Breaches are now commonplace, but Reason Cybersecurity lets users guard their privacy

antivirus protection software

There has been no shortage of massive security breaches so far this year. Just last July, Capital One disclosed that it was hit by a breach that affected more than 100 million customers. Also recently, researchers came across an unsecured cloud server that contained the names, phone numbers, and financial information of virtually all citizens Leggi tutto…

7-Year-Old Critical RCE Flaw Found in Popular iTerm2 macOS Terminal App

iTerm2 macOS Terminal App

A 7-year-old critical remote code execution vulnerability has been discovered in iTerm2 macOS terminal emulator app—one of the most popular open source replacements for Mac’s built-in terminal app. Tracked as CVE-2019-9535, the vulnerability in iTerm2 was discovered as part of an independent security audit funded by the Mozilla Open Source Support Program (MOSS) and conducted Leggi tutto…

MasterMana botnet hits users by evading detection with URL shorteners

MasterMana botnet malware attack

MasterMana botnet is part of an ongoing malware campaign. The IT security researchers at Prevailion have discovered an active botnet that has been targeting corporations and unsuspected users across the globe. Dubbed MasterMana by researchers; the botnet utilizes every available option to target its victims including dropping backdoors and phishing attacks through business email compromise Leggi tutto…

You Gave Your Phone Number to Twitter for Security and Twitter Used it for Ads

twitter advertising

After exposing private tweets, plaintext passwords, and personal information for hundreds of thousands of its users, here is a new security blunder social networking company Twitter admitted today. Twitter announced that the phone numbers and email addresses of some users provided for two-factor authentication (2FA) protection had been used for targeted advertising purposes—though the company Leggi tutto…

vBulletin Releases Patch Update for New RCE and SQLi Vulnerabilities

vBulletin hacking exploit

After releasing a patch for a critical zero-day remote code execution vulnerability late last month, vBulletin has recently published a new security patch update that addresses 3 more high-severity vulnerabilities in its forum software. If left unpatched, the reported security vulnerabilities, which affect vBulletin 5.5.4 and prior versions, could eventually allow remote attackers to take Leggi tutto…

Adobe Suspends Accounts for All Venezuela Users Citing U.S. Sanctions

Adobe Venezuela Sanction

I have really bad news for Adobe customers in Venezuela… California-based software company Adobe on Monday announced to soon ban accounts and cancel the subscriptions for all of its customers in Venezuela in order to comply with economic sanctions that the United States imposed on the Latin American country. The Trump administration issued an executive Leggi tutto…

Signal Messenger Bug Lets Callers Auto-Connect Calls Without Receivers’ Interaction

signal messenger vulnerability

Almost every application contains security vulnerabilities, some of which you may find today, but others would remain invisible until someone else finds and exploits them—which is the harsh reality of cybersecurity and its current state. And when we say this, Signal Private Messenger—promoted as one of the most secure messengers in the world—isn’t any exception. Leggi tutto…