Threatpost

Syndikovat obsah
The First Stop For Security News
Aktualizace: 1 rok 26 týdnů zpět

Netgear Won’t Patch 45 Router Models Vulnerable to Serious Flaw

3 Srpen, 2020 - 21:03
Almost two months after a high-severity flaw was disclosed - and seven months after it was first reported - Netgear has yet to issue fixes for 45 of its router models.
Kategorie: Hacking & Security

Garmin Pays Up to Evil Corp After Ransomware Attack — Reports

3 Srpen, 2020 - 18:26
The ransom for the decryptor key in the WastedLocker attack could have topped $10 million, sources said.
Kategorie: Hacking & Security

Black Hat USA 2020: Critical Meetup.com Flaws Reveal Common AppSec Holes

3 Srpen, 2020 - 17:13
With Black Hat USA 2020 kicking off this week, Erez Yalon with Checkmarx talks about newly disclosed, critical vulnerabilities in Meetup.com - and why they are the "holy grail" for attackers.
Kategorie: Hacking & Security

Meetup Critical Flaws Allow ‘Group’ Takeover, Payment Theft

3 Srpen, 2020 - 15:05
Researchers disclosed critical flaws in the popular Meetup service at Black Hat USA 2020 this week, which could allow takeover of Meetup "Groups."
Kategorie: Hacking & Security

4 Unpatched Bugs Plague Grandstream ATAs for VoIP Users

31 Červenec, 2020 - 23:05
The flaws have been confirmed by Grandstream, but no firmware update has yet been issued.
Kategorie: Hacking & Security

Authorities Arrest Alleged 17-Year-Old ‘Mastermind’ Behind Twitter Hack

31 Červenec, 2020 - 22:21
Three have been charged in alleged connection with the recent high-profile Twitter hack - including a 17-year-old teen from Florida who is the reported "mastermind" behind the attack.
Kategorie: Hacking & Security

CWT Travel Agency Faces $4.5M Ransom in Cyberattack, Report

31 Červenec, 2020 - 18:08
The corporate-travel leader has confirmed an attack that knocked systems offline.
Kategorie: Hacking & Security

Anti-NATO Disinformation Campaign Leveraged CMS Compromises

31 Červenec, 2020 - 18:03
Researchers uncovered a disinformation campaign aiming to discredit NATO via fake news content on compromised news websites.
Kategorie: Hacking & Security

Twitter: Epic Account Hack Caused by Mobile Spearphishing

31 Červenec, 2020 - 15:21
Hackers "mislead certain employees" to gain access to internal tools to take over high-profile accounts and push out a Bitcoin scam.
Kategorie: Hacking & Security

Black Hat USA 2020 Preview: Election Security, COVID Disinformation and More

31 Červenec, 2020 - 12:30
Threatpost editors break down the top themes, speakers and sessions to look out for this year at Black Hat 2020 - from election security to remote work and the pandemic.
Kategorie: Hacking & Security

Zoom Flaw Could Have Allowed Hackers To Crack Meeting Passcodes

30 Červenec, 2020 - 23:40
Zoom has fixed the issue, which stemmed from a lack of checks against incorrect passcode attempts.
Kategorie: Hacking & Security

Doki Backdoor Infiltrates Docker Servers in the Cloud

30 Červenec, 2020 - 19:00
The malware is a new payload that uses Dogecoin wallets for its C2, and spreads via the Ngrok botnet.
Kategorie: Hacking & Security

Critical, High-Severity Cisco Flaws Fixed in Data Center Network Manager

30 Červenec, 2020 - 16:36
The flaw could allow a remote, unauthenticated attacker to bypass authentication on vulnerable devices.
Kategorie: Hacking & Security

Vermont Taxpayers Warned of Data Leak Over the Past Three Years

30 Červenec, 2020 - 15:32
A vulnerability in the state’s system may have exposed personal data that can be used for credential theft for those who filed Property Transfer Tax returns online.
Kategorie: Hacking & Security

Critical Magento Flaws Allow Code Execution

29 Červenec, 2020 - 23:22
Adobe has released patches for critical and important-severity flaws in its popular Magento e-commerce platform.
Kategorie: Hacking & Security

Billions of Devices Impacted by Secure Boot Bypass

29 Červenec, 2020 - 21:53
The "BootHole" bug could allow cyberattackers to load malware, steal information and move laterally into corporate, OT, IoT and home networks.
Kategorie: Hacking & Security

Critical Bugs in Utilities VPNs Could Cause Physical Damage

29 Červenec, 2020 - 20:02
Gear from Secomea, Moxa and HMS Networks are affected by remote code-execution flaws, researchers warn.
Kategorie: Hacking & Security

Critical Security Flaw in WordPress Plugin Allows RCE

29 Červenec, 2020 - 18:32
WordPress plugin Comments – wpDiscuz, which is installed on over 70,000 sites, has issued a patch.
Kategorie: Hacking & Security

Facial-Recognition Flop: Face Masks Thwart Virus, Stump Security Systems

29 Červenec, 2020 - 14:35
Algorithms clocked error rates of between 5% to 50% when comparing photos of people wearing digitally created masks with unmasked faces.
Kategorie: Hacking & Security

OkCupid Security Flaw Threatens Intimate Dater Details

29 Červenec, 2020 - 12:00
Attackers could have exploited various flaws in OkCupid's mobile app and webpage to steal victims' sensitive data and even send messages out from their profiles.
Kategorie: Hacking & Security