
UK discovers flaw of “national significance” in Huawei tech
According to a UK government report, while analysing Huawei’s tech, security experts discovered a flaw of “national significance”. The Huawei Cyber Security Evaluation Centre (HCSEC) was opened in 2010, tasked

API keys may have been exposed, Twitter fixes the issue
Due to a bug, Twitter API keys may have been exposed, as per the warning that comes from the company officials. The goods news is that the apps, tokens, and

Project OneFuzz, Microsoft’s fuzz-testing security tool collection, goes open source
Project OneFuzz is a testing framework for Azure and a collection of various cyber security testing tools that help to identify bugs. Employing Google’s open-source fuzzing bots, a myriad of

Zero-day vulnerability in popular WordPress plugin leaves countless websites vulnerable
As a result of a zero-day vulnerability in the WordPress plugin, File Manager, countless websites have been left wide open to potential cyber-attacks. In fact, there were millions of attacks

A MAC address is all it takes to open a smart lock
According to researchers, an attacker can open a smart lock sold by major US retailers with nothing more than a MAC address. Over time, smart locks have come into use

Google facing lawsuit for allegedly tracking users despite private browsing mode
On Tuesday, a class action lawsuit was filed against Google for allegedly tracking users’ browsing activity despite them using private browsing mode. The company is also accused of collecting users’

New form of ransomware deploys virtual machines to avoid detection
RagnarLocker, a new form of ransomware, is using an innovative approach to prevent itself from being detected by antivirus programs. The method involves installing Oracle VirtualBox and then running virtual

Data of nine million customers compromised in EasyJet breach
The British airline EasyJet has suffered a breach in which personal data of nine million customers was exposed. This involves travel details and email addresses. In addition, the credit card

Hackers utilising XSS vulnerabilities to attack 900,000 WordPress sites
Hackers are utilising a cross-site scripting vulnerability to inject a redirect into more than 900,000 WordPress sites. WordFence Threat Intelligence Team, the cyber security experts who discovered the breach, noted

Zoom phishing campaigns target Office 365 users
Office 365 users are advised to be on the lookout for Zoom phishing messages sent to their inbox. Inside, there is a fake layoff notification that prompts you to log