Tech Blog

Many Windows 10 users Cannot Download Firefox

Mozilla states that accessing files from the Internet cannot function for Windows 10 users with the Parental Controls option on and belonging to a family group while uploading a 69.0.2 changelog to Firefox. Reddit[ 1, 2, 3] and Mozilla’s bug tracker identify the problem in an issue published three days ago, 4 October, stating that…

Check if you have Data Breaches in Sephora or StreetEasy

Software violation search page Have I Been Pwned added the software infringements from StreetEasy and Sephora privacy to their motor so that users can verify if their information has been leaked. In June 2016, according to HIBP, StreetEasy was hit by a data breach that exposed data to nearly 1 million users. This data included…

Magecart Affects Hundreds of Thousands of Websites that Continue to Grow

At over two million detections to date, exploiting the infrastructure of shopping sites to steal payment card data is unlikely to end in the near future. These attacks are collectively called Magecart, and multiple groups, some more advanced than others, are currently in the sector. We target online payment forms and steal data on their…

Spam Campaign FTCode PowerShell Ransomware Resurfaces

An ancient PowerShell ransomware resurfaced to Italian recipients with a vengeance in a spam allocation. This ransomware is called the FTCode and is fully PowerShell-based so that the computer can be encrypted without any other parts downloaded. Since 26 September, fresh ransomware named FTCode, which was distributed via spam, has been reported [ 1, 2,3,…

Over 170,000 Users Data up for Grabs After Comodo Forums Breached

Over half of the Comodo Forum users ‘ account information has been robbed and is now traded online. The violation was made possible by exploiting a weakness in the forum’s software. Comodo released a safety notice today informing customers that an intruder might have access to the database of the forums. “A fresh vulnerability has…

New Exim vulnerability Exhibits DoS servers, RCE risks

A fresh critical vulnerability was patched to avoid denial of service (DoS) or potentially remote code implementation assaults in the Exim mail transfer agent (MTA) software. The CVE-2019-16928 safety bug that was reported by QAX-A-TEAM has also been corrected today in Exim version 4.92.3, and affects all versions from 4.92 up to (and including) 4.92.2….

How to enable Cloudflare’s vBulletin CVE-2019-16759 protection

This week a vulnerability and approach to the execution of remote software in zero-day vBulletin has been openly exposed and used by poor performers to attack vBulletin forums. Cloudflare now has a unique rule in place to stop this exploit from operating behind Cloudflare’s service on vBulletin locations. The vulnerabilities in remote code implementation are…

Cyber-Attacks Disrupt the Defense Contractors, IT Systems

Defense contractors Rheinmetall AG and DCC have been struck by cyber attacks this month that have affected and affected their IT systems. German Rheinmetall AG, with two operational parts, Rheinmetall Defense & Rheinmetall Automotive, is one of the world’s leading providers of military machinery and systems. “The 23,000 strong worldwide workforce produced revenues of 6.9…

Phishing Campaigns Abusing Open Redirects

In phishing campaigns, open redirects by Google and Adobe are used to give validity to URLs used in spam emails. An open redirect is a website URL which anybody can use to forward users to another website. Unfortunately, many firms, including Google, do not see an open vulnerability in redirecting safety and therefore do nothing…

Buggy Google Chrome Unbootable Macs Recent Update

A wave of Macs that could not boot anymore was triggered by a latest Google Chrome update which corrupted a needed folder on the operating system. After installing the update, impacted consumers have discovered that they can no longer boot to macOS. Yesterday we revealed that some Avid Media Composer customers could not boot their…