access to $145M after CEO dies without giving password

By Waqas The Canada-based cryptocurrency exchange QuardigaCX has suffered a major setback after the untimely death of its founder and CEO Gerald Cotten. Apparently, Cotten had exclusive and crucial information about the exchange’s password. Now that the CEO is no more, the exchange claims to have...

Top 10 Best Antivirus software for 2019

By Zehra Ali Open the Internet and your screen will be flooded with hacking news and exploits carried out through the use of sophisticated techniques. It is not uncommon to land on news reports of millions of compromised Internet devices. These stories emerge not merely because of the hacker’s...

World’s largest data dump surfaces on web with 2.2 billion accounts

By Waqas It hasn’t even been 15 days since details of the world’s biggest online private data dump were discovered by security researchers and now its second "installment" has posted online. As per the report from Heise.de, a German-language website, the first collection, which was published on...

Ethical hacker may get 8 years in prison for reporting flaws in Magyar Telekom

By Waqas Hungary’s Prosecution Service has accused an ethical hacker and computer specialist of infiltrating the Magyar Telekom database. The office found him involved in a crime that disrupted the operations of a “public utility” thereby attempting to endanger the society. Reportedly, the hacker...

Hackers used Karma tool to hack iPhones of prominent Govt officials

By Uzair Amir UAE Launched Aggressive Cyber Espionage Campaign using KARMA and Expertise of Ex-NSA Operatives. Though it seems hard to believe it is indeed true that the smartphones of several prominent political and governmental personalities worldwide have been hacked by former US intelligence...

New Mac Malware steals iPhone text messages from iTunes backups

By Waqas The IT security researchers at Palo Alto Networks’ Unit 42 have discovered a dangerous new Mac malware capable of targeting devices for multi-purposes including stealing cryptocurrency. Dubbed CookieMiner by researchers; the Mac malware is a variant of OSX.DarthMiner, another nasty piece...

Selfie stealing malware found in popular Android beauty camera apps

By Waqas We all want to look perfect in the pictures that we post online and beauty camera apps are our best bet in order to fine-tune our pictures. However, according to the findings of Trend Micro researchers, these kinds of applications are performing more functions than what we think they are...

Authorities shut down xDedic marketplace for selling hacked servers

By Waqas The domain for xDedic has been seized as well. In a joint operation, the Federal Bureau of Investigation FBI and authorities from several European countries have successfully taken down xDedic, a notorious dark web marketplace known for selling stolen digital goods such as login...

New Firmware Version of Nintendo Switch Hacked in just 4 Hours

By Waqas Nintendo Switch Hacked: The company was claiming to have added advanced security codes in this version of Switch Firmware. The problems for Nintendo console owners are far from over as the latest firmware version got hacked in merely a few hours. According to reports, the newly rolled ou...

FaceTime bug exposes live audio & video before recipient picks call

By Waqas FaceTime bug is exposing calls and videos - Here's how to disable FaceTime until this issue is fixed. According to reports, there is a major bug in iPhone FaceTime’s video calling function that lets users hear audio from the call even before the recipient has accepted the video call...

What If Your VPN Keeps Logs and Why You Should Care

By David Balaban Have you ever asked yourself the question: “So what if my VPN keeps logs?" Don't worry. It's a good question to ask. It means you're actually curious about the nuances of data collection, management and how they affect you. In order to answer this question, we first have to delve...

Meet Aztarna, a tool to find vulnerable Internet connected robots

By Waqas The company behind Aztarna is Alias Robotics, a cyber-security startup. Manufacturers and users of IoT robots should breathe a sigh of relief that the cyber-security startup Alias Robotics has developed a robot scanning tool that can track any robot connected to the internet and powered ...

Beware; hackers are using malicious TeamViewer tool to spread malware

By Waqas TeamViewer is a popular remote control desktop sharing software with more than 1 billion users and that makes it a lucrative target for cyber criminals. Recently, the IT security researchers at Trend Micro have uncovered a malware campaign targeting unsuspecting users with a malicious...

Hackers abusing Google App Engine to spread PDF malware

By Waqas The Cobalt Strike advanced persistent threat APT group is using Google App Engine to spread PDF malware against financial firms. The IT security researchers at Netskope have discovered a sophisticated malware campaign in which cybercriminals are abusing Google App Engine GCP, a web...

Google Maps help Police catch serial masturbator after 4-year hunt

By Carolina An alleged "serial masturbator" who has been causing disturbance among citizens around Brisbane’s inner-city for the past four years has finally been caught by the Queensland Police thanks to Google Maps. Google Maps: Hubby divorces wife after finding her on Street View with another m...

