Teen Behind Twitter Bit-Con Breach Cuts Plea Deal
The ‘young mastermind’ of the Twitter hack will serve three years in juvenile detention. [...]
Showing only posts tagged Web Security. Show all posts.
$4,000 COVID-19 ‘Relief Checks’ Cloak Dridex Malware
The American Rescue Act is the latest zeitgeisty lure being circulated in an email campaign. [...]
A New Paradigm in Data Security: Insider Risk Management
Insider Risk Management builds a framework around the new paradigm of "risk tolerance," aiming to give security teams the visibility and context around data activity to protect that data, without putting rigid constraints on users. [...]
Mom & Daughter Duo Hack Homecoming Crown
A Florida high-school student faces jail time for rigging her school's Homecoming Queen election. [...]
Exchange Cyberattacks Escalate as Microsoft Rolls One-Click Fix
Public proof-of-concept (PoC) exploits for ProxyLogon could be fanning a feeding frenzy of attacks even as patching makes progress. [...]
Google Releases Spectre PoC Exploit For Chrome
Google has released the side-channel exploit in hopes of motivating web-application developers to protect their sites. [...]
Top MSP Challenges in 2021
At SafeDNS, we see three entangled hurdles for MSPs in 2021 and the coming years— tied with the current economic uncertainty and somewhat linked to the pandemic. [...]
Cyberattacks See Fundamental Changes, A Year into COVID-19
A year after COVID-19 was officially determined to be a pandemic, the methods and tactics used by cybercriminals have drastically changed. [...]
Metamorfo Banking Trojan Abuses AutoHotKey to Avoid Detection
A legitimate binary for creating shortcut keys in Windows is being used to help the malware sneak past defenses, in a rash of new campaigns. [...]
NanoCore RAT Scurries Past Email Defenses with .ZIPX Tactic
A spam campaign hides a malicious executable behind file archive extensions. [...]
Microsoft Exchange Servers Face APT Attack Tsunami
At least 10 nation-state-backed groups are using the ProxyLogon exploit chain to compromise email servers, as compromises mount. [...]
FIN8 Resurfaces with Revamped Backdoor Malware
The financial cyber-gang is running limited attacks ahead of broader offensives on point-of-sale systems. [...]
Cyberattackers Exploiting Critical WordPress Plugin Bug
The security hole in the Plus Addons for Elementor plugin was used in active zero-day attacks prior to a patch being issued. [...]
Breach Exposes Verkada Security Camera Footage at Tesla, Cloudflare
Surveillance footage from companies such as Tesla as well as hospitals, prisons, police departments and schools was accessed in the hack. [...]
Microsoft Patch Tuesday Updates Fix 14 Critical Bugs
Microsoft's regularly scheduled March Patch Tuesday updates address 89 CVEs overall. [...]
Adobe Critical Code-Execution Flaws Plague Windows Users
The critical flaws exist in Adobe Framemaker, Connect and the Creative Cloud desktop application for Windows. [...]
Apple Plugs Severe WebKit Remote Code-Execution Hole
Apple pushed out security updates for a memory-corruption bug to devices running on iOS, macOS, watchOS and for Safari. [...]
Fake Google reCAPTCHA Phishing Attack Swipes Office 365 Passwords
A phishing attack targeting Microsoft users leverages a bogus Google reCAPTCHA system. [...]
U.S. DoD Weapons Programs Lack ‘Key’ Cybersecurity Measures
The lack of cybersecurity requirements in weapons contracts from the Department of Defense opens the door for dangerous cyberattacks. [...]
WordPress Injection Anchors Widespread Malware Campaign
Website admins should patch all plugins, WordPress itself and back-end servers as soon as possible. [...]
Massive Supply-Chain Cyberattack Breaches Several Airlines
The cyberattack on SITA, a nearly ubiquitous airline service provider, has compromised frequent-flyer data across many carriers. [...]
D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant
A new variant of the Gafgyt botnet - that's actively targeting vulnerable D-Link and Internet of Things devices - is the first variant of the malware to rely on Tor communications, researchers say. [...]
Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers
Researchers with Microsoft and FireEye found three new malware families, which they said are used by the threat group behind the SolarWinds attack. [...]
Cyberattackers Target Top Russian Cybercrime Forums
Elite Russian forums for cybercriminals have been hacked in a string of breaches, leaving hackers edgy and worried about law enforcement. [...]
CISA Orders Federal Agencies to Patch Exchange Servers
Espionage attacks exploiting the just-patched remote code-execution security bugs in Microsoft Exchange servers are quickly spreading. [...]
« newer articles | page 33 | older articles »