Hacking Archives - Page 545 of 967

Pierluigi Paganini March 12, 2019

Users claim Samsung Galaxy S10 Face Recognition can be bypassed

The screen lock feature in the Samsung Galaxy S10 that is based on face recognition can be easily bypassed using a photo or a video of the owner. The discovery was made by users and tech reviewers that demonstrated how to bypass face recognition screen lock implemented in the Samsung Galaxy S10 model. Even if […]

Pierluigi Paganini March 12, 2019

Apex Legends for Android: a Fake App could Compromise your Smartphone

Yoroi-Cybaze ZLab malware researchers have analyzed four different fake android APKs that pretend to be versions of the Apex Legends game. Introduction At the beginning of 2019, Electronic Arts released a game for PC, XBox One and Playstation 4 named Apex Legends. It is a battle royal game like Titanfall and Fortnite, the latter is […]

Pierluigi Paganini March 12, 2019

Vulnerability research hub Crowdfense is willing to pay $3 Million for iOS, Android zero-day exploits

orld-leading vulnerability research hub Crowdfense is offering up to $3 million for full-chain, zero-day exploits for iOS and Android. Vulnerability research firm Crowdfense is offering up to $3 million for working exploits for iOS and Android zero-day. In 2018, Crowdfence ran a $10 million bug bounty program, now the company decided to increment the value […]

Pierluigi Paganini March 11, 2019

Severe RCE vulnerability affected popular StackStorm Automation Software

The security researcher Barak Tawilyhas discovered a severe vulnerability, tracked as CVE-2019-9580, in the popular, open source event-driven platform StackStorm. According to the expert, the flaw could be exploited by a remote attacker to trick developers into executing arbitrary commands on targeted services. StackStorm has been used to automate workflows in many industries, it allows […]

Pierluigi Paganini March 10, 2019

Jackson County paid $400,000 to crooks after ransomare attack

Ransomware threat makes the headlines again, this time an attack hit the computers of Jackson County, Georgia, paralyzing the government activity. Computers of Jackson County, Georgia, were infected with ransomware that paralyzed the government activity until officials decided to pay a $400,000 ransom to decrypt the files. “The Jackson County government paid online criminals about […]

Pierluigi Paganini March 09, 2019

Vulnerabilities in car alarm systems exposed 3 million cars to hack

Security experts at Pen Test Partners discovered several vulnerabilities in two smart car alarm systems put three million vehicles globally at risk of hack. The flaws could be exploited by attackers to disable the alarm, as well as track and unlock the vehicles using it, or to start and stop the engine even when the […]

Pierluigi Paganini March 09, 2019

More than billion records exposed online by email validation biz Verifications.io

Experts found an unprotected server exposing online 4 MongoDB databases belonging to the email validation company Verifications.io. A new mega data leak made the headlines, an unprotected MongoDB database (150GB) belonging to a marketing company exposed up to 809 million records. The archive includes 808,539,849 records containing: emailrecords = 798,171,891 records emailWithPhone = 4,150,600 records […]

Pierluigi Paganini March 08, 2019

FBI informed software giant Citrix of a security breach

The American multinational software company Citrix disclosed a security breach, according to the firm an international cyber criminals gang gained access to its internal network. The American multinational software company Citrix is the last victim of a security breach, according to the company an international cyber criminal gang gained access to its internal network, Hackers […]

Pierluigi Paganini March 08, 2019

Evading AV with JavaScript Obfuscation

A few days ago, Cybaze-Yoroi ZLAB researchers spotted a suspicious JavaScript file that implemented several techniques to evade detection of all AV solutions. Introduction A few days ago, Cybaze-Yoroi ZLAB researchers spotted a suspicious JavaScript file needing further attention: it leveraged several techniques in order to evade all AV detection and no one of the […]

Pierluigi Paganini March 08, 2019

Google discloses Windows zero-day actively exploited in targeted attacks

Google this week revealed a Windows zero-day that is being actively exploited in targeted attacks alongside a recently fixed Chrome flaw. Google this week disclosed a Windows zero-day vulnerability that is being actively exploited in targeted attacks alongside a recently addressed flaw in Chrome flaw (CVE-2019-5786). The Windows zero-day vulnerability is a local privilege escalation […]

Hacking

Users claim Samsung Galaxy S10 Face Recognition can be bypassed

Apex Legends for Android: a Fake App could Compromise your Smartphone

Vulnerability research hub Crowdfense is willing to pay $3 Million for iOS, Android zero-day exploits

Severe RCE vulnerability affected popular StackStorm Automation Software

Jackson County paid $400,000 to crooks after ransomare attack

Vulnerabilities in car alarm systems exposed 3 million cars to hack

More than billion records exposed online by email validation biz Verifications.io

FBI informed software giant Citrix of a security breach

Evading AV with JavaScript Obfuscation

Google discloses Windows zero-day actively exploited in targeted attacks

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Microsoft and Cloudflare teamed up to dismantle the RaccoonO365 phishing service

DoJ resentenced former BreachForums admin to three years in prison

Apple backports fix for actively exploited CVE-2025-43300

New supply chain attack hits npm registry, compromising 40+ packages

Cybercrime group accessed Google Law Enforcement Request System (LERS)

QUICK LINKS

Hacking

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!