Mozi, a relatively new botnet, has fueled a significant increase in Internet of Things (IoT) botnet activity, IBM reported this week.Showing code overlaps with Mirai and its variants and reusing Gafgyt code, Mozi has been highly active over the past year, and it accounted for 90% of the IoT network traffic observed between October 2019 and June 2020, althoug

Twitter announced that it will adopt new security measures to protect high-profile accounts during the upcoming election in the United States. Twitter announced new measures to protect high-profile accounts during the upcoming US Presidential election. The types of accounts that are in this designated group are: US Executive Branch and CongressUS G

This week Apple released updates to most of its operating systems and the macOS version of the Safari browser. Here’s a brief rundown of the security fixes included with each update as well as some of the non-security changes.iOS 14.0 and iPadOS 14.0Available for: iPhone 6s and later, iPod touch 7th generation, iPad Air 2 and later, and iPad mini 4 and

Apple announced new Apple Watch models, updated iPads, a new fitness subscription service, and a subscription bundle, Apple One. While iOS 14 and iPadOS 14 were released this week, there’s still no news on macOS. Josh and Kirk look at all the new stuff, and try to figure out what’s best for most users. Apple Introduces New Apple Watch, iPad Air,

Title: B-swiss 3 Digital Signage System 3.6.5 Database Disclosure Advisory ID: ZSL-2020-5588 Type: Local/Remote Impact: Exposure of System Information, Exposure of Sensitive Information, Security Bypass Risk: (4/5) Release Date: 19.09.2020SummaryIntelligent digital signag

Title: B-swiss 3 Digital Signage System 3.6.5 CSRF Add Maintenance Admin Advisory ID: ZSL-2020-5589 Type: Local/Remote Impact: Cross-Site Scripting Risk: (4/5) Release Date: 19.09.2020SummaryIntelligent digital signage made easy. To go beyond thepossibilities offered, b-s

Title: B-swiss 3 Digital Signage System 3.6.5 Backdoor Remote Code Execution Advisory ID: ZSL-2020-5590 Type: Local/Remote Impact: System Access, DoS Risk: (5/5) Release Date: 19.09.2020SummaryIntelligent digital signage made easy. To go beyond thepossibilities offered, b

Last month, Microsoft announced that Samsung Galaxy smartphones will be able to stream Android apps to their Windows devices with the company's Your Phone app.Earlier, this streaming feature was only available to the testers in the Release Preview Channel of the Windows Insider program. In a new tweet, Microsoft has now confirmed that the feature is being ro

Iranian Group Found Spying on DissidentsAn Iran linked group, named Rampant Kitten by researchers, has been discovered targeting anti-regime organizations in a campaign that has likely been running since 2014.The primary targets include supporters of Mujahedin-e Khalq (MEK) and the Azerbaijan National Resistance Organization, two prominent resistance movemen

A ransomware attack with fatal consequences is attracting notice and comment from around the world.This is a follow-up to yesterday's story breaking the news of fatal consequences in a German ransomware attack.Reaction is continuing to the story of what Reuters says may be the world's first human fatality directly attributed to a cyberattack. According to th

IPG Photonics, a leading U.S. developer of fiber lasers for cutting, welding, medical use, and laser weaponry has suffered a ransomware attack that is disrupting their operations.Based out of Oxford, Massachusets, IPG Photonics has locations worldwide where they employ over 4,000 people and have a $1.3 billion revenue in 2019.The company's lasers were u

Microsoft has officially announced the Windows 10 October 2020 Update and it'll begin rolling out to consumers in October. This new feature update comes with theme-aware Start Menu, Alt-Tab improvements, Chromium Edge pre-installed and bug fixes.List of Windows 10 versions (Manganese = 20H2)If you do not want to wait until then, Microsoft says you can downlo

Microsoft announced today that a fix for the 'Element not found' error in the Windows Subsystem for Linux 2 would be released shortly in an upcoming servicing release.After users installed the Windows 10 KB4571756 cumulative update released during the August 2020 Patch Tuesday, they were finding they could no longer use the Windows Subsystem for Linux 2

With schools worldwide back in session, ransomware operations are barraging them with cyberattacks that disrupt the start of the school year.Over the past few weeks, we have seen a steady barrage of attacks against K-12 schools, colleges, and universities where ransomware operators target exposed remote desktop servers and network devices' vulnerabilities.To

Introduction============open_basedir security feature can be bypassed when Apache web server runs PHP scripts.Proof of Concept================1. Set open_basedir as a security feature in php.ini file :   open_basedir = /var/www/html:/tmp2. Make a directory with the name of your web server's home directory inside your web server's home directory :