HackDig : Dig high-quality web security articles

QNAP warns of a critical PHP flaw that could lead to remote code execution

Taiwanese company QNAP is addressing a critical PHP vulnerability that could be exploited to achieve remote code execution. Taiwanese vendor QNAP is addressing a critical PHP vulnerability, tracked as CVE-2019-11043 (CVSS score 9.8 out of 10), that could be exploited to achieve remote code execution. In certain configurations of FPM setup it is possibl
Publish At:2022-06-23 08:10 | Read:109 | Comments:0 | Tags:Breaking News Hacking Internet of Things Security hacking ne

EnemyBot malware adds new exploits to target CMS servers and Android devices

The operators of the EnemyBot botnet added exploits for recently disclosed flaws in VMware, F5 BIG-IP, and Android systems. Operators behind the EnemyBot botnet are expanding the list of potential targets adding exploits for recently disclosed critical vulnerabilities in from VMware, F5 BIG-IP, and Android. The botnet was first discovered by Fortinet i
Publish At:2022-05-30 03:11 | Read:505 | Comments:0 | Tags:Breaking News Cyber Crime Internet of Things Malware botnet

IT threat evolution in Q1 2022. Non-mobile statistics

IT threat evolution in Q1 2022 IT threat evolution in Q1 2022. Non-mobile statistics IT threat evolution in Q1 2022. Mobile statistics These statistics are based on detection verdicts of Kaspersky products and services received from users who consented to providing statistical data. Quarterly figures According to Kaspersky Security Network, in Q1 2022: Ka
Publish At:2022-05-27 06:16 | Read:392 | Comments:0 | Tags:Malware reports Apple MacOS Financial malware Internet of Th

What’s wrong with automotive mobile apps?

Introduction The recent story about the 19-year-old hacker who took control of several dozen Tesla cars has become something of a sensation. We already know that there was an issue with a third-party app that enabled access to data from Teslas. This made it possible for the security researcher to lock and unlock the cars, turn the lights on and off, and even
Publish At:2022-05-25 06:16 | Read:367 | Comments:0 | Tags:Publications Connected car Data Protection Internet of Thing

Russia-linked Fronton botnet could run disinformation campaigns

Researchers warn that the Fronton botnet was used by Russia-linked threat actors for coordinated disinformation campaigns. Fronton is a distributed denial-of-service (DDoS) botnet that was used by Russia-linked threat actors for coordinated disinformation campaigns. In March 2020, the collective of hacktivists called “Digital Revolution” claimed to hav
Publish At:2022-05-23 14:29 | Read:394 | Comments:0 | Tags:Breaking News Cyber warfare Hacking Intelligence Internet of

QNAP warns of a new wave of DeadBolt ransomware attacks against its NAS devices

Taiwanese vendor QNAP warned customers of a new wave of DeadBolt ransomware attacks and urges them to install the latest updates. Taiwanese vendor QNAP is asking users to install the latest update on their NAS devices and avoid exposing them on the Internet. The company issued the alert in response to a new wave of DeadBolt ransomware attacks targ
Publish At:2022-05-20 18:27 | Read:235 | Comments:0 | Tags:Breaking News Hacking Internet of Things Malware DeadBolt ra

A DNS flaw impacts a library used by millions of IoT devices

A vulnerability in the domain name system (DNS) component of the uClibc library impacts millions of IoT products. Nozomi Networks warns of a vulnerability, tracked as CVE-2022-05-02, in the domain name system (DNS) component of the uClibc library which is used by a large number of IoT products. The flaw also affects DNS implementation of al
Publish At:2022-05-03 10:56 | Read:815 | Comments:0 | Tags:Breaking News Internet of Things Security DNS DNS hijacking

IoT and Cybersecurity: What’s the Future?

