Posts

BlueKeep Vulnerability (referred to as CVE-2019-0708), is a security issue that was discovered in the Remote Desktop Protocol (RDP), a feature developed by Microsoft for network communications. This RDP uses the TCP port 3389 and UDP port 3389 for activating communications among systems in a network. As this port is open to the internet for connecting, it can be exploited to execute malicious code remotely. Saving from this attack is the primary scanner from ESET, a Slovakian CyberSecurity firm that scans the system’s integrity and provides according to patches to secure....

So, today you can’t start a marketing campaign for your business without an exceptional landing page. What is a Landing Page? A landing page is on your website where users land after clicking on an online marketing call-to-action. While your homepage is a massive menu of everything about your business, the landing page has only one call-to-action. As a result, businesses using landing pages are getting more leads and higher conversions....

Bose Disclosed a Data Breach Bose, an audio equipment manufacturer for consumers and businesses, has recently reported a data breach incident to the New Hampshire’s Office of the Attorney General. This includes the company falling victim to a ransomware/malware attack in early March this year that subsequently led to accessing the private information of some Bose employees. In its filing, Bose said they hadn’t paid any ransom to the threat actor and instead hired external security experts to recover the files from the impacted systems....

Brown University Cyberattack Brown University is a private research university in the US, which has reportedly faced a cyberattack on Tuesday this week. Immediately, most of the service connections were cut off with the data center, with the University’s IT staff saying the attack was focused on Windows-based systems. Thus, they directed the faculty and other staff members to use smartphones or tablets running on other OS, then Windows. Also, they asked the employees to contact the University’s IT consultant or the Departmental Computer Coordinator to check if their system has obtained ‘known clean status....

Egregor Hits Cencosud Cencosud is a multinational company based in Chile, having branches in Columbia, Peru, Brazil, and Argentina. With over 140,000 employees and $15 billion in revenue (2019), Cencosud is one of Latin America’s largest retail chains. As per Clarín, an Argentinian media, Cencosud was hit by a ransomware group this week. This was observed when electronic services at Easy store in Buenos Aires, part of Cencosud, stopped accepting “Cencosud Card,” pickup of web purchases and product returns....

Since 2012! Researchers at Blackberry uncovered a new hacking campaign that’s large and been around since 2012. The actors behind this are linked to Chinese state-backed groups, as they’re using the Winnti malware. This was used back in the 2010s by Chinese groups as APT17 for stealing corporate secrets and sensitive data. These can help them aid in cloning the original products at cheaper prices. Researchers tell that they’ve been in the dark since the early 2010s, as the tool hints left by them trace back to 2012....

Google Will Let You Know About Password Compromises Google has already rolled out a feature to let users know whether their saved passwords are compromised or not. While this is available in the desktop Chrome, it’s now rolling to Android and iOS clients with the launch of Chrome v86. This new version brings a range of improvements and some notable features. One such feature is the password compromise intimation, where Google will now inform the Android and iOS users whether their saved passwords were compromised or not....

Clubhouse is Getting Android App Soon The idea of Clubhouse seems more of a random than an actual social media. The voice-only platform is currently available only to those having the invites and in iOS only. And this made the service even more interesting. It has grown so big that, it’s valued more than $100 million with just 1,500 users. Now, it has received a new round of funding led by Andrew Chen, Clubhouse’s partner....

Hunting the Users of Torrent Trackers Denmark is one of the nations where torrenting is done very often, for almost everything. Besides the popular torrent sites, people use torrent trackers to keep updated and find the relevant pool of peers to get what they wanted. But, this may need some to register to be able to match. And this could be the cost they’re paying now. Hunting the Users of Torrent TrackersDanishbits Shut DownNordicbits Shut Down...

Digital Point Exposed Data of All Its Members Digital Point was once a popular site for webmasters like SEO professionals and website managers. Though the site claims to be a platform for every profession, it’s often used by internet-product dealers. It has eventually lost its charm for not upgrading from static designs and features. And now, a report reveals that its database was leaked online! As per the WebsitePlanet team and a security researcher named Jeremiah Fowler, a database containing 62,858,144 records of 863,412 users was leaked online....

