GBHackers On Security

A Bug With Firefox for Android Let Attackers Hijack without user Interaction on the Same WiFi ...

Mon, 21 Sep 2020 05:03:30 GMT

A bug with the SSDP engine in Firefox for Android would allow attackers to exploit targeted Android phones that are connected to the same Wi-Fi network as the attacker and have Firefox installed. SSDP stands for Simple Service Discovery Protocol, it is a text-based protocol that sends out discovery messages to the devices on the […]

The post A Bug With Firefox for Android Let Attackers Hijack without user Interaction on the Same WiFi Network appeared first on GBHackers On Security.

Shodan and Censys: Finding Hidden Parts On the Internet With Special Search Engines

Sat, 19 Sep 2020 11:26:00 GMT

Our digital lives connect massive things with the Internet. Starting with Smartphones, Wi-Fi routers, Surveillance Camera, Smart TV, SCADA networks and leading to traffic light management systems are exposed to the internet. In 2016 impact of Mirai botnet attack, which was orchestrated as a distributed denial-of-service attack affects 300,000 vulnerable Internet of Things devices. IoT […]

The post Shodan and Censys: Finding Hidden Parts On the Internet With Special Search Engines appeared first on GBHackers On Security.

Google Removed Paytm form Play Store on Violation of Gambling Policy

Fri, 18 Sep 2020 10:11:51 GMT

Google has removed Paytm from the Google Play store along with Paytm First Games app for violating its gambling policies. The Paytm iOS app is available to download from Apple App Store. The app was removed due to the recent addition of the fantasy cricket tournament which violates the Google play policies. Paytm is India’s […]

The post Google Removed Paytm form Play Store on Violation of Gambling Policy appeared first on GBHackers On Security.

Apple High Severity Bug Allows Attackers to Execute Arbitrary Code on iPhone, iPad, iPod

Fri, 18 Sep 2020 03:53:52 GMT

Apple release updates for iOS and iPadOS operating systems that fixes several security iPhone, iPad, and iPod devices. With the security update, Apple addressed 11 bugs in various products and components such as AppleAVD, Apple Keyboard, WebKit, and Siri. Among the fixed vulnerabilities the high severity one is CVE-2020-9992, which allows attackers to execute arbitrary […]

The post Apple High Severity Bug Allows Attackers to Execute Arbitrary Code on iPhone, iPad, iPod appeared first on GBHackers On Security.

Hackers Would Bypass Multi-Factor Authentication to Gain Full Access to Microsoft 365 Services

Thu, 17 Sep 2020 07:47:30 GMT

Security researchers from Proofpoint discovered critical security vulnerabilities with multi-factor authentication (MFA) implementations in the cloud environment where the WS-Trust is enabled. WS-Trust is a specification and OASIS standard designed to manage with the issuing, renewing, and validating of security tokens. Flaw with MFA The vulnerabilities would allow attackers to bypass the MFA and access […]

The post Hackers Would Bypass Multi-Factor Authentication to Gain Full Access to Microsoft 365 Services appeared first on GBHackers On Security.

Wireshark 3.3.0 Released With New Features, Protocols & Capture File Support

Thu, 17 Sep 2020 05:28:03 GMT

Wireshark 3.3.0 was released with a fix for vulnerabilities that results in the BACapp dissector crash and fix for other bugs. Wireshark is known as the world’s most popular network protocol analyzer. It is used for troubleshooting, analysis, development, and education. It is used by network administrators to troubleshoot network and by the security, analyst […]

The post Wireshark 3.3.0 Released With New Features, Protocols & Capture File Support appeared first on GBHackers On Security.

CISA warns that Chinese Hackers Using Open-source Exploitation Tools to Target U.S. Agencies

Tue, 15 Sep 2020 11:52:06 GMT

CISA warns that Chinese nation-state actors using publicly available information sources and common, well-known tactics, techniques, and procedures (TTPs) to target U.S. Government agencies. These threat actors varying degrees of skills using open-source information to plan and execute cyber operations. “CISA has observed Chinese MSS-affiliated cyber threat actors operating from the People’s Republic of China […]

The post CISA warns that Chinese Hackers Using Open-source Exploitation Tools to Target U.S. Agencies appeared first on GBHackers On Security.

Thousands of Magento Stores Hacked in Largest-ever Skimming Campaign

Tue, 15 Sep 2020 06:00:00 GMT

Hackers compromised nearly two thousand Magento stores in the largest ever web skimming campaign that targets Magento stores. The previous record of several stores hacked in a day is 962, that attack happened in July last year. The increase in a number of attacks indicates that attackers have automated the hacking operations, to compromise as […]

The post Thousands of Magento Stores Hacked in Largest-ever Skimming Campaign appeared first on GBHackers On Security.

ATM Penetration Testing – Advanced Testing Methods to Find The Vulnerabilities

Mon, 14 Sep 2020 00:14:00 GMT

ATM Penetration testing, Hackers have found different approaches to hack into the ATM machines. Programmers are not restricting themselves to physical assaults, for example, money/card catching, skimming, and so forth they are investigating better approaches to hack ATM programming. An ATM is a machine that empowers the clients to perform keeping money exchange without setting […]

The post ATM Penetration Testing – Advanced Testing Methods to Find The Vulnerabilities appeared first on GBHackers On Security.

World’s Largest Data Center provider Hit by Netwalker Ransomware

Sun, 13 Sep 2020 15:03:38 GMT

Recently, the world’s largest data center provider Equinix hit by Netwalker Ransomware, and currently, Equinix is investigating the whole matter. Till now, they came to know that they had a ransomware attack on their internal systems, but the central core of its customer-facing services endured to be unaffected. Equinix detected the ransomware attack at 12:45 […]

The post World’s Largest Data Center provider Hit by Netwalker Ransomware appeared first on GBHackers On Security.