Threatpost

Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 50 min 17 sek zpět

Spam Domains Imitating Popular Banks Spreading Trickbot Banking Trojan

15 Srpen, 2017 - 16:36
Researchers at My Online Security and the SANS Internet Storm Center have analyzed spam campaigns utilizing plausible imitations of legitimate banking domains to spread the Trickbot banking malware.
Kategorie: Hacking & Security

Blizzard Entertainment Hit With Weekend DDoS Attack

14 Srpen, 2017 - 23:37
Blizzard Entertainment was hit with a crippling DDoS attack over the weekend that followed similar attacks last week that knocked gamers offline.
Kategorie: Hacking & Security

Windows Search Bug Worth Watching, and Squashing

14 Srpen, 2017 - 21:22
Patches are available—and should be applied—that address a critical vulnerability in Windows Search that some are calling the next WannaCry. Others aren't so ready to do that.
Kategorie: Hacking & Security

Smart Locks Bricked by Bad Update

14 Srpen, 2017 - 20:28
LockState's CEO says he is “deeply sorry” about an erroneous wireless update that bricked hundreds of smart locks.
Kategorie: Hacking & Security

Researchers Find Phishing Site Encrypted with AES

14 Srpen, 2017 - 17:20
A phishing site seeking Apple credentials and victim payment card information is encrypted with AES, researchers at Ring 0 Labs said.
Kategorie: Hacking & Security

APT28 Using EternalBlue to Attack Hotels in Europe, Middle East

12 Srpen, 2017 - 14:00
Researchers believe attacks against wi-fi systems in hotels across Europe and the Middle East track back to Russian-speaking hackers known as APT28.
Kategorie: Hacking & Security

Many Factors Conspire in ICS/SCADA Attacks

11 Srpen, 2017 - 19:57
A report on the state of SCADA and ICS security points out that critical infrastructure operators are caught between hackers and a lack of vendor and executive support.
Kategorie: Hacking & Security

Apps Infected With SonicSpy Spyware Removed From Google Play

11 Srpen, 2017 - 19:47
A spyware family called SonicSpy was found on three apps available on the Google Play store as well as on more than 1,000 apps available on third-party app stores.
Kategorie: Hacking & Security

Threatpost News Wrap, August 11, 2017

11 Srpen, 2017 - 16:30
Mike Mimoso and Chris Brook discuss the news of the week including the return of the Mamba ransomware, APT trends, a mystery company's 250K bug bounty, and a high schooler's $10K bug bounty from Google.
Kategorie: Hacking & Security

Ukrainian Man Arrested, Charged in NotPetya Distribution

11 Srpen, 2017 - 16:10
Ukranian police arrested a suspect alleged to have distributed the NotPetya/ExPetr malware that ultimately infected 400 computers.
Kategorie: Hacking & Security

Patched Flash Player Sandbox Escape Leaked Windows Credentials

10 Srpen, 2017 - 21:00
One of Tuesday's Flash Player patches was a do-over after the researcher who privately reported the problem earlier this year discovered the original patch incompletely resolved the issue.
Kategorie: Hacking & Security

Juniper Issues Security Alert Tied to Routers and Switches

10 Srpen, 2017 - 19:56
Juniper warned Thursday of a high-risk bug in the GD graphics library used in several versions of its Junos OS.
Kategorie: Hacking & Security

High Schooler Nets $10,000 For Google Bug

10 Srpen, 2017 - 19:54
Google awarded a hefty $10,000 bounty to a high school student last week for uncovering a bug that could have let anyone access an internal Google website.
Kategorie: Hacking & Security

SAP Patch Tuesday Update Resolves 19 Flaws, Three High Severity

9 Srpen, 2017 - 23:01
SAP released 19 patches on Tuesday, including a trio of vulnerabilities marked high severity in its business management software.
Kategorie: Hacking & Security

Mystery Company Offers $250,000 Bounty for VM Escape Vulnerabilities

9 Srpen, 2017 - 20:47
An unnamed firm is paying up to $250,000 for vulnerabilities related to its virtualization platform.
Kategorie: Hacking & Security

Signed Mughthesec Adware Hijacking Macs for Profit

9 Srpen, 2017 - 20:25
Mughthesec, a variant of the OperatorMac adware, has been turning hijacked Macs into revenue-generating machines for the authors.
Kategorie: Hacking & Security

Mozilla Fixes 29 Vulnerabilities in Firefox, Makes Flash Click-To-Activate

9 Srpen, 2017 - 18:39
Mozilla fixed three critical vulnerabilities and made Flash click-to-activate by default when it released Firefox 55 on Tuesday
Kategorie: Hacking & Security

Mamba Ransomware Resurfaces in Brazil, Saudi Arabia

9 Srpen, 2017 - 16:06
Researchers at Kaspersky Lab have seen a resurgence of Mamba ransomware pop up recently in Brazil and Saudi Arabia.
Kategorie: Hacking & Security

Microsoft Patches Critical Windows Search Vulnerability

8 Srpen, 2017 - 23:21
Microsoft patched 25 critical vulnerabilities, including a remote code execution bug in Windows Search.
Kategorie: Hacking & Security

Updates to Sofacy, Turla Highlight 2017 Q2 APT Activity

8 Srpen, 2017 - 22:34
Attackers behind APT campaigns have kept busy in Q2 2017, adding new ways to bypass detection, crafting new payloads to drop, and identifying new zero days and backdoors to help them infect users and maintain persistence on machines.
Kategorie: Hacking & Security