Author: Stephanie Adlam

I write about how to make your Internet browsing comfortable and safe. The modern digital world is worth being a part of, and I want to show you how to do it properly.

Virus Alert (05261) Scam

Scammers find new ways to push people into tech support scams

“Virus Alert (05261)” is a scam pop-up message you can see on a website that looks like a Microsoft page, but with a strange URL. It tries convincing people about their system being in trouble. As proof of it, they show a banner saying about outdated apps, incorrect privacy settings, and more critical problems. The… Continue reading Virus Alert (05261) Scam

Altisik Service Virus

Here is a detailed analysis of the Altisik Service

Altisik Service is a malicious coin miner that usually installs and runs on the target system without the explicit consent of the PC owner. It disguises itself as a Windows service, which makes it difficult to stop or remove. Let’s have a closer look at how this malware operates and how to delete it from… Continue reading Altisik Service Virus

Critical RCE Vulnerability in GiveWP WordPress Plugin

Another vulnerability with max CVSS was found and fixed.

A critical vulnerability has been discovered in the GiveWP WordPress plugin that leaves thousands of websites exposed. The vulnerability is of a high severity and allows for controlling the entire affected website without any authentication. A fix is currently available to address this vulnerability, so users should update as soon as possible. Critical RCE vulnerability… Continue reading Critical RCE Vulnerability in GiveWP WordPress Plugin

Movidown Unwanted Application

A detailed analysis of the Movidown PUA shows that it is more than just an unwanted application

Movidown is an Unwanted Application that initially mimics a utility for controlling fan speed. However, beneath this shell, it has the capabilities of a dropper malware, which it right away uses to deploy browser hijackers. This functionality, together with the deep access to the system, creates potential risks for much more severe malware to get… Continue reading Movidown Unwanted Application

Google Pixel Devices Shipped with Vulnerable App

Some Google Pixel devices from showroom has vulnerable app

Recent research has uncovered a vulnerable app in the Android package on a whole bunch of Google Pixel smartphones. Devices shipped worldwide since September 2017 may be susceptible to malware deployment by malicious actors. This issue is linked to a pre-installed app called “Showcase.apk”, that is particularly used on showroom devices. Google Pixel Phones Contain… Continue reading Google Pixel Devices Shipped with Vulnerable App

Critical Windows TCP/IP Vulnerability Uncovered, Patch Now

A critical vulnerability in the Windows TCP/IP stack allows unauthenticated remote code execution (RCE)

A critical vulnerability has been discovered in the Windows TCP/IP stack that allows unauthenticated remote code execution (RCE). This vulnerability can be exploited remotely by sending specially crafted IPv6 packets to the target system. Successful exploitation could allow an attacker to execute arbitrary code on the target system and affects all supported versions of Windows… Continue reading Critical Windows TCP/IP Vulnerability Uncovered, Patch Now

AMD Ryzen CPUs Slowed Down by Windows 11 Bug

AMD uncovered a bug in Windows 11 that decreases performance of Ryzen CPUs

Recent release of the AMD Ryzen 9000 CPU lineup created quite a fuss around the new processors having lackluster performance uplifts from previous generations. One particular area where the results were that bad is gaming: instead of expected 15-20% improvements, gamers are getting mere 3-5% gains. AMD found an explanation: it turns out that privileges… Continue reading AMD Ryzen CPUs Slowed Down by Windows 11 Bug

EDRKillShifter Malware: New EDR Killer Tool in Ransomware Actors’ Toolkit

Researchers analysed a new anti-EDR toolkit used by ransomware actors

Recent research uncovers a new anti-EDR utility in the arsenal of malware actors, nicknamed EDRKillShifter. Its main known user to the moment is the RansomHub ransomware gang. Though, it is likely for other threat actors to adopt this tool, as similar utilities have immense popularity among cybercriminals nowadays. EDRKillShifter Used in Ransomware Attacks Research team… Continue reading EDRKillShifter Malware: New EDR Killer Tool in Ransomware Actors’ Toolkit

Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now

August 2024 update from SAP fixes huge amount of vulnerabilities, including two severe ones

SAP, the developer of business management software, released a huge security update that fixes numerous vulnerabilities in their software. Among them are severe authentication bypass and server-side request forgery vulnerabilities rated at CVSS 9.8 and 9.1 respectively. The company urges installing updates as soon as possible, as the mentioned flaws affect a substantial number of… Continue reading Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now

Can You Get a Virus By Visiting a Porn Site?

Is it possible to get malware from visiting a porn website? Here is our answer

Rumors and jokes about malware on porn websites have been circulating ever since such sites became popular among folks. It is a good call to a certain degree, as there were direct malware dangers in the past, and some are still present nowadays. Still, with the change of the overall malware landscape, these threats have… Continue reading Can You Get a Virus By Visiting a Porn Site?