EDRKillShifter Malware: New EDR Killer Tool in Ransomware Actors’ Toolkit
Recent research uncovers a new anti-EDR utility in the arsenal of malware actors, nicknamed EDRKillShifter. Its main known user to the moment is the RansomHub ransomware gang. Though, it is…
Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now
SAP, the developer of business management software, released a huge security update that fixes numerous vulnerabilities in their software. Among them are severe authentication bypass and server-side request forgery vulnerabilities…
Can You Get a Virus By Visiting a Porn Site?
Rumors and jokes about malware on porn websites have been circulating ever since such sites became popular among folks. It is a good call to a certain degree, as there…
“Managed by Your Organization” – How to Remove From Chrome?
“Managed by your organization” is a line that appears when the web browser is attacked by browser hijackers. This malware abuses a legitimate Chrome policy to make itself impossible to…
PUA:Win32/SBYinYing
PUA:Win32/SBYinYing is a potentially unwanted application (PUA) that is often bundled with certain cracked games. It may display ads to users or redirect them to potentially harmful websites, which puts…
1Password Vulnerability for MacOS Causes Credentials Leak
A critical vulnerability was discovered in 1Password that allows attackers to steal vault items by bypassing the app’s security measures. It affects only the macOS version of the program, and…
How to Disable Windows Defender: Windows 10 & 11 (With Safety Warnings)
Disabling Microsoft Defender is a common request from Windows users worldwide, often driven by performance concerns or conflicts with third-party security software. While Microsoft Defender has evolved into a capable…
Windows COM Vulnerability Exploited by Chinese Hackers
A vulnerability in Windows COM, first discovered in 2018, has become the target of attacks once again. A Chinese hacker group, likely affiliated with the Ministry of State Security of…
Apache OFBiz RCE Vulnerability Discovered, Patch Now
A vulnerability, CVE-2024-38856, has been discovered in Apache OFBiz that allows unauthenticated remote code execution. A patch is currently available, and the developer heavily recommends installing it, as hackers will…
Trojan:Win32/Qhosts
Trojan:Win32/Qhosts is malware that provides remote access to the target system and modifies the Hosts file. It is primarily distributed through illegal activation tools found on torrent and warez sites.…
Ubiquiti G4 Vulnerability Discovered, Allowing for DDoS Attacks
Researchers found a flaw in Ubiquiti G4 Wi-Fi cameras, that exposes the selection of important chunks of information. They suppose a similar vulnerability was used back in 2019 to perform…
Eriakos Scam in Facebook Ads Targets Personal and Banking Data
Fraudsters are using fake websites and Facebook Ads to steal users' financial data. Researchers named the campaign Eriakos after the CDN that fraudsters used in all campaigns. Facebook Ads Steal…
