A $50,000 Bug Could’ve Allowed Hackers Access Any Microsoft Account

Microsoft has awarded an independent security researcher $50,000 as part of its bug bounty program for reporting a flaw that could have allowed a malicious actor to hijack users’ accounts without their knowledge. Reported by Laxman Muthiyah, the vulnerability aims to brute-force the seven-digit security code that’s sent to a user’s email address or mobile number to corroborate his (or her) identity before resetting the password in order to recover access to the account.…
Read more

Replacing EDR/NGAV with Autonomous XDR Makes a Big Difference for Small Security Teams

The attack surface is virtually expanding before our eyes. Protecting assets across multiple locations, with multiple solutions from different vendors, has become a daily concern for CISOs globally. In a new e-book recently published (download here), CISOs with small security teams talk about the drivers for replacing their EDR/NGAV solutions with an Autonomous XDR solution and why they believe consolidation provides significant benefits to organization and team.…
Read more

Hackers Now Hiding ObliqueRAT Payload in Images to Evade Detection

Cybercriminals are now deploying remote access Trojans (RATs) under the guise of seemingly innocuous images hosted on infected websites, once again highlighting how threat actors quickly change tactics when their attack methods are discovered and exposed publicly. New research released by Cisco Talos reveals a new malware campaign targeting organizations in South Asia that utilize malicious Microsoft Office documents forged with macros to spread a RAT that goes by the name of ObliqueRAT.…
Read more

New Chrome 0-day Bug Under Active Attacks – Update Your Browser ASAP!

Exactly a month after patching an actively exploited zero-day flaw in Chrome, Google today rolled out fixes for yet another zero-day vulnerability in the world’s most popular web browser that it says is being abused in the wild. Chrome 89.0.4389.72, released by the search giant for Windows, Mac, and Linux on Tuesday, comes with a total of 47 security fixes, the most severe of which concerns an “object lifecycle issue in audio.” Tracked as CVE-2021-21166, the security flaw is one of the two security bugs reported last month by Alison Huffman of Microsoft Browser Vulnerability Research on February 11.…
Read more

URGENT — 4 Actively Exploited 0-Day Flaws Found in Microsoft Exchange

Microsoft has released emergency patches to address four previously undisclosed security flaws in Exchange Server that it says are being actively exploited by a new Chinese state-sponsored threat actor with the goal of perpetrating data theft. Describing the attacks as “limited and targeted,” Microsoft Threat Intelligence Center (MSTIC) said the adversary used these vulnerabilities to access on-premises Exchange servers, in turn granting access to email accounts and paving the way for the installation of additional malware to facilitate long-term access to victim environments.…
Read more

Twitch’s First Transparency Report Is Here—and Long Overdue

Twitch today released its first-ever transparency report, detailing its efforts to safeguard the 26 million people who visit its site daily. When it comes to transparency, the decade-old, Amazon-owned service had a lot of catching up to do. Twitch benefitted from a 40 percent increase in channels between early and late 2020, buoyed by the popularity of both livestreaming technology and video gaming throughout the pandemic.…
Read more

SEC Chair Nominee Gensler Calls Cryptocurrencies “Catalyst for Change” During Confirmation Hearing

Alex Dovbnya President Joe Biden’s pick to lead the SEC says that he will work to foster innovation in the cryptocurrency space Gary Gensler, President Joe Biden’s nominee to spearhead the Securities and Exchange Commission, has told the Senate Banking Committee that he would promote cryptocurrency innovation during his March 2 confirmation hearing when asked cryptocurrency regulations.…
Read more

Major Canadian Car Dealer to Accept Bitcoin

Alex Dovbnya Cryptocurrency payments will be accepted by Canadian dealership HGreg Quebec-based car dealer HGreg has announced that it will start accepting cryptocurrencies in a press release. HGreg president John Hairabedian expects the bold move to improve clients’ shopping experience: Our desire to constantly evolve and improve our customers’ shopping experience inspires us to make bold decisions.…
Read more

Unique Visitors
» 2,250 Today
» 6,418 Yesterday
» 10,694 This Week
» 10,694 This Month
» 216,506 This Year
» 1,283,578 Total (since 2019-12-11)
» Record: 17,789 (2020-12-14)
Counter by DarkWeb.Solutions