Distributed denial of service (DDoS) attacks have been heavily affecting businesses for the last 20 years. They have become one of the most powerful instruments in the hands of malicious actors striving to bring down targeted resources by overloading them with too much traffic. The malicious or unusual traffic may include requests for connections, incoming
Adobe Flaw Vulnerability Hovers Widows Users Windows Users were prevented from a critical Adobe flaw from which hackers benefit. In their Tuesday’s notification, Adobe mentioned their vulnerability (CVE-2021-21017)in “limited attacks”. Such an error occurs as a result of memory overwhelming with dynamic variables. If a buffer-overflow happens, it leads to the incorrect behavior of a
Grindr fined $10m for ‘grave’ GDPR violations by Norwegian privacy watchdog Grindr, the popular LGBT dating app, has been fined €10 million ($12 million) for GDPR violations by Norway’s data privacy regulator because sensitive user data was apparently shared with third parties without valid consent. The Norwegian Data Protection Authority (Datatilsynet) centres on the fact
Critical zero-day RCE in Microsoft Office 365 A remote code execution (RCE) vulnerability in Microsoft Exchange Online remains unresolved after security researchers bypassed two patches for successive exploits. The zero-day flaw impacts multiple Software as a Service (SaaS) providers and on-premise installations of Exchange Server. Microsoft assigned the initial flaw (CVE-2020-16875) as a high-risk classification
The new side-channel attack can recover encryption keys from Google Titan security keys The Google Titan and YubiKey hardware vulnerability allow threat actors to recover the primary encryption key used by the hardware security key to generate cryptographic tokens for two-factor authentication (2FA) operations. Once obtained, the two security researchers say the encryption key, an
Decentralized finance (DeFi) was created back in 2015, when the pioneer application, MakerDAO, allowed any crypto holders to take out loans in the DAI stablecoin. Years of steady growth followed and a palpable buzz around DeFi started to emerge in the crypto community, leading to the breakout year that was 2020. According to DeFi Pulse,
The Ministry of Digital Transformation of Ukraine, the public association “Ukrainian Venture Capital and Private Equity Association” and the company Hacken have signed the memorandum providing for the cooperation of the parties in the field of research of the market for virtual assets in Ukraine. The research of the market for virtual assets in Ukraine
DHS warns against using Chinese hardware and digital services The DHS (US Department of Homeland Security) has published a “business advisory” warning US companies against using hardware equipment and digital services created or linked to Chinese companies. These Chinese products could contain backdoors, bug doors, or hidden data collection mechanisms that could be used by
The NSA Warns That Russia Is Attacking Remote Work Platforms VMWare vulnerability has prompted a warning that companies and government agencies need to patch as soon as possible. 2020 was not an easy year, an unprecedented portion of the world’s office workers was forced to work from home as a result of the COVID-19 pandemic.
