Lucene search
K

372 matches found

Wired Threat Level
Wired Threat Level
added 2019/05/07 1:0 p.m.33 views

The Law Being Used to Prosecute Julian Assange Is Broken

Opinion: Julian Assange is being prosecuted under the Computer Fraud and Abuse Act, a minimally defined statute that can have maximally destructive consequences...

3.4AI score
Exploits0
Fedora
Fedora
added 2019/04/17 4:5 p.m.11 views

[SECURITY] Fedora 30 Update: shotwell-0.31.0-2.fc30

Shotwell is an easy-to-use, fast photo organizer designed for the GNOME desktop. It allows you to import photos from your camera or disk, organize them by date and subject matter, even ratings. It also offers basic photo editing, like crop, red-eye correction, color adjustments, and straighten...

2.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2019/03/26 12:12 a.m.48 views

DART: the Microsoft cybersecurity team we hope you never meet

If you spent 270 days away from home, not on vacation, you’d want it to be for a good reason. When boarding a plane, sometimes having been pulled out of bed to leave family for weeks on end, I know it’s because one of our customers is in need. It means there is a security compromise and they may ...

7.7AI score
Exploits0
NVD
NVD
added 2019/03/25 7:29 p.m.18 views

CVE-2019-7608

Kibana versions before 5.6.15 and 6.6.1 had a cross-site scripting XSS vulnerability that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

6.1CVSS7.2AI score0.01338EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2019/03/06 1:0 p.m.46 views

RSA Conference 2019: Data-Wiping Cyberattacks Plague Financial Firms

Over a quarter of surveyed financial institutions reported that they were targeted by destructive cyberattacks over the past year, bent on completely destroying data. That’s according to a new Carbon Black report unveiled at RSA this year. The report, “Modern Bank Heists: The Bank Robbery Shifts ...

Exploits0References4
Carbon Black Blog
Carbon Black Blog
added 2019/03/05 3:49 p.m.73 views

Modern Bank Heists: The Bank Robbery Shifts to Cyberspace

The financial sector has long been the target of some of the world’s greatest guilds of thieves, none perhaps more popular than the Dillinger gangs of the 1930s. In the second annual “Modern Bank Heists” report, Carbon Black collaborated with Optiv to survey CISOs at some of the world’s largest...

1.2AI score
Exploits0
ThreatPost
ThreatPost
added 2019/02/12 8:25 p.m.97 views

Attackers Completely Destroy VFEmail's Secure Mail Infrastructure

A catastrophic, smash-and-destroy cyberattack has eliminated the U.S. infrastructure for secure email service VFEmail. It’s a rare example of a purely destructive offensive, apparently unmotivated by financial gain or espionage goals. An attacker wiped out the company’s U.S. servers on Monday...

0.4AI score
Exploits0References7
Veracode
Veracode
added 2019/01/15 8:55 a.m.27 views

Cross-site Request Forgery (CSRF)

CloudForms Management Engine is vulnerable to cross-site request forgery CSRF. A remote attacker is able to bypass the Ruby on Rails protectfromforgery mechanism by sending a GET request for a destructive action...

6.8CVSS6.2AI score0.00602EPSS
Exploits0References5Affected Software1
FireEye
FireEye
added 2018/12/21 2:0 p.m.265 views

OVERRULED: Containing a Potentially Destructive Adversary

Introduction FireEye assesses APT33 may be behind a series of intrusions and attempted intrusions within the engineering industry. Public reporting indicates this activity may be related to recent destructive attacks. FireEye's Managed Defense has responded to and contained numerous intrusions th...

6.8CVSS0.4AI score0.84138EPSS
Exploits15
Talos Blog
Talos Blog
added 2018/12/14 8:30 a.m.1069 views

Cisco Coverage for Shamoon 2 & 3

Update Dec. 14, 2018 10:30 CST: Added new Shamoon 3 IOCs Shamoon is a type of destructive malware that has been previously associated with attacks against various organizations in the oil and gas industry that we've been tracking since 2012. A new variant of this threat, identified as Shamoon 2,...

