Attackers Actively Exploiting Realtek SDK Flaws
Multiple vulnerabilities in software used by 65 vendors under active attack. [...]
Showing only posts by Becky Bracken. Show all posts.
InkySquid State Actor Exploiting Known IE Bugs
The North Korea-linked APT group leverages known Internet Explorer vulns for watering-hole attacks. [...]
COVID-19 Contact-Tracing Data Exposed, Fake Vax Cards Circulate
COVID-19-related exploitation and abuse is on the rise as vaccine data opens new frontiers for threat actors. [...]
HolesWarm Malware Exploits Unpatched Windows, Linux Servers
The botnet cryptominer has already compromised 1,000-plus clouds since June. [...]
Apple: CSAM Image-Detection Backdoor ‘Narrow’ in Scope
Computing giant tries to reassure users that the tool won’t be used for mass surveillance. [...]
Amazon’s Plan to Track Worker Keystrokes: A Sign of Controls to Come?
Data theft, insider threats and imposters accessing sensitive customer data have apparently gotten so bad inside Amazon, the company is considering rolling out keyboard-stroke monitoring for its customer-service reps. A confidential memo from inside Amazon explained that customer service credential abuse and data theft was on the rise, according …
Rogue Marketplace AlphaBay Reboots
Illicit underground marketplace relaunches years after takedown. [...]
NSA Watchdog Will Review Tucker Carlson Spying Claims
Despite a lack of evidence, the National Security Agency will investigate whether the Fox host was illegally targeted. [...]
Connected Farms Easy Pickings for Global Food Supply-Chain Hack
John Deere security bugs could allow cyberattackers to damage crops, surrounding property or even people; impact harvests; or destroy farmland for years. [...]
‘Glowworm’ Attack Turns Power Light Flickers into Audio
Researchers have found an entirely new attack vector for eavesdropping on Zoom and other virtual meetings. [...]
Zoom Settlement: An $85M Business Case for Security Investment
Zoom’s security lesson over end-to-end encryption shows the costs of playing cybersecurity catchup. [...]
Auditors: Feds’ Cybersecurity Gets the Dunce Cap
Out of eight agencies, four were given D grades in a report for the Senate, while the Feds overall got a C-. [...]
Iranian APT Lures Defense Contractor in Catfishing-Malware Scam
Fake aerobics-instructor profile delivers malware in a supply-chain attack attempt from TA456. [...]
Chipotle Emails Serve Up Phishing Lures
Mass email distribution service compromise mirrors earlier Nobelium attacks. [...]
NSA Warns Public Networks are Hacker Hotbeds
Agency warns attackers targeting teleworkers to steal corporate data. [...]
UC San Diego Health Breach Tied to Phishing Attack
Employee email takeover exposed personal, medical data of students, employees and patients. [...]
No More Ransom Saves Victims Nearly €1 billion Over 5 Years
No More Ransom is collecting decryptors so ransomware victims don’t have to pay to get their data back and attackers don’t get rich. [...]
No More Ransom Saves Victims Nearly €1 Over 5 Years
No More Ransom is collecting decryptors so ransomware victims don’t have to pay to get their data back and attackers don’t get rich. [...]
Babuk Ransomware Gang Ransomed, New Forum Stuffed With Porn
A comment spammer flooded Babuk’s new ransomware forum with gay orgy porn GIFs and demanded $5K in bitcoin. [...]
Discord CDN and API Abuses Drive Wave of Malware Detections
Targets of Discord malware expand far beyond gamers. [...]
FBI: Cybercriminals Eyeing Broadcast Disruption at Tokyo Olympics
Expected cyberattacks on Tokyo Olympics likely include attempts to hijack video feeds, the Feds warn. [...]
Industrial Networks Exposed Through Cloud-Based Operational Tech
Critical ICS vulnerabilities can be exploited through leading cloud-management platforms. [...]
Indictments, Attribution Unlikely to Deter Chinese Hacking, Researchers Say
Researchers are skeptical that much will come from calling out China for the Microsoft Exchange attacks and APT40 activity, but the move marks an important foreign-policy change. [...]
Ruthless Attackers Target Florida Condo Collapse Victims
Hackers are stealing the identities of those lost in the condo-collapse tragedy. [...]
Top CVEs Trending with Cybercriminals
An analysis of criminal forums reveal what publicly known vulnerabilities attackers are most interested in. [...]
« newer articles | page 5 | older articles »