Critical UEFI Vulnerabilities Threaten Devices from 25 Manufacturers
Binarly analysts have discovered 23 critical UEFI vulnerabilities from InsydeH2O, which is used by many major vendors, including HP, Lenovo, Fujitsu, Microsoft, Intel, Dell, Bull (Atos) and Siemens. Together, the…
0-day vulnerability remained unpatched for 2 years due to Microsoft bug bounty issues
As part of January Patch Tuesday, Microsoft fixed a dangerous 0-day privilege escalation vulnerability for which a PoC exploit is available online. The vulnerability is already being exploited in attacks…
Apple paid $100,000 for macOS camera and microphone hack
Information security researcher Ryan Pickren told how he received a large reward from Apple for hacking the camera and microphone in macOS. He also discovered vulnerabilities in Safari and macOS…
Zerodium offers up to $400,000 for exploits for Microsoft Outlook
Well-known exploit and vulnerability broker Zerodium announced that it is ready to pay up to $400,000 for zero-day vulnerabilities and exploits that will allow remote code execution in the Microsoft…
TrickBot causes crashes on the machines when cybersecurity experts studying it
TrickBot malware has received new features that make it more difficult to investigate and detect — for example, TrickBot has learned to crash the browser when suspicious manipulations are detected.…
How to Clean Up And Speed Up Your Computer?
We used to think about computers as insensitive robots that could run without any problems for days, weeks, or even months. However, even machines that consist only of electronic circuits…
Belarusian Cyber Partisans hack group attacked railway servers
A hack group that calls itself Belarusian Cyber Partisans claims to have attacked and encrypted the servers of the Belarusian Railways. The hacktivists said that the reason for the hack…
Dark Souls 3 found an RCE vulnerability that allows taking control of someone else’s PC
Over the weekend, the developers of the Dark Souls series of games reported that the PC servers of Dark Souls: Remastered, Dark Souls 2, Dark Souls 3 and Dark Souls:…
New BHUNT malware hunts for cryptocurrency wallets
Bitdefender researchers talked about a new modular BHUNT malware that steals the contents of cryptocurrency wallets, passwords and secret phrases. The new malware is spreading all over the world: in…
Companies in the EU will have to remove Google Analytics from their websites
Companies in the European Union will have to remove Google Analytics from their websites or face fines for violating the GDPR. The Austrian Data Protection Authority has stated that the…
Cybersecurity researchers discovered Chinese hack group Earth Lusca
According to a Trend Micro report, the Chinese cyber-espionage hack group Earth Lusca not only monitors strategic targets, but also engages in financially motivated attacks for profit. The researchers write…
The Facebook Pixel Hunt
Mozilla, a browser maker, these days introduced its collaboration with a non-earnings newsroom Markup. The collective efforts of companies could be directed toward studies into a selected subject of the…