How fast can you tell if you’re protected? Whether it’s Robbinhood or Ryuk, testing your security controls against a specific threat can be a major showstopper.

Here are your options for checking their effectiveness against clear and present danger — https://thehackernews.com/2019/06/breach-attack-simulation.html

Telegram CEO says the 'Powerful DDoS Attack' it suffered yesterday was 'mostly from China,' suggesting that Beijing might have tried to disrupt protests in Hong Kong

https://thehackernews.com/2019/06/telegram-ddos-attack.html

Major flaw discovered in the popular Evernote extension for Chrome that could have allowed hackers to hijack your web browser remotely and steal sensitive information from any website you visited.

Learn more ➤ https://thehackernews.com/2019/06/evernote-extension-hacking.html

Check out the video demonstration for PoC

Great News! Researchers release a new — GandCrab Ransomware Decryption Tool — that can help affected users unlock files encrypted by any version of GandCrab for free

https://thehackernews.com/2019/06/gandcrab-ransomware-decryption-tool.html

IMPORTANT — If you use Firefox, you need to update it right now.

Mozilla released Firefox 67.0.3 and ESR version 60.7.1 to patch a critical zero-day vulnerability that is being exploited in the wild, allowing attackers to gain control over PCs remotely

https://thehackernews.com/2019/06/mozilla-firefox-patch-update.html

Oracle releases EMERGENCY updates to patch a newly discovered critical RCE vulnerability (CVE-2019-2729) in the Oracle WebLogic Server that is actively being exploited in the wild by attackers

https://thehackernews.com/2019/06/oracle-weblogic-vulnerability.html

Tor Browser 8.5.2 Released — Users Should Immediately Update It to Patch the Newly Discovered Actively-Exploited Firefox RCE Vulnerability

https://thehackernews.com/2019/06/tor-browser-firefox-hack.html

MongoDB introduces an end-to-end Field Level Encryption (FLE) for online databases that would handle crypto operations on clients’ devices, preventing hackers and even administrators from accessing sensitive data in plaintext

Read more ➤ https://thehackernews.com/2019/06/mongodb-fle-data-encryption.html

Using Outlook for Android? — UPDATE it immediately.

Microsoft patches an important flaw in its popular email app [100+ million users] that could allow remote attackers to execute client-side scripts on the targeted app just by sending an email message.

https://thehackernews.com/2019/06/outlook-app-android.html

An important security vulnerability (CVE-2019-12280) in the Support Assistance Software—that comes pre-installed on most Dell computers—affects millions of users.

https://thehackernews.com/2019/06/dells-supportassist-hacking.html

Update Dell SupportAssist to version—
◆ 2.0.1 (for Business PCs)
◆ 3.2.2 (for Home PCs)

This is interesting ➤ Here's a new malware that first launches Linux Virtual Machine (VM) on Windows and macOS systems, and then automatically starts mining software within it... just to take the best of your CPU resources

Read more: https://thehackernews.com/2019/06/emulated-malware.html

Researcher today released PoC for a severe RCE vulnerability in "Outlook for Android" that Microsoft patched just this week—almost 6 month after the initial responsible disclosure.

Read more ➤ https://thehackernews.com/2019/06/microsoft-outlook-vulnerability.html

OpenSSH Adds Protection Against Side-Channel Attacks That Now Encrypts Secret SSH Keys in the System Memory

https://thehackernews.com/2019/06/openssh-side-channel-vulnerability.html

New macOS malware found exploiting the latest GateKeeper bypass vulnerability that was disclosed publicly last month after Apple left it unpatched for 90 days

https://thehackernews.com/2019/06/macos-malware-gatekeeper.html

Microsoft introduces "OneDrive Personal Vault"

A new password / 2FA-protected folder within users' online Cloud Storage accounts where they can store sensitive and personal files with an extra layer of authentication.

Read more ➤ https://thehackernews.com/2019/06/microsoft-onedrive-personal-vault.html

"Legit Apps Turned into Spyware" Targeting Android Users in Middle East

https://thehackernews.com/2019/06/android-malware-hacking.html

Account Takeover Vulnerability Found in the Popular EA Games' Origin Platform

https://thehackernews.com/2019/06/ea-origin-game-hacking.html

Checkout the video demonstration shared by CheckPoint researchers.

Exclusive — German police yesterday raided the house of OmniRAT developer and seized his computers and mobile phones.

https://thehackernews.com/2019/06/police-raid-omnirat-developer.html

OmniRAT is one of the popular remote administration tools that allows users to monitor Android, Windows, Linux, Mac devices remotely.

Starting with Firefox 68, the Mozilla browser will automatically trust system-installed CA Root certificates to fix certain TLS errors, often triggered when antivirus software installed on a system tries to intercept HTTPS connections.

https://thehackernews.com/2019/07/firefox-https-security.html

Google's latest Android July 2019 security update patches 33 new vulnerabilities, the most critical of which resides in the Media framework that could allow remote attackers to execute arbitrary code on targeted devices using a specially crafted file

https://thehackernews.com/2019/07/android-security-update.html