Facebook’s Old Layout Can be Used Even after Removal Though companies race with new features like dark mode to attract their customers, they sometimes ignore what their people like. A move of such made by Facebook recently is shifting to a new UI, where it completely revamped the old layout of the Facebook website. This was announced by Facebook in its last year’s F8 conference and finally rolled out recently. Though the new UI design made things clear, it’s still accused by users for making it default....

Stealing VPN Credentials Via Vishing Vishing or voice phishing is a technique where the threat actor impersonates a higher official or as an entity to lure the targets into doing something. In this case, as the FBI warned through a TLP: WHITE Private Industry Notification last week, hackers are stealing credentials. Threat actors here are using vishing techniques to lure employees into logging into their phishing sites. They’re attacking employees of all levels, and get more privileged ones later on for better access....

$1 Million to Fight Against DMCA Notices The Microsoft owned code repository, GitHub has restored YouTube-dl back into its platform today. The controversial software was earlier accused by the Recording Industry Association of America (RIAA) for being a tool to bypass its technical restrictions and letting users extract the audio from a YouTube video. Since this seems infringing enough, RIAA has sent a DMCA notice to GitHub, asking it to remove the YouTube-dl, and 17 other tools that have been made using this....

This seemed unusual as the OEM has used a beefed-up 50MP lens for its recent Pixel 6 series but stripping down on the next major variant. In addition, the APK teardown of Google Camera also revealed the probable release time of Foldable Pixel, which is sometime next year. Foldable Google Pixel on The Way Observing the popular response Samsung received on its foldable smartphones, Google and Apple are reportedly making their variants of foldable handsets....

And as Google promised, it rolled out the app on Play Store for Android users – available for the Wear OS 3 and above smartwatches. Though it’s still bare bones, it has the needed controls set in to manage your smart home devices remotely via your smartwatch. Google Home app for Smartwatches Google has been heavily focusing on its Home app lately, with many new features added to make it more useful....

As per new leaks, the new Pixel 4 phones will dazzle the market with its 8x zoom along with an up-gradation feature. This is the highly coveted night mode or ‘Night Sight.’ A new “motion mode” feature is also set to debut and capture the market by storm. This characteristic will enable a person to catch snaps of fast-moving objects and also get them in focus. Moreover, the background won’t incur the blurring effect and give results akin to a standalone camera....

And this is due to the media houses like BPI and PPL now forcing Google to do so. As a result, hundreds of domains belonging to The Pirate Bay are removed from UK’s Google Search, with anyone searching for them seeing a banner indicating the same. Removing The Pirate Bay URLs For long, The Pirate Bay has been a headache for many rightsholders worldwide. Fighting against it, media houses are filing lawsuits to obtain injunction orders and directing local ISPs to block the site and its associated URLs completely....

Google Accused For Manipulating Search Results While it’s common for big firms to deal with lawsuits regularly, for Google, it’s just a daily routine. US attorneys sued the American company for the third time this year. Now, for anti-competitive practices in the Search market, by abusing its monopoly status. Under this, about 38 attorneys from a bipartisan group have filed a case against Google today. Calling it an antitrust filing, they said Google is methodically hiding or pushing down its competitors’ sites and services in its own search results....

DESFA immediately shut down its systems after learning about the breach and deployed its IT professionals to contain the situation. Assuring the public that none of their gas supply has affected, they informed the concerned authorities to solve the issues. Publicizing After Being Exposed Most of the Europen countries are already in trouble for boycotting the Russian energy supply – after the latter invaded Ukraine earlier this year. This led them to rely heavily on local suppliers, even though they’re producing in very limited quantities....

Well Planned Attack on Avast! According to Avast Chief Information Security Officer (CISO), Jaya Baloo, this attack is carried out in an extremely sophisticated manner. This is due to the fact that the attacker took extra effort not to cause any suspicion or leave behind any traces of their intention. The company is naming the attack as ‘Abiss.’ The attacker connected from a public IP address in the UK and then used a temporary VPN profile that shouldn’t be active and wasn’t protected by two-factor authentication....