Stay informed with Security World Trend Now! Discover the latest security trends, technologies, and strategies to protect your data, networks, and digital identity. Get expert insights and practical advice for ensuring your online safety. Explore now!
The Evolving Tactics of Cybercriminal Groups Behind Magecart Attacks An Unseen Technique to Hide Credit Card Skimming Code Recently, the notorious cybercriminal groups responsible for the Magecart payment-card theft campaigns have employed a new technique to conceal their credit card skimming code. This technique has allowed them to evade detection for several weeks while infecting…
New Type of Certificate Abuse Used to Spread Info-Stealing Malware Introduction In recent months, cyber attackers have been employing a new tactic known as certificate abuse to spread info-stealing malware, with a particular focus on stealing credentials and sensitive data. This campaign utilizes search engine optimization (SEO) poisoning to manipulate search results and redirect users…
Mac Security Survey 2023 Reveals Insights into Cybersecurity Myths and Online Behavior Inconsistencies of Mac Users Introduction In a rapidly digitizing world, cybersecurity has become paramount for individuals and organizations alike. Mac users, often touted for their devices’ robust security features, are not exempt from the threats posed by cybercriminals. A recent Mac Security Survey…
High-Severity Vulnerability Patched in OpenNMS: A Cause for Concern Introduction OpenNMS, a widely used open source network monitoring software, recently faced a high-severity vulnerability. The XML external entity (XXE) injection vulnerability allowed attackers to exfiltrate data, trigger denial-of-service conditions, and send arbitrary HTTP requests to internal and external services. This vulnerability affected both the community-supported…
Vulnerabilities in points.com Exposed Customer Data Theft and Rewards Program Hacking Introduction Multiple vulnerabilities in the popular airline and hotel rewards platform, points.com, have been identified by security researchers. These vulnerabilities could have allowed attackers to access users’ personal information, transfer points between accounts, and gain unauthorized administrative access. The security team at points.com has…
Securing Sensitive Accounts: Learn PAM Security Strategies The Importance of PAM Security In today’s digital landscape, the security of our online accounts is of paramount importance. With cyber threats becoming increasingly sophisticated, it is essential that individuals and organizations take proactive measures to safeguard sensitive information. Privileged Access Management (PAM) security strategies play a vital…
New CPU Security Loophole: Analysis of Energy Consumption Allows Data Theft Introduction In a significant breakthrough, researchers at Graz University of Technology and the Helmholtz Center for Information Security have uncovered a new security vulnerability that affects all common main processors (CPUs) in computers. This vulnerability, known as “Collide+Power,” exploits the energy consumption patterns of…
CherryBlos and FakeTrade: New Malware Campaigns Targeting Android Users for Cryptocurrency Theft and Financial Scams Introduction In the realm of cybersecurity, Android users have become the latest target for malware campaigns seeking to steal cryptocurrency and perpetrate fraudulent financial activities. Two related malware campaigns, known as CherryBlos and FakeTrade, have recently come to the attention…
Guest Accounts in Azure AD: Unintended Consequences and Data Security The Potential for Oversharing Access to Sensitive Resources Guest accounts in Azure Active Directory (AAD) have long been seen as a means of enabling collaboration with external third parties, while minimizing exposure to sensitive corporate resources. However, recent research by Michael Bargury, CTO of Zenity,…
Millions at Risk: Critical Vulnerabilities Found in QuickBlox‘s API QuickBlox, a widely-used chat and video calling platform across various industries, has been discovered to have critical vulnerabilities that could potentially expose the personal data of millions of users. In an extensive investigation conducted by Team 82 and Check Point Research, several flaws were found in…