1.3AI score
Exploits0
Trellix
Trellix
added 2018/12/14 12:0 a.m.8 views

Shamoon Returns to Wipe Systems in Middle East, Europe

ARCHIVED STORY Shamoon Returns to Wipe Systems in Middle East, Europe By Alexandre Mundo · December 14, 2018 Destructive malware has been employed by adversaries for years. Usually such attacks are carefully targeted and can be motivated by ideology, politics, or even financial aims. Destructive...

7AI score
Exploits0
Trellix
Trellix
added 2018/12/14 12:0 a.m.7 views

Shamoon Returns to Wipe Systems in Middle East, Europe

ARCHIVED STORY Shamoon Returns to Wipe Systems in Middle East, Europe By Alexandre Mundo · December 14, 2018 Destructive malware has been employed by adversaries for years. Usually such attacks are carefully targeted and can be motivated by ideology, politics, or even financial aims. Destructive...

7AI score
Exploits0
ThreatPost
ThreatPost
added 2018/12/13 1:18 p.m.13 views

Shamoon Reappears, Poised for a New Wiper Attack

A new version of the Shamoon data-wiping malware has emerged, marking the third time the destructive virus has been seen in the wild – and researchers believe a new campaign may be imminent. First spotted in 2012 in the attack on Saudi Aramco, Shamoon has the ability to destroy files on infected...

1.3AI score
Exploits0References6
Carbon Black Blog
Carbon Black Blog
added 2018/12/05 6:0 p.m.81 views

Top 5 Threat Hunting Myths: “Threat Hunting Is Too Complicated”

The cybersecurity landscape is in a constant state of change and, as many organizations have learned, it’s no longer a matter of if you’ll face a cyberattack, but when. In today’s world, attackers intentionally look normal to evade automated defenses. With the rise of ransomware, fileless and...

6.7AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/10/30 12:30 p.m.17 views

Carbon Black Report: Destructive Cyberattacks Increase Ahead of 2018 Midterm Elections

A trade war with China. A fragile agreement with North Korea. A growing fear of Russian hackers. Ahead of the 2018 U.S. midterm congressional elections, geopolitical conflict continues to play out in cyberspace. According to the world’s top incident response IR professionals, politically motivate...

0.4AI score
Exploits0
FireEye
FireEye
added 2018/10/03 8:0 a.m.389 views

APT38: Details on New North Korean Regime-Backed Threat Group

Today, we are releasing details on the threat group that we believe is responsible for conducting financial crime on behalf of the North Korean regime, stealing millions of dollars from banks worldwide. The group is particularly aggressive; they regularly use destructive malware to render victim...

7.4AI score
Exploits0
Carbon Black Blog
Carbon Black Blog
added 2018/10/02 1:13 p.m.38 views

Creating a Cyber Panic Room to Fight Off Invasions

Genghis Khan was a mastermind. A terrifyingly brilliant military strategist who altered the course of world history. He used fear to paralyze his enemies. “In one apocryphal account circulated to create anxiety among the enemy, the Mongols supposedly promised to retreat from a besieged city if th...

0.5AI score
Exploits0
RedhatCVE
RedhatCVE
added 2018/09/24 8:49 p.m.28 views

CVE-2018-3830

Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting XSS vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

8CVSS4.6AI score0.01872EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/09/24 12:0 a.m.98 views

Kibana ESA-2018-14

Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting XSS vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users. C Tenable Network Security, Inc. include"compat.inc"; if...

6.1CVSS6.8AI score0.01872EPSS
Exploits0References2
NVD
NVD
added 2018/09/19 7:29 p.m.25 views

CVE-2018-3830

Kibana versions 5.3.0 to 6.4.1 had a cross-site scripting XSS vulnerability via the source field formatter that could allow an attacker to obtain sensitive information from or perform destructive actions on behalf of other Kibana users...

6.1CVSS6AI score0.01872EPSS
Exploits0References3
Rows per page
Query Builder