Threatpost

Syndikovat obsah
The First Stop For Security News
Aktualizace: 1 rok 17 týdnů zpět

Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection

11 Květen, 2020 - 22:19
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.
Kategorie: Hacking & Security

Millions of Thunderbolt-Equipped Devices Open to ‘ThunderSpy’ Attack

11 Květen, 2020 - 17:38
If an attacker can get his hands on a Thunderbolt-equipped device for five minutes, he can launch a new data-stealing attack called "Thunderspy."
Kategorie: Hacking & Security

Sphinx Malware Returns to Riddle U.S. Targets

11 Květen, 2020 - 17:38
The banking trojan has upgraded and is seeing a resurgence on the back of coronavirus stimulus payment themes.
Kategorie: Hacking & Security

Black Hat USA, DEF CON 28 Go Virtual

8 Květen, 2020 - 21:49
Due to the coronavirus pandemic, there will be no in-person Black Hat USA or DEF CON conferences this year.
Kategorie: Hacking & Security

Hackers Breach 3.5 Million MobiFriends Dating App Credentials

8 Květen, 2020 - 18:01
The emails, hashed passwords and usernames of 3.5 million users of the dating app MobiFriends were put up for sale on an underground forum.
Kategorie: Hacking & Security

Report: Microsoft’s GitHub Account Gets Hacked

8 Květen, 2020 - 17:36
The Shiny Hunters hacking group said it stole 500 GB of data from the tech giant’s repositories on the developer platform, which it owns.
Kategorie: Hacking & Security

Podcast: Shifting Cloud Security Left With Infrastructure-as-Code

8 Květen, 2020 - 15:00
Companies are looking to "shift left" with Infrastructure-as-Code (IaC) security capabilities to improve developer productivity, avoid misconfigurations and prevent policy violations.
Kategorie: Hacking & Security

Blue Mockingbird Monero-Mining Campaign Exploits Web Apps

7 Květen, 2020 - 23:01
The cybercriminals are using a deserialization vulnerability, CVE-2019-18935, to achieve remote code execution before moving laterally through the enterprise.
Kategorie: Hacking & Security

Cisco Fixes High-Severity Flaws In Firepower Security Software, ASA

7 Květen, 2020 - 20:43
Cisco has fixed 12 high-severity flaws in its Adaptive Security Appliance software and Firepower Threat Defense software.
Kategorie: Hacking & Security

Zoom Beefs Up End-to-End Encryption to Thwart ‘Zoombombers’

7 Květen, 2020 - 18:43
As the company continues to battle security woes, it has acquired Keybase to boost security and privacy. A full cryptographic draft architecture will be available on May 22.
Kategorie: Hacking & Security