Catalin Cimpanu
Author Bio
Catalin Cimpanu was the Security News Editor for Bleeping Computer from November 2016 to August 2018.
-
MagentoCore Malware Found on 7,339 Magento Stores
A Dutch security researcher has lifted the veil on a massive website hacking campaign that has infected 7,339 Magento stores with a script that collects payment card data from people shopping on the sites.
- August 30, 2018
- 05:30 PM
-
0
-
Temporary Patch Available for Recent Windows Task Scheduler ALPC Zero-Day
Earlier this week a security researcher released exploit code for a Windows zero-day affecting the Task Scheduler ALPC interface. Today, cyber-security firm Acros Security published a temporary fix (called a micropatch) that prevents exploitation of that particular zero-day.
- August 30, 2018
- 10:42 AM
-
1
-
Android Phones Expose Sensitive Data via Internal System Broadcasts
Internal system broadcasts happening inside the Android OS expose sensitive user and device details that apps installed on the phone can access without the user's knowledge or permission.
- August 30, 2018
- 06:18 AM
-
1
-
Researchers Detail Two New Attacks on TPM Chips
Some PC owners may need to apply motherboard firmware updates in the near future to address two attacks on TPM chips detailed earlier this month by four researchers from the National Security Research Institute of South Korea.
- August 29, 2018
- 02:03 PM
-
1
-
Stingray Devices May Interfere With 911 Emergency Calls
A popular vendor of cell-site simulators (also known as IMSI catchers or stingray devices) has told a US Senator that its equipment may interfere with 911 emergency calls.
- August 29, 2018
- 08:22 AM
-
1
-
Critical Flaw Fixed in Packagist, PHP's Largest Package Repository
The maintainers of Packagist, the PHP ecosystem's largest package repository, have fixed a critical vulnerability on their official website that could have allowed an attacker to hijack their service.
- August 29, 2018
- 05:07 AM
-
0
-
Data of 130 Million Chinese Hotel Chain Guests Sold on Dark Web Forum
A hacker is selling the personal details of over 130 million hotel guests for 8 Bitcoin ($56,000) on a Chinese Dark Web forum.
- August 28, 2018
- 07:00 PM
-
0
-
Instagram Expands 2FA Support Following Recent Wave of Account Hacks
Instagram announced today plans to improve its two-factor authentication (2FA) mechanism by adding support for third-party authenticator apps.
- August 28, 2018
- 02:49 PM
-
0
-
Active Attacks Detected Using Apache Struts Vulnerability CVE-2018-11776
After last week a security researcher revealed a vulnerability in Apache Struts, a piece of very popular enterprise software, active exploitation attempts have started this week.
- August 28, 2018
- 12:39 PM
-
1
-
US Government Takes Steps to Bolster CVE Program
The US government is taking steps to fix the Common Vulnerabilities and Exposures (CVE) system that's been plagued by various problems in recent years.
- August 28, 2018
- 09:18 AM
-
1
-
Exploit Published for Unpatched Flaw in Windows Task Scheduler
A security researcher has published on Twitter details about a vulnerability in the Windows OS. The vulnerability is a "local privilege escalation" issue that allows an attacker to elevate the access of malicious code from a limited USER role to an all-access SYSTEM account.
- August 28, 2018
- 04:57 AM
-
2
-
Booz Allen Hamilton Researchers Detail New RtPOS Point-of-Sale Malware
Security researchers from Booz Allen Hamilton have spotted a previously unseen and undocumented malware strain that targets point-of-sale (POS) systems.
- August 28, 2018
- 12:15 AM
-
0
-
Nearly 1,200 US News Sites Still Not Available for EU Users After GDPR
More than three months after the European Union introduced the new General Data Protection Regulation (GDPR), nearly 1,200 US-based news sites remain inaccessible to EU users.
- August 27, 2018
- 01:35 PM
-
1
-
Andromeda Botnet Operator Released With a Slap on the Wrist
Sergey Yarets, also known as Ar3s, a hacker arrested last year for running an instance of the Andromeda botnet, was released by Belarusian authorities with nothing more than a slap on the wrist.
- August 27, 2018
- 10:03 AM
-
0
-
Atlas Quantum Cryptocurrency Investment Platform Suffers Data Breach
Cryptocurrency investment platform Atlas Quantum announced on Sunday a data breach that exposed the personal details of all of its users.
- August 27, 2018
- 04:11 AM
-
0
