An Austrian cyber security auditor, Florian Bogner, recently discovered a flaw that allows a local attacker to abuse the ‘restore from quarantine’ feature in antivirus software. The flaw, named AVGater, allows to move malware from an AV’s quarantine folder to a sensitive locations on the victim’s system, allowing the malware to run with full privileges.…
The past couple of weeks have been pretty mundane when it comes to cybersecurity (not counting the news about ‘Meltdown’ and ‘Spectre’), we have seen worse times, but there have been better weeks. Between December 15 2017 and January 5 2018, arrest in connection to spreading ransomware were made, US officially blamed North Korea for WannaCry, Forever 21’s customer card…
What is Coin-Hive.com?
Coin-Hive.com is known to be a currency miner. Specifically speaking, it is a JavaScript library used to mine the cryptocurrency. In most cases, the following cryptocurrencies are mined using it: Monero, Dashcoin, DarkNetCoin, and others. Although this does not sound very dangerous, malware experts have noticed that cyber criminals have started embedding this miner into certain programs and…
It has been an eventful two weeks, and while there were no worldwide ransomware attacks, we did see one major data breach, one huge data leak, more than a billion of credentials exposed, hackers stealing money from banks and $80 million worth of Bitcoin stolen. These are only the few incidents that took place over the last 14 days. Below…
Seven vulnerabilities have been discovered in the LibXL C library by a security researcher. An attacker could exploit the flaws and perform remote code execution attack via specially crafted XLS files, Cisco’s Talos researcher, Marcin Noga, reports. Libxls is a C library which is used to read Microsoft Excel File Formats, raging from current versions XLS files to Excel 97…
November 1-8 has been a pretty slow week. We did not witness major breaches involving millions of people, and no worldwide ransomware attack took place. However, some more notable incidents did occur, from popular anime site being hacked to a fake app being downloaded a million times from Google Chrome.…
Cryptocurrency is definitely a term you have heard before, so you must also be familiar with cryptomining. Cryptocurrency prices have risen drastically this year, Bitcoin alone is currently worth $7000. Needless to say, not only investors, but also hackers started seeing opportunities in this. Hackers implant cryptocurrency mining malware onto devices, and proceed to make a profit using someone else’s…
October 16-22 was a busy week for cybersecurity, from malware detected in Google Play store to the discovery of a vulnerability that makes everything and everyone using WiFi vulnerable. It can be difficult to keep up with all the news so we have prepared summaries of the most significant happenings from last week.…