business cybersecurity cybersecurity software Online security scanner Security Security tools vulnerability scanner website security website security scanner

4 Best Free Online Security Tools for SMEs in 2020

Cyberattacks on small and midsized companies in 2019 cost $200,000 per company on average, mercilessly putting many of them out of business, says CNBC in its analysis of a recent Accenture report. In light of the global cybersecurity skills shortage, the number is set to soar in 2020. Solely in the UK, over 50,000 British […]

browser security Cyber Security Delegated Credentials Delegated Credentials for TLS Security server security ssl security SSL TLS security TLS encryption website encryption website security

Explained: How New ‘Delegated Credentials’ Boosts TLS Protocol Security

Mozilla, in partnership with Facebook, Cloudflare, and other IETF community members, has announced technical specifications for a new cryptographic protocol called “Delegated Credentials for TLS.” Delegated Credentials for TLS is a new simplified way to implement “short-lived” certificates without sacrificing the reliability of secure connections. In short, the new TLS protocol extension aims to effectively […]

Cyber Security Google Chrome hacking news Security Use-After-Free Vulnerabilities website security Windows Security zero-day attack Zero-Day Vulnerability

New Chrome 0-day Bug Under Active Attacks – Update Your Browser Now!

Attention readers, if you are using Chrome on your Windows, Mac, and Linux computers, you need to update your web browsing software immediately to the latest version Google released earlier today. With the release of Chrome 78.0.3904.87, Google is warning billions of users to install an urgent software update immediately to patch two high severity […]

Cybersecurity data breach domain hacking Domain registrar hacked hacking news Security web domain website security

Leading Web Domain Name Registrars Disclose Data Breach

Another day, another massive data breach—this time affecting a leading web technology company, as well as both of its subsidiaries, from where millions of customers around the world have purchased domain names for their websites. The world’s top domain registrars Web.com, Network Solutions, and Register.com disclosed a security breach that may have resulted in the […]

hacking web server hosting web server NGINX php 7 php security PHP Vulnerability PHP-FPM Security Vulnerability website security

New PHP Flaw Could Let Attackers Hack Sites Running On Nginx Servers

If you’re running any PHP based website on NGINX server and have PHP-FPM feature enabled for better performance, then beware of a newly disclosed vulnerability that could allow unauthorized attackers to hack your website server remotely. The vulnerability, tracked as CVE-2019-11043, affects websites with certain configurations of PHP-FPM that is reportedly not uncommon in the […]

cache poisoning attack CDN Network CDN Service Cyber Security ddos attack ddos protection denial of service Security server security website security

New Cache Poisoning Attack Lets Attackers Target CDN Protected Sites

A team of German cybersecurity researchers has discovered a new cache poisoning attack against web caching systems that could be used by an attacker to force a targeted website into delivering error pages to most of its visitors instead of legitimate content or resources. The issue affects reverse proxy cache systems like Varnish and some […]

Android browser security Chrome Android Chrome Web Browser Firefox Google Chrome hacking back accounts secure web browser Security website security

Chrome for Android Enables Site Isolation Security Feature for All Sites with Login

After enabling ‘Site Isolation‘ security feature in Chrome for desktops last year, Google has now finally introduced ‘the extra line of defence’ for Android smartphone users surfing the Internet over the Chrome web browser. In brief, Site Isolation is a security feature that adds an additional boundary between websites by ensuring that pages from different […]

dark web Deep Web FBI hide IP address law enforcement Onion Network Onion Routing Security website security

Feds Shut Down Largest Dark Web Child Abuse Site; South Korean Admin Arrested

The United States Department of Justice said today that they had arrested hundreds of criminals in a global crackdown after taking down the largest known child porn site on the dark web and tracing payments made in bitcoins. With an international coalition of law enforcement agencies, federal officials have arrested the administrator of the child […]

Cross Site Request Forgery CSRF vulnerability hacking news Security Vulnerability Web Application Security website hacking website security

Warning: Researcher Drops phpMyAdmin Zero-Day Affecting All Versions

A cybersecurity researcher recently published details and proof-of-concept for an unpatched zero-day vulnerability in phpMyAdmin—one of the most popular applications for managing the MySQL and MariaDB databases. phpMyAdmin is a free and open source administration tool for MySQL and MariaDB that’s widely used to manage the database for websites created with WordPress, Joomla, and many […]

data breach forum hacked forum software hacking news password security Security webcomic website security xkcd

XKCD Forum Hacked – Over 562,000 Users’ Account Details Leaked

XKCD—one of the most popular webcomic platforms known for its geeky tech humor and other science-laden comic strips on romance, sarcasm, math, and language—has suffered a data breach exposing data of its forum users. The security breach occurred two months ago, according to security researcher Troy Hunt who alerted the company of the incident, with […]