Hackers Used Favicon Website To Steal Credit Card Information

Hackers are constantly on the lookout for new ways of causing mayhem and stealing data. Recently, researchers have unearthed a new technique to be on guard against. A few hackers have begun embedding credit card stealing scripts inside favicon meta data. If you’re not familiar with the term, you definitely know what a favicon is. It’s a custom icon used …

VMware Patches Many Security Issues To Fix Certain Vulnerabilities

Does your company make use of VMware products? If so, be advised that a pair of researchers from Synacktiv recently reported a series of critical security flaws in VMware’s ESXi, Workstation and Fusion products. The recent discovery prompted the company to issue an emergency security patch to address those issues. The most serious of the bunch, which earned a 9.3 …

If 123456 Is Your Password, Change It Immediately

You probably aren’t familiar with the name Ata Hakcil. He’s a computer engineering student who recently conducted one of the largest password security surveys currently available. To conduct his research, he collected a number of username and password “data dumps” from the Dark Web and analyzed the passwords he found there. Hakcil was able to analyze a massive collection of …

Nvidia GPU Users Should Update As New Security Patches Released

If you have computers on your corporate network that rely on NVIDIA hardware and software, be advised that the company recently released security updates to address serious security vulnerabilities found in CUDA and GPU Display drivers and Virtual GPU Management software. These are security flaws that could lead to an escalation of privileges, denial of service and arbitrary code execution …

New Powerful Malware Is Targeting Windows-Based Machines

Researchers have discovered a devilishly clever new stain of malware currently in use by hackers around the world. The new strain is appropriately called “Lucifer,” and has been making life quite difficult for IT professionals managing Windows environments. The malware exploits critical vulnerabilities in Windows-based systems to launch DDoS attacks and install cryptojacking code. The latest version (2.0) of the …

Hackers Attacking Exchange Servers In New Warning From Microsoft

Recently, Microsoft’s Defender ATP Research Team issued guidance relating to defending against attacks that target Exchange servers. They are coming under increasing attack based on the latest Microsoft statistics, which show a marked increase in the use of web shells on on-premises Exchange servers. The company is currently tracking multiple ongoing attacks, some of which are using fileless techniques. That …

Update Your Webex Desktop App To Avoid Security Threat

Do you rely on Cisco’s Webex Meetings app for video conferencing? If so, be advised that the company found and addressed a pair of high severity security flaws that could allow hackers to remotely execute code on vulnerable machines. The two issues are being tracked as CVE-2020-3263 and CVE-2020-3342. They impact Cisco Webex Meetings Desktop App releases 39.5.12 and earlier. …

Update Fix For VLC Media Player Security Bug Now Available

Do you use the VLC Media Player to watch downloaded movies and other videos? If so, be aware that researchers have discovered a serious security flaw in the code that allows for remote code execution, which could compromise your system. The vulnerability is being tracked as CVE-2020-13428 and is described as a buffer overflow issue. This could allow an attacker …

Credit Card Data Breach Affects Popular Jewelry And Accessory Store

Claire’s Jewelry and Accessories is the latest company to fall victim to hackers. According to a recent disclosure made by the company, both the retail giant’s main website, and the website of their subsidiary, Icing, were compromised. They were hit by what appears to be a Magecart attack. The company’s disclosure reads in part as follows: “On Friday, we identified …

Intel Steps Up Game With CPU-Level Malware Protection

Tech companies both big and small are always looking for new ways to protect their customers from the threat of malware.While that’s not something that hardware vendors are known for, Intel has leapt into the fray with a recent announcement. Their planned “Tiger Lake” mobile processers will offer CPU-level malware protection features. Tom Garrison is Intel’s VP & General Manager …