Threatpost

Syndikovat obsah
The First Stop For Security News
Aktualizace: 1 rok 50 týdnů zpět

Einstein Healthcare Network Announces August Breach

21 Leden, 2021 - 21:00
Einstein is in violation of the the HHS 60-day breach notification rule, but unlikely to face penalty.
Kategorie: Hacking & Security

SQL Server Malware Tied to Iranian Software Firm, Researchers Allege

21 Leden, 2021 - 20:42
Researchers have traced the origins of a campaign - infecting SQL servers to mine cryptocurrency - back to an Iranian software firm.
Kategorie: Hacking & Security

Google Forms Set Baseline For Widespread BEC Attacks

21 Leden, 2021 - 16:02
Researchers warn that attackers are collecting reconnaissance for future business email compromise attacks using Google Forms.
Kategorie: Hacking & Security

Google Searches Expose Stolen Corporate Credentials

21 Leden, 2021 - 15:00
A phishing campaign spoofs Xerox notifications to lure victims into clicking on malicious HTML attachments.
Kategorie: Hacking & Security

Critical Cisco SD-WAN Bugs Allow RCE Attacks

20 Leden, 2021 - 22:47
Cisco is stoppering critical holes in its SD-WAN solutions and its smart software manager satellite.
Kategorie: Hacking & Security

NVIDIA Gamers Face DoS, Data Loss from Shield TV Bugs

20 Leden, 2021 - 21:45
The company also issued patches for Tesla-based GPUs as part of an updated, separate security advisory.
Kategorie: Hacking & Security

Malwarebytes Hit by SolarWinds Attackers

20 Leden, 2021 - 18:36
The attack vector was not the Orion platform but rather an email-protection application for Microsoft 365.
Kategorie: Hacking & Security

Investment Scammers Prey on Dating App Users, Interpol Warns

20 Leden, 2021 - 17:42
Users of dating apps - like Tinder, Match and Bumble - should be on the lookout for investment-fraud scammers.
Kategorie: Hacking & Security

Google Research Pinpoints Security Soft Spot in Multiple Chat Platforms

20 Leden, 2021 - 16:21
Mystery of spying using popular chat apps uncovered by Google Project Zero researcher.
Kategorie: Hacking & Security

DNSpooq Flaws Allow DNS Hijacking of Millions of Devices

19 Leden, 2021 - 22:25
Seven flaws in open-source software Dnsmasq could allow DNS cache poisoning attacks and remote code execution.
Kategorie: Hacking & Security

Rob Joyce to Take Over as NSA Cybersecurity Director

19 Leden, 2021 - 21:20
Joyce will replace Anne Neuberger, who is now deputy national security advisor for the incoming Biden administration.
Kategorie: Hacking & Security

SolarWinds Malware Arsenal Widens with Raindrop

19 Leden, 2021 - 17:40
The post-compromise backdoor installs Cobalt Strike to help attackers more laterally through victim networks.
Kategorie: Hacking & Security

Linux Devices Under Attack by New FreakOut Malware

19 Leden, 2021 - 16:51
The FreakOut malware is adding infected Linux devices to a botnet, in order to launch DDoS and cryptomining attacks.
Kategorie: Hacking & Security

Attackers Steal E-Mails, Info from OpenWrt Forum

19 Leden, 2021 - 15:45
Users of the Linux-based open-source firmware—which include developers from commercial router companies--may be targeted by phishing campaigns, administrators warn.
Kategorie: Hacking & Security

Medical Device Security: Diagnosis Critical

18 Leden, 2021 - 16:35
Medical-device security has long been a challenge, suffering the same uphill management battle that the entire sprawling mess of IoT gadgets has faced.
Kategorie: Hacking & Security

CES 2021 Gadgets: Worst in Privacy and Security Awards

15 Leden, 2021 - 23:04
Expert panel awards dubious honors to 2021 Consumer Electronics Show’s biggest flops, including security and privacy failures.
Kategorie: Hacking & Security

Microsoft Implements Windows Zerologon Flaw ‘Enforcement Mode’

15 Leden, 2021 - 22:47
Starting Feb. 9, Microsoft will enable Domain Controller “enforcement mode” by default to address CVE-2020-1472.
Kategorie: Hacking & Security

Apple Kills MacOS Feature Allowing Apps to Bypass Firewalls

15 Leden, 2021 - 18:02
Security researchers lambasted the controversial macOS Big Sur feature for exposing users' sensitive data.
Kategorie: Hacking & Security

Google Boots 164 Apps from Play Marketplace for Shady Ad Practices

15 Leden, 2021 - 17:19
The tech giant removes 164 more offending Android apps after banning software showing this type of behavior from the store last year.
Kategorie: Hacking & Security

Facebook: Malicious Chrome Extension Developers Scraped Profile Data

14 Leden, 2021 - 23:30
Facebook has sued two Chrome devs for scraping user profile data - including names, user IDs and more.
Kategorie: Hacking & Security