Syndikovat obsah
The First Stop For Security News
Aktualizace: 2 roky 32 týdny zpět

Porn Problem: Adult Ads Persist on US Gov’t, Military Sites

17 Září, 2021 - 19:16
Cities, states, federal and military agencies should patch the Laserfiche CMS post-haste, said the security researcher whose jaw dropped at 50 sites hosting porn and Viagra spam.
Kategorie: Hacking & Security

Ditch the Alert Cannon: Modernizing IDS is a Security Must-Do

17 Září, 2021 - 15:20
Jeff Costlow, CISO at ExtraHop, makes the case for implementing next-gen intrusion-detection systems (NG-IDS) and retiring those noisy 90s compliance platforms.
Kategorie: Hacking & Security

AT&T Phone-Unlocking Malware Ring Costs Carrier $200M

17 Září, 2021 - 14:57
With the help of malicious insiders, a fraudster was able to install malware and remotely divorce iPhones and other handsets from the carrier's U.S. network -- all the way from Pakistan.
Kategorie: Hacking & Security

Microsoft MSHTML Flaw Exploited by Ryuk Ransomware Gang

17 Září, 2021 - 14:07
Microsoft and RiskIQ researchers have identified several campaigns using the recently patched zero-day, reiterating a call for organizations to update affected systems.
Kategorie: Hacking & Security

CISA, FBI: State-Backed APTs May Be Exploiting Critical Zoho Bug

16 Září, 2021 - 23:09
The newly identified bug in a Zoho single sign-on and password management tool has been under active attack since early August.
Kategorie: Hacking & Security

Airline Credential-Theft Takes Off in Widening Campaign

16 Září, 2021 - 20:26
A spyware effort bent on stealing cookies and logins is being driven by unsophisticated attackers cashing in on the initial-access-broker boom.
Kategorie: Hacking & Security

Financial Cybercrime: Following Cryptocurrency via Public Ledgers

16 Září, 2021 - 15:08
John Hammond, security researcher with Huntress, discusses a wallet-hijacking RAT, and how law enforcement recovered millions in Bitcoin after the Colonial Pipeline attack.
Kategorie: Hacking & Security

REvil/Sodinokibi Ransomware Universal Decryptor Key Is Out

16 Září, 2021 - 15:00
Bitdefender worked with law enforcement to create a key to unlock victims encrypted in ransomware attacks before REvil's servers went belly-up on July 13.
Kategorie: Hacking & Security

DDoS Attacks: A Flourishing Business for Cybercrooks – Podcast

16 Září, 2021 - 15:00
Imperva’s Peter Klimek on how DDoS attacks started out as inconveniences but evolved to the point where attackers can disrupt businesses for as little as the price of a cup of coffee,
Kategorie: Hacking & Security

HP Omen Hub Exposes Millions of Gamers to Cyberattack

16 Září, 2021 - 14:01
A driver privilege-escalation bug gives attackers kernel-mode access to millions of PCs used for gaming.
Kategorie: Hacking & Security

Azure Zero-Day Flaws Highlight Lurking Supply-Chain Risk

16 Září, 2021 - 13:37
Dubbed OMIGOD, a series of vulnerabilities in the Open Management Infrastructure used in Azure on Linux demonstrate hidden security threats, researchers said.
Kategorie: Hacking & Security

No Patch for High-Severity Bug in Legacy IBM System X Servers

15 Září, 2021 - 21:01
Two of IBM's aging flagship server models, retired in 2020, won’t be patched for a command-injection flaw.
Kategorie: Hacking & Security

Attackers Impersonate DoT in Two-Day Phishing Scam

15 Září, 2021 - 15:06
Threat actors dangled the lure of receiving funds from the $1 trillion infrastructure bill and created new domains mimicking the real federal site.
Kategorie: Hacking & Security

Adobe Snuffs Critical Bugs in Acrobat, Experience Manager

14 Září, 2021 - 23:02
Adobe releases security updates for 59 bugs affecting its core products, including Adobe Acrobat Reader, XMP Toolkit SDK and Photoshop.
Kategorie: Hacking & Security

Microsoft Patches Actively Exploited Windows Zero-Day Bug

14 Září, 2021 - 22:29
On Patch Tuesday, Microsoft fixed 66 CVEs, including an RCE bug in MSHTML under active attack as threat actors passed around guides for the drop-dead simple exploit.
Kategorie: Hacking & Security

2021’s Most Dangerous Software Weaknesses

14 Září, 2021 - 22:05
Saryu Nayyar, CEO at Gurucul, peeks into Mitre's list of dangerous software bug types, highlighting that the oldies are still the goodies for attackers.
Kategorie: Hacking & Security

ZLoader’s Back, Abusing Google AdWords, Disabling Windows Defender

14 Září, 2021 - 19:21
The well-known banking trojan retools for stealth with a whole new attack routine, including using ads for Microsoft TeamViewer and Zoom to lure victims in.
Kategorie: Hacking & Security

Pair of Google Chrome Zero-Day Bugs Actively Exploited

14 Září, 2021 - 17:03
The security vulnerabilities bring the web behemoth up to 10 browser zero-days found so far this year.
Kategorie: Hacking & Security

Unpatched Bugs Plague Databases; Your Data Is Probably Not Secure – Podcast

14 Září, 2021 - 15:45
Imperva's Elad Erez discusses findings that 46 percent of on-prem databases are sitting ducks, unpatched and vulnerable to attack, each with an average of 26 flaws.
Kategorie: Hacking & Security

Romance, BEC Scams Lands Soldier in Jail for 46 Months

14 Září, 2021 - 15:10
A former Army Reservist pleaded guilty to scamming the elderly with catfishing and stealing from veterans.
Kategorie: Hacking & Security