Attackers successfully hide Mac malware in ad images

By Waqas Malware campaigns have become quite regular on Apple devices and as per the new report from Confiant, a cyber-security firm, there’s a new group on the block called that is specifically targeting Apple users through malvertising. The group called VeryMal has employed steganography...

Hacker demonstrates how to remotely Jailbreak iPhone X

By Waqas A China-based security researcher associated with the Qihoo 360 Vulcan Team has published a proof-of-concept exploit for a kernel vulnerability, which he claims to be the second stage of an exploit chain that he was successfully able to jailbreak iPhone X remotely. The researcher Qixun...

Google URL Inspection Tool flaw lets anyone inspect URLs without authorization

By Waqas Last year, Google launched its URL Inspection Tool for webmasters using Search Console. The purpose of this tool is to provide information about Google's indexed version of a specific page. However, now, a UK-based Search Engine Optimization SEO specialist Oliver HG Mason has discovered...

How To Improve Your Online Processes

By Carolina In today’s internet-driven world, every business relies very heavily on the internet for their operation. There will be various online processes that a company uses no matter what industry they are in and you may find that there are ways that you can improve these processes. While thi...

Popular free Android VPN apps on Play Store contain malware

By Waqas If you want to ensure optimal privacy while surfing the web, a VPN virtual private network is the only reliable option. In this regard, a majority of web and smartphone users rely upon free VPN services, which according to the latest research is a risky step. In 2017, researchers...

DarkHydrus Phishery tool spreading malware using Google Drive

By Waqas DarkHydrus is back in action with a new variant of RogueRobin malware to target Middle Eastern Politicians by abusing Google Drive. The primary focus of cybercriminals nowadays is to use the infrastructure of genuine services in their attacks in order to prevent detection from security...

Malicious apps deploy Anubis banking trojan using motion detection

By Waqas Google has left no stone unturned in preventing malware and banking trojan from invading the applications uploaded on its official Play Store. Despite having anti-malware protection, shady applications somehow make it to the platform. In fact, malware developers have become so advanced i...

Twitter bug exposed private tweets of Android users to public for years

By Carolina A security bug in Twitter exposed private tweets of users to the public. The flaw only affected Android users of the Twitter app while iPhone users were not affected. According to Twitter, private tweets of users from November 3, 2014, to January 14, 2019, were exposed. Although the...

New ransomware steals PayPal data with phishing link in ransom note

By Uzair Amir Ransomware is a reality and threat actors are using it quite avidly and frequently nowadays in order to make easy money. According to the new findings of MalwareHunterTeam, there is in-development ransomware that can encrypt your files, steal credit card information and steal PayPal...

773 million records with emails & plain text passwords leaked online

By Waqas It's a whopping 87GB data - Find out if you are affected by the massive data breach. Security researcher and founder of Have I Been Pwned, Troy Hunt, has revealed that around 773 million ‘unique’ email IDs and 22 million ‘unique’ passwords were available on MEGA cloud service. Later on,...

Watch as hackers take over a construction crane

By Waqas Trend Micro Researchers Prove How Easy it is Hackers to Hack a Construction Crane and Cause Destruction. Hacking a crane at a construction site might seem to you like an impossible act from cybercriminals. It just appears so unbelievable. After all, what would they get by hacking a crane...

Malware can fully compromise building control systems

By Waqas Enterprise security vendor ForeScout’s operational technology research unit has developed a PoC Proof-of-Concept malware that exposed the vulnerabilities in building automation systems BAS by compromising them due to the presence of two very critical bugs in the BAS's PLC programmable...

Cryptopia cryptocurrency exchange hacked; suffers “significant losses”

By Waqas Cryptopia, a New Zealand based cryptocurrency exchange has undercome a cyber attack leading to “significant losses.” The incident took place on January 14 and upon detecting the attack Cryptopia was forced to halt services by taking their website and exchange offline. Initially, on its...

Bug bounty: Hack Tesla Model 3 to win your own Model 3

By Waqas Tesla is partnering with Pwn2Own's bug bounty to identify vulnerabilities in its Model 3 car software. Electric car maker Tesla announced recently that the company is partnering with Pwn2Own hacking contest organizers in order to help the company identify security issues in its...

The Pirate Bay malware can empty your Cryptocurrency wallet

By Waqas The malware was found hidden in the Windows shortcut file on The Pirate Bay. A new malware has been identified in popular torrent forum The Pirate Bay. The malware is discovered in a shortcut file for a movie and it has the capability to manipulate web pages along with changing the...