CYBERSECURITY

The critical remote code execution flaws have not been exploited in the wild and Microsoft has already issued a patch for them.

From the Star Wars BB-8 toy to smart-tracking watches for children, new cybersecurity research suggests that some products under the Christmas tree this year can easily be hacked.

From Anthem and Chipotle to Equifax and Uber, this year saw several data breaches and leaks.

A Google security researcher tweeted about dropping a powerful iOS 11 tool, which the infosec community reportedly suspects may allow a full iPhone jailbreak.

The then-Uber CEO Travis Kalanic was reoprtedly aware of the breach and the bug bounty payment, which was made in November 2016.

Major banking applications used by HSBC, NatWest and Co-op had potential to let hackers steal usernames and passwords of account holders.

The state-sponsored hackers used Israeli-made spyware to spy targets residing in the US, Canada, UK, Germany, Australia, India and others.

Hackers have reportedly threatened to leak more explicit photos of the wrestler in an upcoming Fappening-like leak.

"If they can't cope with a few naked bums, then frankly that's quite sad," Angus Malcolm, producer and photographer of the Warwick Rowers calendar, said.

The data leak is caused by the website's flawed default security settings, leaving users vulnerable to blackmail and hacking.

As cryptocurrency continues to grow exponentially in popularity and value, this isn't the first time hackers have targeted a digital currency platform

Experts raised serious questions about why a virtual keyboard app would need to collect such detailed and personal information that has nothing to do with its functionality.

Europol, the FBI and other European law enforcement authorities recently took down the massive Andromeda malware botnet that has been active since 2011.

Satori can also exploit a recently discovered zero-day flaw, which the botnet has already used to infect two widely-used home routers.

The malware called "Troubleshooter" infects a targeted device and displays the infamous, nerve-rattling BSOD to unsuspecting users.

Konrads Voits used classic phishing, social engineering techniques and malware to carry out the attack over several months.

The San Francisco-based firm leaked data such as internal builds of numerous clients including NFL, CBS, Amex, NBA, FOX, PGA and more.

Over the past six months, the Andromeda botnet has been detected or blocked on an average of nearly 1.1 million machines a month.

Leakbase took to Twitter to deny any links to dark web market Hansa, which reports claimed was used by the service's new owners for drugs deals.

Cybersecurity experts were alarmed by the relaxed attitude on password security – which nonchalantly shunned password best practices issued by the MP's own government.

The new system lures hackers into an alternate reality where they are fooled into believing the attack is a success, while their methods and tools are analysed.

"The security of TIO's systems and the protection of TIO's customers are our highest priorities," PayPal said.

Move follows warning by cybersecurity chiefs to government departments about Russian software.

UK Government officials are being warned against using Russian anti-virus software Kaspersky following accusations in the US it is being used for espionage.

He is already serving a 27-year sentence for a massive computer hacking and credit card fraud scheme targeting US businesses that resulted in nearly $170m in damages.

US authorities have charged the former NSA employee with removing classified information and taking it home over a five-year period.

The exposed data included information such as customers' names, credit reports, full credit card and bank account numbers, and more.

A report from Immigration and Customs Enforcement has noted the drone-maker could be collecting critical US data, which the Chinese government has access to.

Dmitry Medvedev, the PM of Russia, today (30 November) said that state-sponsored hacking and espionage is normal, criticising the belief that every hack has Kremlin links.