Threatpost

Syndikovat obsah
The First Stop For Security News
Aktualizace: 6 týdnů 4 dny zpět

Researcher Says NSA’s Ghidra Tool Can Be Used for RCE

19 Březen, 2019 - 16:26
Researchers have released a proof-of-concept showing how a XXE vulnerability can be exploited to attack Ghidra project users.
Kategorie: Hacking & Security

Norsk Hydro Calls Ransomware Attack ‘Severe’

19 Březen, 2019 - 15:53
When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system.
Kategorie: Hacking & Security

ThreatList: DDoS Attack Sizes Drop 85 Percent Post FBI Crackdown

19 Březen, 2019 - 13:00
The FBI's crackdown on 15 DDoS-for-hire sites appears to have had an impact on DDoS attacks, the average size for which dropped 85 percent in the fourth quarter of 2018, a new report found.
Kategorie: Hacking & Security

Fourth Major Credential Spill in a Month Hits DreamMarket

18 Březen, 2019 - 18:29
Gnosticplayers has released about 26 million records from what he said are breaches of six new companies.
Kategorie: Hacking & Security

Mirai Variant Goes After Enterprise Systems

18 Březen, 2019 - 17:44
The newest Mirai variant is targeting WePresent WiPG-1000 Wireless Presentation systems and LG Supersign TVs used by enterprises.
Kategorie: Hacking & Security

Google Gives Users More Choice with Location-Tracking Apps

18 Březen, 2019 - 17:41
Developers will have a new option to for Android apps to track location only when in use.
Kategorie: Hacking & Security

Privacy Regulations Needed for Next-Gen Cars

18 Březen, 2019 - 16:46
With wide deployment expected in the next decade, the driverless automobile landscape looks fraught – from road safety to data protection.
Kategorie: Hacking & Security

Lenovo Patches Intel Firmware Flaws in Multiple Product Lines

15 Březen, 2019 - 19:30
Lenovo has issued patches for several serious vulnerabilities in its products stemming from Intel technology fixes.
Kategorie: Hacking & Security

Unpatched Fujitsu Wireless Keyboard Bug Allows Keystroke Injection

15 Březen, 2019 - 15:46
An unpatched high-severity vulnerability allows keystroke injections in Fujitsu wireless keyboards.
Kategorie: Hacking & Security

Threatlist: IMAP-Based Attacks Compromising Accounts at ‘Unprecedented Scale’

14 Březen, 2019 - 21:19
Attackers are increasingly targeting insecure legacy protocols, like IMAP, to avoid running into multi-factor authentication in password-spraying campaigns.
Kategorie: Hacking & Security

Zero-Days in Counter-Strike Client Used to Build Major Botnet

14 Březen, 2019 - 20:43
A full 39 percent of Counter-Strike 1.6 game servers on Steam were found to be malicious.
Kategorie: Hacking & Security

Cisco Patches Critical ‘Default Password’ Bug

14 Březen, 2019 - 16:56
Vulnerability allows adversaries to access monitoring system used for gathering info on operating systems and hardware.
Kategorie: Hacking & Security

GlitchPOS Malware Appears to Steal Credit-Card Numbers

14 Březen, 2019 - 16:33
A new malware targeting point of sale systems, GlitchPOS, has been spotted on a crimeware forum.
Kategorie: Hacking & Security

Insider Threats Get Mean, Nasty and Very Personal

14 Březen, 2019 - 13:27
Increasingly, attackers are targeting the most vulnerable people inside companies and exploiting their weaknesses.
Kategorie: Hacking & Security

Purveyor of Cracked Netflix, Hulu, Spotify Accounts Arrested

13 Březen, 2019 - 20:44
A Sydney man is accused of selling nearly 1 million compromised accounts, for a significant profit.
Kategorie: Hacking & Security

Intel Windows 10 Graphics Drivers Riddled With Flaws

13 Březen, 2019 - 19:29
Intel has patched several high-severity vulnerabilities in its graphics drivers for Windows 10, which could lead to code execution.
Kategorie: Hacking & Security

MAGA ‘Safe Space’ App Developer Threatens Security Researcher

13 Březen, 2019 - 16:58
The mobile app, dubbed a "Yelp for Conservatives," was found with an open API leaking reams of user data.
Kategorie: Hacking & Security

Three Ways DNS is Weaponized and How to Mitigate the Risk

13 Březen, 2019 - 16:23
Why are hackers using the DNS infrastructure against us? The answer is more complex than you might think.
Kategorie: Hacking & Security

Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw

13 Březen, 2019 - 15:15
Newly patched CVE-2019-0797 is being actively exploited by two APTs, FruityArmor and SandCat.
Kategorie: Hacking & Security

Federal Focus on Cyber Plays Out in President’s Budget, IoT Legislation

12 Březen, 2019 - 22:05
Money earmarked for the Defense Department and DHS, and bipartisan bills to address the security of federal IoT devices, showcase growing federal cyber-efforts.
Kategorie: Hacking & Security