IoT gizmos make our lives easier, but we forget that these doohickeys are IP endpoints that act as mini-radios. They continuously send and receive data via the internet and can be the easiest way for a hacker to access your home network. IoT devices can spy on people, steal data, or bring down vast swathes of the internet, as happened in 2016 when Mir
Publish At:2022-05-02 06:26 | Read:954 | Comments:0 | Tags:Breaking News Internet of Things Security hacking news infor

Synology and QNAP warn of critical Netatalk flaws in some of their products

Synology warns customers that some of its NAS devices are affected by multiple critical Netatalk vulnerabilities. Synology has warned customers that multiple critical Netatalk vulnerabilities affect some of its network-attached storage (NAS) devices. Netatalk is a free, open-source implementation of the Apple Filing Protocol 
Publish At:2022-05-01 10:56 | Read:822 | Comments:0 | Tags:Breaking News Hacking Internet of Things Security hacking ne

DDoS attacks in Q1 2022

News overview The DDoS landscape in Q1 2022 was shaped by the ongoing conflict between Russia and Ukraine: a significant part of all DDoS-related news concerned these countries. In mid-January, the website of Kyiv Mayor Vitali Klitschko was hit by a DDoS attack, and the websites of a number of Ukrainian ministries were defaced. In mid-February, DDoS attacks
Publish At:2022-04-25 07:21 | Read:1132 | Comments:0 | Tags:DDoS reports Botnets Cybercrime DDoS-attacks Internet of Thi

QNAP firmware updates fix Apache HTTP vulnerabilities in its NAS

Taiwanese vendor QNAP warns users to update their NAS Firmware to fix Apache HTTP flaws addressed in the Apache HTTP server last month. Taiwanese vendor QNAP warns users to update their NAS Firmware to address Apache HTTP vulnerabilities, tracked as CVE-2022-22721 and CVE-2022-23943, addressed in the Apache HTTP server in March. “While CVE-2022-2
Publish At:2022-04-22 10:22 | Read:919 | Comments:0 | Tags:Breaking News Hacking Internet of Things Security informatio

QNAP users are recommended to disable UPnP port forwarding on routers

QNAP urges customers to disable Universal Plug and Play (UPnP) port forwarding on their routers to secure their NAS devices. Taiwanese vendor QNAP urges customers to disable Universal Plug and Play (UPnP) port forwarding on their routers to protect their network-attached storage (NAS) devices from attacks. UPnP is an insecure protocol, it uses network UDP
Publish At:2022-04-20 03:04 | Read:538 | Comments:0 | Tags:Internet of Things Security hacking news IT Information Secu

New BotenaGo variant specifically targets Lilin security camera DVR devices

Researchers spotted a new variant of the BotenaGo botnet malware that is considered highly evasive and has a zero-detection rate. The BotenaGo botnet was first spotted in November 2021 by researchers at AT&T, the malicious code leverages thirty-three exploits to target millions of routers and IoT devices. BotenaGo was written in Golang (Go) an
Publish At:2022-04-20 03:04 | Read:762 | Comments:0 | Tags:Breaking News Cyber Crime Hacking Internet of Things Malware

Enemybot, a new DDoS botnet appears in the threat landscape

h2>Enemybot is a DDoS botnet that targeted several routers and web servers by exploiting known vulnerabilities. Researchers from Fortinet discovered a new DDoS botnet, tracked as Enemybot, that has targeted several routers and web servers by exploiting known vulnerabilities. The botnet targets multiple architectures, including arm, bsd, x64, and x86. T
Publish At:2022-04-17 14:18 | Read:792 | Comments:0 | Tags:Breaking News Cyber Crime Internet of Things Malware botnet

The State of Stalkerware in 2021

p> The state of stalkerware in 2021 (PDF) Main findings of 2021 Every year Kaspersky analyzes the use of stalkerware around the world to better understand the threat it poses. We partner with stakeholders across public and private sectors to raise awareness and find solutions to best tackle this important issue. Stalkerware enables people to secretly spy on
Publish At:2022-04-12 06:09 | Read:1200 | Comments:0 | Tags:Publications Cyberbullying Cybercrime Internet of Things Mob

Announce

Share high-quality web security related articles with you:)
Tell me why you support me <3