Sly Uduosa

Sylvester Uduosa who goes by the nickname 'Sly' is a Legal Practitioner, Certified Ethical Hacker and Python Programmer.

Microsoft Releases Windows Update to Patch Zero Day Used to Spread Emotet Malware

Leave a Comment / Vulnerabilities /

Multiple security vulnerabilities have been addressed in the recent Microsoft Patch Tuesday updates. This updates deals with but not limited to actively exploited flaw that is being abused to deliver Emotet, TrickBot or Bazaloader malware payloads. This release fixes a total of 67 flaws bringing the total number of bugs patched by the company this […]

Microsoft Releases Windows Update to Patch Zero Day Used to Spread Emotet Malware Read More »

Another Bitcoin Mining Malware Targets QNAP NAS Devices

Leave a Comment / Malware /

QNAP the Network-attached storage (NAS) appliance maker has released a new advisory warning of a cryptocurrency mining malware targeting devices. This is a bitcoin miner which target QNAP NAS. Once a NAS is infected, CPU usage becomes unusually high where a process named ‘[oom_reaper]’ could occupy around 50% of the total CPU usage,” the Taiwanese

Another Bitcoin Mining Malware Targets QNAP NAS Devices Read More »

Malicious Web Domain Used By Chinese Hackers Seized by Microsoft

Leave a Comment / Cyber Attacks /

Microsoft has announced the seizure of 42 domains used by Nickel a China-based cyber espionage group which has its sights on organizations in the U.S. and 28 other countries. Nickel has targeted organizations in both private and public sectors including diplomatic organizations and ministries of foreign affairs in North America, Central America, South America, Europe

Malicious Web Domain Used By Chinese Hackers Seized by Microsoft Read More »

Researchers Discover Payment Data Stealing Malware Hiding in Nginx Process

Leave a Comment / Malware /

A new form of malware hits E-commerce platforms in the U.S., Germany and France this malware is said to be targeting Nginx servers in an attempt to masquerade its presence and slip past detection by security solutions. Sansec Threat Research team have stated in a recent report that “this novel code injects itself into a

Researchers Discover Payment Data Stealing Malware Hiding in Nginx Process Read More »

Researchers Detail Novel Malicious Frameworks Attacking Air-Gapped Networks

Leave a Comment / Malware, Uncategorized /

Air-gapped networks have been discovered to be attacked by four different malicious frameworks bringing the total number of such toolkits to 17 and offering adversaries a pathway to cyber espionage and exfiltrate classified information. Researchers have stated that the frameworks were designed to perform some form of espionage and they all used USB drives as

Researchers Detail Novel Malicious Frameworks Attacking Air-Gapped Networks Read More »

Twitter Reviews Privacy Policy: Bans Non-Consensual Sharing Of Private Media

Leave a Comment / Reviews /

Twitter recently expanded its private information policy to include private media, thus prohibiting the sharing of photos and videos without express permission from the individuals depicted in them and this is aimed at curbing doxxing and harassment. The company’s Safety team said in a tweet “Beginning today, we will not allow the sharing of private

Twitter Reviews Privacy Policy: Bans Non-Consensual Sharing Of Private Media Read More »

Microsoft Windows OS Gets Affected by Unpatched Unauthorized File Read Vulnerability

Leave a Comment / Uncategorized, Vulnerabilities /

The Windows Security Vulnerability (CVE-2021-24084) which allows disclosure and Local Privilege Escalation (LPE) on vulnerable systems has received a follow up patch after the last patch failed to solve the problem. But as observed by Naceri in June 2021, not only could the patch be bypassed to achieve the same objective, the researcher this month

Microsoft Windows OS Gets Affected by Unpatched Unauthorized File Read Vulnerability Read More »

Hackers Attack Panasonic Leaving Possibilities Of A Large Data Breach

Leave a Comment / Data Breach /

Panasonic has disclosed a security breach wherein unauthorized third-party broke into its network and accessed data from its file servers. Panasonic in a short statement published on November 26 had stated that “As the result of an internal investigation, it was determined that some data on a file server had been accessed during the intrusion,”.

Hackers Attack Panasonic Leaving Possibilities Of A Large Data Breach Read More »

GoDaddy Suffers Massive Data Breach of 1 Million WordPress Customers Data

Leave a Comment / Data Breach /

GoDaddy on Monday suffered a data breach which resulted in the unauthorized access of data belonging to 1.2 million active and inactive customers which makes this the third security incident to happen since 2018. It stated in its filing to U.S. Securities and Exchange Commision (SEC) that a malicious third-party gained access to its Managed

GoDaddy Suffers Massive Data Breach of 1 Million WordPress Customers Data Read More »

Hackers Making Attempt At Exploiting New Windows Installer Zero-Day Vulnerability

Leave a Comment / Vulnerabilities /

Hackers are putting in efforts to exploit a recently disclosed privilege escalation vulnerability in order to execute arbitrary codes on fully-patched systems. Tracked as CVE-2021-42379 the elevation of privilege flaw affects Windows Installer software component and was originally resolved as part of Microsoft’s Patch Tuesday updates for November 2021. Researchers have indicated that it was

Hackers Making Attempt At Exploiting New Windows Installer Zero-Day Vulnerability Read More »