Breaking News

•••  All important news related to new attacks and see the solutions we can offer you  •••

12/08/2020

CSP Bypass Vulnerability in Google Chrome Discovered

Cyber Defense

This vulnerability in Chrome browser could have allowed attackers to fully bypass CSP rules since Chrome 73 (March 2019), many of the biggest websites in the world are exposed to this vulnerability.

This vulnerability affecting Chromium based browsers - Chrome, Opera, Edge - on Windows, Mac and Android that allowed attackers to fully bypass CSP rules on Chrome versions 73 (March 2019) through 83 (July 2020).

To better understand the magnitude of this vulnerability - the potentially impacted users are in the billions, with Chrome having over two billion users, and more than 65% of the browser market on one hand, and some of the most popular sites on the web being vulnerable to this CVE on the other hand.
Vulnerable sites included Facebook, WellsFargo, Gmail , Zoom, Tiktok, Instagram, WhatsApp, Investopedia, ESPN, Roblox, Indeed, Blogger, Quora and more.

 

Contact us for a test with Cymulate Breach and Attack Simulation
10/08/2020

New infection chain of njRAT variant

Cyber Defense

New infection chain of njRAT variant

njRAT is a remote access Trojan providing remote control functions for attackers.
360 Total Security researchers have observed a new variant of the malware that has an updated infection chain, additional obfuscation, and anti-analysis techniques.

Test now with Cymulate Breach and Attack Simulation whether you are vulnerable

Contact us
05/08/2020

IMMEDIATE THREAT: Chinese Remote Access Trojan: TAIDOOR

Cyber Defense

Chinese Remote Access Trojan: TAIDOOR
TAIDOOR is a Chinese RAT.

FBI has high confidence that Chinese government actors are using malware variants in conjunction with proxy servers to maintain a presence on victim networks and to further network exploitation.

Test now with Cymulate Breach and Attack Simulation whether you are vulnerable

Contact us
Load more