Lucene search
+L

490 matches found

ThreatPost
ThreatPost
added 2014/02/14 2:16 p.m.11 views

List of 8,000 FTP Credentials for Sale in Underground Forums

Hackers are targeting FTP upload sites with the hopes of redirecting victims to spam or even infecting webservers that rely on FTP applications for updates. Hold Security reported yesterday it had secured a list of credentials for close to 7,800 FTP sites being circulated in cybercrime forums. Th...

7.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2014/01/07 5:5 p.m.12 views

DailyMotion Hosting Malvertising Leading to Fake AV Attack

Video-sharing site DailyMotion, one of the most popular destinations on the Web, is in the throes of an attack where it is serving malicious ads redirecting users to a fake AV scam. Security firm Invincea reported the issue to the website, and as of 4 p.m. ET, DailyMotion was still serving the fa...

1.7AI score
Exploits0References1
Cvelist
Cvelist
added 2014/01/02 3:0 p.m.21 views

CVE-2013-7256

Cross-site request forgery CSRF vulnerability in Opsview before 4.4.2 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

7.1AI score0.0057EPSS
Exploits0References2
NVD
NVD
added 2013/12/17 4:46 a.m.32 views

CVE-2013-6192

Cross-site request forgery CSRF vulnerability in HP Operations Orchestration before 9 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7AI score0.00968EPSS
Exploits1References2
ThreatPost
ThreatPost
added 2013/11/05 2:51 p.m.9 views

Mobile Android banking Trojan Svpeng Adds Phishing Know-How

An Android banking Trojan known as Svpeng has added phishing capabilities to its arsenal, and researchers have spotted it attacking Russian banking clients in what is perceived to be a dry run before it is adapted for other countries. “Typically, however, cybercriminals first test-run a technolog...

2.4AI score
Exploits0References1
Cvelist
Cvelist
added 2013/11/02 8:0 p.m.26 views

CVE-2013-6346

Cross-site request forgery CSRF vulnerability in the ZCC page in Novell ZENworks Configuration Management ZCM before 11.2.4 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

7AI score0.00576EPSS
Exploits0References1
ThreatPost
ThreatPost
added 2013/04/05 1:57 p.m.7 views

Skype Malware Stealing Victims' Processing Power to Mine Bitcoins

Bitcoin may still be a virtual unknown quantity for most people, but the digital currency has not escaped the notice of attackers, many of whom are turning their attention to finding ways to use the system for their own gains. The attacks against Bitcoin exchange Mt. Gox and hack of Instawallet...

1.9AI score
Exploits0References3
NVD
NVD
added 2013/03/28 11:55 p.m.14 views

CVE-2012-5216

Cross-site request forgery CSRF vulnerability on HP ProCurve 1700-8 aka J9079A switches with software before VA.02.09 and 1700-24 aka J9080A switches with software before VB.02.09 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.1AI score0.00968EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2013/01/18 7:30 p.m.14 views

Shylock banking malware spreads via Skype

The banking Trojan known as Shylock has been updated with new functionality, including the ability to spread over Skype. The program was discovered in 2011 that steals online banking credentials and other financial information from infected computers. Shylock, named after a character from...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/01/18 8:30 a.m.16 views

Shylock banking malware spreads via Skype

The banking Trojan known as Shylock has been updated with new functionality, including the ability to spread over Skype. The program was discovered in 2011 that steals online banking credentials and other financial information from infected computers. Shylock, named after a character from...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2013/01/15 10:49 a.m.45 views

Operation Red October : Cyber Espionage campaign against many Governments

A new sensational discovered has been announced by Kaspersky Lab's Global Research & Analysis Team result of an investigation after several attacks hit computer networks of various international diplomatic service agencies. A new large scale cyber-espionage operation has been discovered, named Re...

9.3CVSS7.1AI score0.99966EPSS
Exploits35
The Hacker News
The Hacker News
added 2012/12/12 8:8 a.m.10 views

Facebook Helps FBI to shuts down Butterfly botnet theft $850 millions

The U.S. Department of Justice said on Tuesday that they’ve arrested 10 suspects from from Bosnia and Herzegovina, Croatia, Macedonia, New Zealand, Peru, the United Kingdom, and the United States involved in a global botnet operation that infected more than 11 million systems. The ring is said to...

6.8AI score
Exploits0
UbuntuCve
UbuntuCve
added 2012/10/25 5:55 p.m.36 views

CVE-2011-5223

Cross-site request forgery CSRF vulnerability in logout.php in Cacti before 0.8.7i allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

4.3CVSS5.9AI score0.02122EPSS
Exploits0References6
Cvelist
Cvelist
added 2012/09/08 10:0 a.m.20 views

CVE-2012-3256

Cross-site request forgery CSRF vulnerability in HP Business Availability Center BAC 8.07 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

7.2AI score0.00968EPSS
Exploits0References2
The Hacker News
The Hacker News
added 2012/09/03 8:34 a.m.7 views

Iran still on target of 'Mahdi' malware after detection

In JULY Kaspersky Lab and Seculert revealed the presence of a new cyber-espionage weapon known targeting users in the Middle East. Despite the recent uncovering of the 'Madhi' malware that has infected several hundred computers in the Middle East, researchers say the virus is continuing to spread...

7.3AI score
Exploits0
Prion
Prion
added 2012/08/14 11:55 p.m.9 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the CDN2 Video module 6.x for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.6AI score0.00695EPSS
Exploits0References6Affected Software1
Prion
Prion
added 2012/05/02 10:55 p.m.14 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in HP Insight Management Agents before 9.0.0.0 on Windows Server 2003 and 2008 allows remote attackers to hijack the authentication of unspecified victims via unknown vectors...

6.8CVSS7.6AI score0.01892EPSS
Exploits0References6Affected Software1
ThreatPost
ThreatPost
added 2012/03/27 7:48 p.m.12 views

Money Mules, Not Customers, The Real Victims of Bank Fraud

Money mules – the accomplices who help move stolen funds – may be the real victims of online banking scams, not the bank customers who are the ostensible targets of fraudsters, according to new research from Microsoft. In a paper that turns conventional thinking about online banking crime on its...

7.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2011/12/13 12:49 p.m.18 views

More Apps Pulled From Android Market Over Hidden SMS Functionality

There has been another round of malicious apps discovered in the official Android Market, with this wave containing hidden functionality to send SMS messages to premium-rate numbers. The apps, which Google has pulled from the Market already, are counterfeit versions of popular games, including...

0.5AI score
Exploits0References3
ThreatPost
ThreatPost
added 2011/12/10 10:42 p.m.13 views

FTC Gives Refunds to Rogue Antivirus Victims

The Federal Trade Commission FTC is sending reimbursement checks to more than 300,000 people victimized by a rogue antivirus scam. According to the FTC, the checks are the result of the settlement between the agency and several defendants named in a complaint the FTC filed in 2008. As part of the...

1.6AI score
Exploits0References2
Rows per page
Query Builder