“Virus Alert (05261)” is a scam pop-up message you can see on a website that looks like a Microsoft page, but with a strange URL. It tries convincing people about their system being in trouble. As proof of it, they show a banner saying about outdated apps, incorrect privacy settings, and more critical problems. The… Continue reading Virus Alert (05261) Scam
Author: Stephanie Adlam
I write about how to make your Internet browsing comfortable and safe. The modern digital world is worth being a part of, and I want to show you how to do it properly.
Altisik Service Virus
Altisik Service is a malicious coin miner that usually installs and runs on the target system without the explicit consent of the PC owner. It disguises itself as a Windows service, which makes it difficult to stop or remove. Let’s have a closer look at how this malware operates and how to delete it from… Continue reading Altisik Service Virus
Critical RCE Vulnerability in GiveWP WordPress Plugin
A critical vulnerability has been discovered in the GiveWP WordPress plugin that leaves thousands of websites exposed. The vulnerability is of a high severity and allows for controlling the entire affected website without any authentication. A fix is currently available to address this vulnerability, so users should update as soon as possible. Critical RCE vulnerability… Continue reading Critical RCE Vulnerability in GiveWP WordPress Plugin
Movidown Unwanted Application
Movidown is an Unwanted Application that initially mimics a utility for controlling fan speed. However, beneath this shell, it has the capabilities of a dropper malware, which it right away uses to deploy browser hijackers. This functionality, together with the deep access to the system, creates potential risks for much more severe malware to get… Continue reading Movidown Unwanted Application
Google Pixel Devices Shipped with Vulnerable App
Recent research has uncovered a vulnerable app in the Android package on a whole bunch of Google Pixel smartphones. Devices shipped worldwide since September 2017 may be susceptible to malware deployment by malicious actors. This issue is linked to a pre-installed app called “Showcase.apk”, that is particularly used on showroom devices. Google Pixel Phones Contain… Continue reading Google Pixel Devices Shipped with Vulnerable App
Critical Windows TCP/IP Vulnerability Uncovered, Patch Now
A critical vulnerability has been discovered in the Windows TCP/IP stack that allows unauthenticated remote code execution (RCE). This vulnerability can be exploited remotely by sending specially crafted IPv6 packets to the target system. Successful exploitation could allow an attacker to execute arbitrary code on the target system and affects all supported versions of Windows… Continue reading Critical Windows TCP/IP Vulnerability Uncovered, Patch Now
AMD Ryzen CPUs Slowed Down by Windows 11 Bug
Recent release of the AMD Ryzen 9000 CPU lineup created quite a fuss around the new processors having lackluster performance uplifts from previous generations. One particular area where the results were that bad is gaming: instead of expected 15-20% improvements, gamers are getting mere 3-5% gains. AMD found an explanation: it turns out that privileges… Continue reading AMD Ryzen CPUs Slowed Down by Windows 11 Bug
EDRKillShifter Malware: New EDR Killer Tool in Ransomware Actors’ Toolkit
Recent research uncovers a new anti-EDR utility in the arsenal of malware actors, nicknamed EDRKillShifter. Its main known user to the moment is the RansomHub ransomware gang. Though, it is likely for other threat actors to adopt this tool, as similar utilities have immense popularity among cybercriminals nowadays. EDRKillShifter Used in Ransomware Attacks Research team… Continue reading EDRKillShifter Malware: New EDR Killer Tool in Ransomware Actors’ Toolkit
Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now
SAP, the developer of business management software, released a huge security update that fixes numerous vulnerabilities in their software. Among them are severe authentication bypass and server-side request forgery vulnerabilities rated at CVSS 9.8 and 9.1 respectively. The company urges installing updates as soon as possible, as the mentioned flaws affect a substantial number of… Continue reading Critical SAP Auth Bypass and SSRF Flaws Fixed, Update Now
Can You Get a Virus By Visiting a Porn Site?
Rumors and jokes about malware on porn websites have been circulating ever since such sites became popular among folks. It is a good call to a certain degree, as there were direct malware dangers in the past, and some are still present nowadays. Still, with the change of the overall malware landscape, these threats have… Continue reading Can You Get a Virus By Visiting a Porn Site?