Robert Abel

Content Coordinator/Reporter, SC Media US
Monero miners combines RADMIN and MIMKATZ to spread and infect

Monero miners combines RADMIN and MIMKATZ to spread and infect

A Monero miner-malware is leveraging RADMIN and MIMKATZ for propagation while exploiting critical vulnerabilities to spread in a worm-like behaviour to covertly target specific systems in industries in China, Taiwan, Italy, and Hong Kong.

Reitspoof mysterious multistage malware makes its rounds

Reitspoof mysterious multistage malware makes its rounds

A multi-staged malware dropping multiple payloads is infecting its victims without a clear purpose and has shown a significant uptick in activity since January 2019.

Google Play announces 2019 malicious app crackdown

Google Play announces 2019 malicious app crackdown

Google Play announced it will continue its crackdown on malicious apps into 2019 by focusing more on user privacy, developer integrity and harmful app contents and behaviour.

Mozilla Foundation issues Firefox updates

Mozilla Foundation issues Firefox updates

Mozilla Foundation has issued security advisories for several vulnerabilities in Firefox ESR 60.5.1 and Firefox 65.0.1.

Xiaomi electric scooter vulnerability allows remote hacks

Xiaomi electric scooter vulnerability allows remote hacks

The Xiaomi M365, a popular electric scooter used by several ride-share companies such as BIRD as well as for personal ownership, is vulnerable to remote hacking due to improper password validation.

Cisco Network Assurance Engine (NAE) contains password vulnerability

Cisco Network Assurance Engine (NAE) contains password vulnerability

A default password vulnerability in Network Assurance Engine (NAE) could allow an unauthenticated, local attacker to gain unauthorised access or cause a Denial of Service (DoS) condition on the server.

PoC hides malware in Intel SGX enclave

PoC hides malware in Intel SGX enclave

Researchers developed a proof of concept attack which allows them to hide malware in Intel's Software Guard eXtensions (SGX).

WordPress plugin Simple Social Buttons flaw allows complete site takeover

WordPress plugin Simple Social Buttons flaw allows complete site takeover

A critical vulnerability in the WordPress plugin Simple Social Buttons allows an attacker to completely takeover a website.

77 updates in Microsoft patch Tuesday

77 updates in Microsoft patch Tuesday

Microsoft released 77 updates, 20 of which were classified as critical, in this months patch Tuesday announcement.

Chip and PIN protections may fall short as future threats materialise

Chip and PIN protections may fall short as future threats materialise

The protections that chip and PIN payment card solutions offer may fall short as cyber-criminals begin installing command-and-control malware on infected EMV device readers, a new report warns.