Subterms
Image: KAIST techrepublic cheat sheet Through the use of an automated testing toolkit, a team of South Korean academics has discovered 30 vulnerabilities in the file upload mechanisms used by 23 open-source web applications, forums, store builders, and content management systems (CMSes). When present in real-world web apps, these types of vulnerabilities allow hackers to […] More
The vast majority of coronavirus information shared across social media comes from fake news sites, according to Newsguard, a service that rates the credibility and transparency of web news content. Meanwhile, official sources like the Centers for Disease Control (CDC) and the World Health Organization (WHO) receive only a tiny fraction of the social engagement concerning COVID-19. The NewsGuard […] More
Singapore is planning to introduce a Cybersecurity Labelling Scheme (CLS) for home routers and smart home hubs as part of efforts to increase awareness about using secured products. It also hopes the initiative will push manufacturers to deploy enhanced cybersecurity measures and create a mandate for a set of minimum security requirements for home routers. […] More
The UK’s tax authority, HMRC, has revealed there were nearly 600,000 reports of bogus emails, phone calls and texts to its phishing team lasts year. Of those, 334,000 were about phishing emails. These can take a variety of forms, but often take the form of tax rebate or refund scams. Mostly the crooks are hoping […] More
CIA/ US government China’s largest cyber-security vendor has published today a report accusing the CIA of hacking Chinese companies and government agencies for more than 11 years. The report, authored by Qihoo 360, claims the CIA hacked targets in China’s aviation industry, scientific research institutions, petroleum industry, Internet companies, and government agencies. CIA hacking operations […] More
Coronavirus, more precisely known as COVID-19, is becoming increasingly scary. With multiple deaths reported in the US, France, Japan, Italy, and China, we’re beginning to deal with what may become a global health crisis. That said, COVID-19 still doesn’t hold a candle to the 2019 to 2020 strain of the flu for actual illness and […] More
Kevin Beaumont, the UK cybersecurity expert who named the wormable Windows BlueKeep bug, is joining Microsoft Threat Protection. Beaumont, a widely quoted security expert who’s run large security operations centers, has offered insights from the trenches into new attacks via his popular DoublePulsar blog and Twitter for the past few years, covering issues including WannaCry, […] More
Google has disclosed a severe vulnerability affecting dozens of models of mid-range Android devices running on chips from MediaTek. Malicious Android apps have been exploiting the flaw since at least January 2020. The elevation-of-privilege flaw, tracked as CVE-2020-0069, is disclosed in Google’s March 2020 Android bulletin and affects the MediaTek Command Queue driver. Smartphones The […] More
