Google’s Higher-Value Chrome Patches Escape Vulnerabilities

Google has fixed three more significant bugs in Chrome that can be exploited to breach the sandbox of the web browser and given a total of $50.000 to the researcher. A Chrome 77 update released by Google in September patched the company’s Man Yue Mo of the Semmle Security Research team’s two sandbox escape vulnerabilities.

[ Read More ]

Researchers Warn Against the New Cache-Poisoned Method of Attack

A team of German security researchers has developed a new class of Web cache toxic attacks that could make victim services unattainable. In addition to providing security against denial-of-service attacks (DoS), the cache was designed to lower the amount of network traffic by reusing HTTP answers and helping applications to scale. A new attack involving

[ Read More ]

Cyber Attack Causes Severe Disruption in Pilz, Germany

The manufacturer of automation tools, Pilz, suffered a cyber attack that took down almost all its infrastructure. Pilz is a leading provider of automation technology in Ostfildern, Germany. This offers computer and process control and security services, consultancy, research and education and has industries around the world. The business was struck by all its server-based

[ Read More ]

Microsoft SQL New Winnti Backdoor Targets

A recently discovered workaround for Chinese-linked Winnti hackers targeting Microsoft SQL (MSSQL) is extremely stealthy, ESET security scientists say. The Group has been involved since at least 2009, targeting cyber-spionage sectors such as aviation, entertainment, pharmaceuticals, electronics, telecommunications and software development. ESET claims that the newly developed malware helps the attacker to retain a very

[ Read More ]

Current Gustuff Mobile Banking Version Trojan Emerges

Gustuff’s recent Android banking campaigns have included an updated malware version, reports Cisco Talos security researchers. Earlier this year, shortly after the software was described, its operators switched delivery hosts, then moved to remove the C&C network, but continued to control the software via a SMS-based secondary management system. The Gustuff now has a smaller

[ Read More ]

Functionalities of a Content Delivery Network (CDN)

The Internet infrastructure won’t be complete without content delivery networks (CDNs). However, not many users fully understand what they are and what happens behind the scenes. Often, you may hear people brag about using a CDN or give suggestions on using it without really having any in-depth idea about it. A content delivery network, like

[ Read More ]

Giant Ingredion Ingredients Attack Malware

Westchester, Ingredion Incorporated, an Illinois-based ingredient corporation, announced this week that criminal activity has recently been found on certain data center servers. Just a few specifics about the incident have been given, but a piece of malware seems to have compromised some systems of the business. Ingredion says there is no evidence of any compromise

[ Read More ]