AirDroid is a free app rated 5 stars in the Android Market/ Play Store that ‘lets you wirelessly manage your Android from your favorite browser’. AirDroid’s cloud management app for Android phones has a browser version that was found to have a cross-site scripting vulnerability (XSS vulnerability). The vulnerability was spotted yesterday by US-CERT.
According to US-CERT, if a hacker gained access to a phone controlled by AirDroid, he ...

The Cyber espionage retargets Israel to “wipe Israel off the map of the Internet,” blemishing over 20,000 Facebook Accounts and 2000 websites. Last Sunday, the Anonymous hacking group launched “Operation Israel” on Israeli Government websites, servers and Internet users. Several organizations like schools, banks, the Israel Securities Authority, the Haifa Sewage Treatment Plant, a website for children affected with cancer, the Central Bureau of Statistics, and the National Insurance Institute ...

Wikipedia estimates that WordPress powers over 60million websites worldwide. Imagine having your blog hacked and its data compromised; it’s pretty heart-wrenching, isn’t it? If spammers hack the WordPress logins of websites, they can upload malware or malicious links to harm users. This will ruin the reputation, brand and security of individuals or firms using WordPress.
While strong passwords and using multiple password for different accounts offers some safety, the risk ...

The video, with the help of a sample exploitation scenario, explains what SQL injection vulnerability is and how it turns into a major threat to Web Application security. Watch to see how a hacker may exploit the SQL injection vulnerability of a website and turn it into potential threat for internet users.

How much are you planning to pay someone who claims to be from ‘law enforcement agency’ and has blocked your system and fined (tricked) you for visiting some remote sites? Well, more often than not you end up parting with your dear money on the top of getting your system infected with a ransomware (which probably isn’t because you visited the site)!

Ransomware is a malware that infects the system and ...

The DoS (Denial of Service) attack series has recently attacked a group of Apple developers and the iOS jailbreak community. Last week attackers flooded the iOS developers’ mobile devices with dozens of messages, sent one after the other.
One of the victims and member and developer of the jailbreak community, iH8sn0w said that attackers used rapid-fire texts through iMessage app of Apple using simple AppleScript and via messaging on OS X. ...

Summer vacation is here and people are busy planning their vacation. The holiday season ushers in a variety of theme-based attacks by cyber criminals targeted exclusively at the holiday makers.

A most common way of spreading malware is by sending out e-cards to people, which are sure to get the users’ attention. The e-cards, instead of ‘cheer’ and ‘happy journey’ messages contain malware that can even steal information from the ...

Java is increasingly considered as a potential security risk with ever so many high profile attacks targeted at its vulnerabilities. The patched versions of Java keep on coming and unfortunately, so do the vulnerabilities in each of the new versions! And the interesting fact is that users just don’t care to update their Java plug-ins.

From the Websense report, the Java Runtime Environment has reached version 1.7.17 [the latest is Java 7 ...

Security firm SophosLabs has spotted the malware called DarkSeoul (Mal/EncPk-ACE) attacking major banks (Jeju, Shinhan and Nonghyup), insurance companies and TV stations (MBC, KBS, and YTN) of South Korea last week. However, the security experts downplay the attack as unsophisticated and requiring ‘little’ expertise, turning down the possibility that it may be a ‘cyberwarfare’ from North Korea.

Graham Cluley, security analysts at Sophos wrote, “What’s curious is that the malware is not ...

Trojan ‘vSkimmer’ attacks Point-Of-Sale systems

McAfee’s security researchers found a Trojan for sale in the underground Internet market that steals credit card information from Windows machines for credit card payments and financial transaction frauds. The malware called vSkimmer detects the card readers and sends information from the Windows systems attached to these readers to a control server. This malware is successor to Dexter and is definitely a better POS malware.

Once vSkimmer is ...