Author name: ravernzord

Security researchers from Forcepoint (US security firm) have discovered a new strain of malware called UDPoS that relies on a different method to steal credit/debit card data from point-of-sale (PoS) systems. Read more

According to fail0verflow, there’s a defect in the boot ROM in Nvidia’s Tegra X1 system-on-a-chip. when your console begins, it reads and performs an execution a piece of code stored in a read-only memory(ROM) This code includes instructions about the booting process. Read more

Victims of Cryakl ransomware are now able to get their files back without paying a ransom to cybercriminals, after the decryption key was released for free as part of the No More Ransom initiative. Read more

For a brief moment Thursday morning, a section of iOS 9’s source code was widely available on GitHub. A few hours later, Apple issued several DMCA notices and had the repositories removed from GitHub. As most of us know, however, once something is published on the internet, it’s nearly impossible to take it back. Read

Updated Infosec bods say they have uncovered what’s thought to be the first case of a major industrial control system network infected with cryptocurrency-mining malware. Read more

Detailed personal information from thousands of insurance customers in Maryland–as well as login credentials for a massive national insurance claims database–was exposed due to an an open port on a NAS server. Read more

Zerodium is offering $45,000 to hackers willing to privately report zero-day vulnerabilities in the Linux operating system. On Thursday, the private exploit acquisition program announced the new addition to its bounties on Twitter. Until 31 March, Zerodium is willing to offer increased payouts of up to $45,000 for local privilege escalation (LPE) exploits. Read more

Cisco’s Adaptive Security Appliance (ASA) flaw with a CVSS score of 10 is now being exploited by attacks. Cisco has updated its advisory for vulnerability CVE-2018-0101 for the second time since warning customers of the critical flaw on January 29. The bug affects its ASA and Firepower security appliances. Read more

Microsoft has added Windows 10 Pro support for palm-vein authentication, as part of its Windows Hello facial and fingerprint-recognition system. The palm-vein authentication comes by way of a collaboration with Fujitsu, a Windows 10 enterprise hardware partner that is in the process of deploying its own palm-vein biometric technology to 80,000 employees in Japan. Read

The number of cyber criminal activities is on a constant rise. Nobody is safe, from Twitter accounts to hospital computers, they are all being hacked and there isn’t much one seems to be able to do to prevent such hacks. T-Mobile was recently in the news for a similar occurrence when hackers breached its system