REvil Affiliates Confirm: Leadership Were Cheating Dirtbags

After news of REvil’s rip-off-the-affiliates backdoor & double chats, affiliates fumed, reiterating prior claims against the gang in “Hackers Court.”

Hackers Are Scanning for the Vulnerability Found in Vmware

The malicious actors are going after the CVE-2021-22005 that is unpatched against a critical arbitrary file upload vulnerability. This vulnerability that was recently patched could lead to remote code execution, as…

5 Tips for Achieving Better Cybersecurity Risk Management

Threat Post – Threat Post – Casey Ellis, founder, CTO and chairman of Bugcrowd, discusses a roadmap for lowering risk from cyberattacks most effectively. When thinking about cybersecurity risk management,…

100M IoT Devices Exposed By Zero-Day Bug

Threat Post – Threat Post – A high-severity vulnerability could cause system crashes, knocking out sensors, medical equipment and more. A flaw in a widely used internet-of-things (IoT) infrastructure code…

Solution spotlight series: Authority to Operate on Amazon Web Services

Cloud-based services provide clear benefits to organisations through cost savings, greater flexibility, enhanced business agility, and greater operational resilience. Whilst the advantages are well understood, often the risks are overlooked.…

Hackers hit Russian ministry, rocket center using MSHTML vulnerability

By Waqas Microsoft Office zero-day also dubbed MSHTML attack exploited to target Russian government including Interior ministry and State Rocket Center. This is a post from HackRead.com Read the original…

FamousSparrow APT Wings in to Spy on Hotels, Governments

Threat Post – Threat Post – A custom “SparrowDoor” backdoor has allowed the attackers to collect data from targets around the globe. A cyberespionage group dubbed “FamousSparrow” by researchers has…

Phone scammers use COVID-19 vaccine appointments to try tricking victims into downloading malware

Hackers are targeting American and Canadian victims with a malware strain that used coronavirus-themed messages to dupe users into downloading software that collects their personal information, according to findings published…

Millions impacted as payment API vulnerabilities exposing transaction keys

By Deeba Ahmed Millions of users could have exposed their private, payment data due to API security vulnerabilities discovered in several applications. This is a post from HackRead.com Read the…

Google Report Spotlights Uptick in Controversial ‘Geofence Warrants’ by Police

Threat Post –  Threat Post –  Digital privacy rights defenders contend that geofencing warrants grab data on everyone near a crime, without cause. Newly released data by Google sheds light…