Threatpost

Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 43 min 10 sek zpět

Risk of ‘Destructive Cyber Attacks’ Prompts Microsoft to Update XP Again

13 Červen, 2017 - 21:34
Citing an elevated risk for destructive attacks, Microsoft today included patches for vulnerabilities in Windows XP among its Patch Tuesday updates.
Kategorie: Hacking & Security

Adobe Fixes 21 Critical Vulnerabilities with June Patch Tuesday Update

13 Červen, 2017 - 20:33
Adobe fixed 21 vulnerabilities across four products - Flash, Shockwave Player, Captivate, and Adobe Digital Editions - on Tuesday.
Kategorie: Hacking & Security

Patrick Wardle on MacRansom Ransomware-as-a-Service

13 Červen, 2017 - 17:30
Patrick Wardle of Synack and the Objective-See blog talks to Mike Mimoso about the emergence of a ransomware service targeting MacOS machines. Wardle explains why he characterizes MacRansom as “lame” and whether this could kick off a wave of copycats vying for the Apple platform.
Kategorie: Hacking & Security

FIN7 Hitting Restaurants with Fileless Malware

13 Červen, 2017 - 13:15
A campaign attributed to the FIN7 attackers targets restaurants with phishing emails and infected RTF Word documents that carry out fileless malware attacks.
Kategorie: Hacking & Security

Free Mac-Based Ransomware-as-a-Service MacRansom Surfaces

12 Červen, 2017 - 22:19
A new, free macOS-based ransomware as a service has surfaced on the darkweb. Researchers say once the malware encrypts users' files, they're "pretty much gone for good."
Kategorie: Hacking & Security

Blinking Router LEDs Leak Data From Air-Gapped Networks

12 Červen, 2017 - 20:41
Researchers say sensitive data can be extracted from air-gapped networks via a wireless router's blinking LEDs.
Kategorie: Hacking & Security

Attackers Mining Cryptocurrency Using Exploits for Samba Vulnerability

12 Červen, 2017 - 15:34
Kaspersky Lab said it has seen some of the first exploits targeting a patched Samba vulnerability, and those are being used to mine Monero cryptocurrency.
Kategorie: Hacking & Security

GameStop Online Shoppers Officially Warned of Breach

9 Červen, 2017 - 22:11
Some customers are irked it took GameStop months to inform them that their personal and financial information could have been compromised in a breach of GameStop.com that began in August 2016.
Kategorie: Hacking & Security

Google Releases reCAPTCHA API for Android

9 Červen, 2017 - 21:38
Google has released a reCAPTCHA API for Android, a first for the mobile applications.
Kategorie: Hacking & Security

Platinum APT First to Abuse Intel Chip Management Feature

9 Červen, 2017 - 18:46
Microsoft has found a file-transfer tool used by the Platinum APT that leverages Intel Active Management Technology to stealthily load malware onto networked computers.
Kategorie: Hacking & Security

Threatpost News Wrap, June 9, 2017

9 Červen, 2017 - 15:00
How EternalBlue was ported to Windows 10, a Facebook phishing study, QakBot, and this week's Apple security announcements are all discussed.
Kategorie: Hacking & Security

Motorola Moto G4, G5 Vulnerable to Local Root Shell Attacks

8 Červen, 2017 - 20:53
Moto G4 and Moto G5 model Motorola phones are vulnerable to kernel command line injection vulnerabilities.
Kategorie: Hacking & Security

VMware Patches Critical Vulnerabilities in vSphere Data Protection

8 Červen, 2017 - 18:12
VMware fixed two critical vulnerabilities in its vSphere Data Protection solution this week that could have allowed an attacker to execute commands on the appliance, among other outcomes.
Kategorie: Hacking & Security

Cisco Patches Critical Flaws in Prime Data Center Network Manager

8 Červen, 2017 - 16:53
Cisco patched two critical flaws in its Prime Data Center Network Manager, including one that could be exploited remotely and allow an attacker root access.
Kategorie: Hacking & Security

Authentication Bypass, Potential Backdoors Plague Old WiMAX Routers

8 Červen, 2017 - 15:00
WiMAX routers manufactured by several companies, including Huawei and ZyXEL, are vulnerable to an authentication bypass and potential backdoors.
Kategorie: Hacking & Security

Google Removes Rooting Trojan Dvmap From Play Store

8 Červen, 2017 - 11:00
Google removed a rooting an Android Trojan called Dvmap from Google Play that injects malicious code into an infected device’s system library.
Kategorie: Hacking & Security

EFF Sues DOJ Over National Security Letter Disclosure Rules

7 Červen, 2017 - 23:18
The Electronic Frontier Foundation sued the United States Department of Justice demanding to know whether the agency is complying with rules that mandate a periodic review of National Security Letter gag orders.
Kategorie: Hacking & Security

Windows 10 Mitigations Make Future EternalBlue Attacks Difficult

7 Červen, 2017 - 21:25
Now that researchers have built a port of EternalBlue to Windows 10, they've probably only now caught up to what the NSA has had for a long while.
Kategorie: Hacking & Security

Zusy Malware Installs Via Mouseover – No Clicking Required

7 Červen, 2017 - 20:36
Zusy malware installs when victims hover over an opened PowerPoint file – no clicking needed.
Kategorie: Hacking & Security

Curiosity Kills Security When it Comes to Phishing

6 Červen, 2017 - 21:20
The results of an academic experiment reveal that recipients of Facebook messages are much more likely to click on suspicious links.
Kategorie: Hacking & Security