Announcing DTrace for Windows Insider

Announcing DTrace for Windows Insider

Microsoft announced on its blog today that the company has added support for DTrace into its Insider builds. The forthcoming Windows 10 feature update will bring support for this debugging and diagnostic tracing tool. The support for DTrace is now possible due to a port of the open-source OpenDTrace project ... Read More

Resecurity reports ‘IRIDUIM’ behind Citrix data breach, 200+ government agencies, oil and gas companies, and technology companies also targeted.

Last week, Citrix, the American cloud computing company, disclosed that it suffered a data breach on its internal network. They were informed of this attack through the FBI. In a statement posted on Citrix’s official blog, the company’s Chief Security Information Officer Stan Black said, “the FBI contacted Citrix to ... Read More

RSA Conference 2019 Highlights: Top 5 cybersecurity products announced

The theme at the ongoing RSA 2019 conference is “Better”. As the official RSA page explains, “This means working hard to find better solutions. Making better connections with peers from around the world. And keeping the digital world safe so everyone can get on with making the real world a ... Read More

Google releases a fix for the zero day vulnerability in its Chrome browser while it was under active attack

Yesterday, Google announced that a patch for Chrome released last week was actually a fix for an active zero-day discovered by its security team. The bug tagged as CVE-2019-5786, was originally discovered by Clement Lecigne of Google’s Threat Analysis Group on Wednesday, February 27th and is currently under active attack ... Read More

Researchers discover Spectre like new speculative flaw, “SPOILER” in Intel CPU’s

Intel CPU’s are reportedly vulnerable to a new attack: “SPOILER: Speculative Load Hazards Boost Rowhammer and Cache Attacks”. The vulnerability takes advantage of speculative execution in the Intel CPU’s, and was discovered by computer scientists at Worcester Polytechnic Institute in Massachusetts, and the University of Lübeck in Germany. According to ... Read More

Drupal releases security advisory for ‘serious’ Remote Code Execution vulnerability

Drupal released a security advisory for a highly critical remote execution (CVE-2019-6340) in its software. Samuel Mortenson, a member of the Drupal Security Team reports that an arbitrary PHP code execution is possible due to a lack of data sanitization in certain field types linked to non-form sources. Drupal issued ... Read More

Google’s home security system, Nest Secure’s had a hidden microphone; Google says it was an “error”

Earlier this month, Google upgraded its home security and alarm system, Nest Secure to work with its Google Assistant. This meant that Nest Secure customers would be able to perform tasks like asking Google about the weather. The device came with a microphone for this purpose, without it being mentioned ... Read More

Firedome’s ‘Endpoint Protection’ solution for improved IoT security

Last month, Firedome Inc announced the launch of the world’s first endpoint cybersecurity solutions portfolio, specifically tailored to home IoT companies and manufacturers. Firedome has developed business models that allow companies to implement top-quality endpoint cybersecurity solutions to close critical security gaps that are a byproduct of the IoT era ... Read More

Three major Australian political parties hacked by ‘sophisticated state actor’ ahead of election

Yesterday, Australia’s Prime Minister Scott Morrison, revealed that “a sophisticated state actor” was behind a cyber attack on the Australian Parliament’s computing network that also affected the network of major political parties. First reported by The Guardian, the attack affected the computer networks of the Liberal Party and the Nationals ... Read More

2.7 million recordings of phone calls made to Swedish 1177 health care service were left publicly accessible online

Yesterday, Computer Sweden revealed that 2.7 million recorded calls to Sweden’s 1177 medical assistance phone service were left without password protection or encryption security, on an open web server. The server was operated by MediCall, an outsourced call-center provider based in Thailand, but owned by Swedish nationals. MediCall is a ... Read More