Chinese researchers accidentally revealed a Windows zero-day flaw

  A critical Windows zero-day flaw known as PrintNightmare was accidentally disclosed by security researchers in China.   Sangfor Technologies, based in Shenzhen, mistakenly published technical data including a proof-of-concept…

Gozi trojan creator arrested by Colombia police

Colombian law enforcement has apprehended an accused cybercriminal who distributed the Gozi Trojan.   Mihai Ionut Paunescu, popularly known as “Virus,” a Romanian national, was one of three main suspects…

Russian hackers had access to Denmark’s central bank for months

Russian state hackers infiltrated Denmark central bank (Danmarks Nationalbank) by planting malware that allowed them to access the network without being noticed for several months.   The hacker division of…

Indian techie rewarded $30,000 for disclosing bug in Microsoft Azure cloud

An Indian girl discovered a huge flaw in the system and was rewarded for her outstanding achievement.   Microsoft has awarded ethical hacker Aditi Singh a $30,000 bounty for discovering…

This Microsoft Edge bug allows hackers to steal your information

Microsoft released updates for its Edge browser last week that fixed two security bugs, one of which is a security bypass vulnerability that may be used to inject and execute…

Mercedes-Benz data breach: Customer details exposed

Mercedes-Benz USA announced a data breach at one of its vendors, exposing sensitive and personal information of customers and potential buyers.   The incident affected fewer than 1,000 customers, according…

Nobelium hackers breached Microsoft support to target its customers

Microsoft has found new attacks carried out by the Russian state-sponsored Nobelium hacking gang, including the exposure of customer subscription information on the PC of a Microsoft support employee.  …

Cisco ASA vulnerability actively exploited after POC exploit released online

Hackers are actively scanning for and exploiting a vulnerability in Cisco ASA devices.   This Cisco ASA vulnerability is a cross-site scripting (XSS) vulnerability that has been tracked as CVE-2020-3580.…