Lucene search
K

40 matches found

Packet Storm News
Packet Storm News
added 2026/03/22 12:0 a.m.6 views

Estimating the Social Cost of Corporate Data Breaches

While the size of a data breach is typically measured by the number of consumer, customer, or user records exposed or compromised, its economic impact is generally measured from the point of view of the corporation suffering the data breach: cost in crisis management, legal fees, drop in stock...

5.9AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/01/23 12:1 p.m.6 views

AIs are Getting Better at Finding and Exploiting Internet Vulnerabilities

Really interesting blog post from Anthropic: In a recent evaluation of AI models’ cyber capabilities, current Claude models can now succeed at multistage attacks on networks with dozens of hosts using only standard, open-source tools, instead of the custom tools needed by previous generations. Th...

5.7AI score
Exploits0
ThreatPost
ThreatPost
added 2021/04/29 6:42 p.m.40 views

Experian API Leaks Most Americans’ Credit Scores

A researcher is claiming that the credit scores of almost every American were exposed through an API tool used by the Experian credit bureau, that he said was left open on a lender site without even basic security protections. Experian, for its part, refuted concerns from the security community...

0.1AI score
Exploits0References12
Microsoft Secure
Microsoft Secure
added 2021/01/06 5:0 p.m.38 views

Privacy breaches: Using Microsoft 365 Advanced Audit and Advanced eDiscovery to minimize impact

GDPR, HIPAA, GLBA, all 50 U.S. States, and many countries have privacy breach reporting requirements. If an organization experiences a breach of customer or employee personal information, they must report it within the required time frame. The size and scope of this reporting effort can be massiv...

1.1AI score
Exploits0
ThreatPost
ThreatPost
added 2020/03/18 9:22 p.m.192 views

WordPress, Apache Struts Attract the Most Bug Exploits

WordPress and Apache Struts vulnerabilities were the most-targeted by cybercriminals in web and application frameworks in 2019 – while input-validation bugs edged out cross-site scripting XSS as the most-weaponized weakness type. That’s according to the RiskSense Spotlight Report, which analyzed...

7.7AI score
Exploits0References6
HackRead
HackRead
added 2020/02/11 12:1 a.m.41 views

US charges 4 Chinese military hackers over 2017 Equifax breach

By Waqas The US government has charged four Chinese military officials over 2017's massive Equifax breach. This is a post from HackRead.com Read the original post: US charges 4 Chinese military hackers over 2017 Equifax breach...

3.2AI score
Exploits0
The Hacker News
The Hacker News
added 2020/02/10 3:43 p.m.4 views

U.S. Charges 4 Chinese Military Hackers Over Equifax Data Breach

The United States Department of Justice today announced charges against 4 Chinese military hackers who were allegedly behind the Equifax data breach that exposed the personal and financial data of nearly 150 million Americans. In a joint press conference held today with the Attorney General Willi...

5.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2019/12/23 5:41 p.m.60 views

Online privacy in 2019: a legislative review

For decades, the United States treated data privacy like an aging home, patching individual leaks and drafts only when a new storm hit. The country passed a law protecting healthcare-related information, and not much else. It then passed a law protecting video rental information, and not much els...

6.9AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/12/24 6:56 p.m.87 views

A week in security (December 17 – 23)

Last week on Labs we looked at Fuchsia OS as a possible alternative for Android, explained all the reasons why cybercriminals want to hack your phone, discussed a flaw in Twitter form that may have been abused by nation states, gave you a Christmas tech scams roundup, revealed why many online...

7.5AI score
Exploits0
ThreatPost
ThreatPost
added 2018/10/03 8:38 p.m.8 views

Cloud, Containers, Orchestration Big Factors in BSIMM9

As software and applications increasingly head to the cloud, traditional enterprise software security initiatives are getting turned on their head. The push to the cloud, experts say, isn’t just taking applications and services off premises: It’s redefining how DevOps and traditional IT departmen...

0.2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2018/09/26 8:48 p.m.13 views

2018 Has Been Open Season on Open Source Supply Chains

As the number of open source components used in software supply chains shoot up, hackers are going along for the ride. Increasingly threat actors are planting bad code in open-source repositories in the hopes to harvest the flaws later when used in larger banking, manufacturing and healthcare Dev...

7.4AI score
Exploits0References5
Trend Micro Simply Security
Trend Micro Simply Security
added 2018/09/07 11:30 a.m.52 views

This Week in Security News: Tracking and Hacking

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, Google revealed a secret deal with Mastercard that allows it to track what users buy offline. Also, Senate and House representatives warn th...

0.5AI score
Exploits0
ThreatPost
ThreatPost
added 2018/09/05 5:48 p.m.205 views

Active Campaign Exploits Critical Apache Struts 2 Flaw in the Wild

It was only a matter of time before attacks were seen in the wild, and now it’s happened. A known threat actor has mounted a large cryptomining campaign using the recently disclosed Apache Struts 2 critical remote code-execution vulnerability. It uses a new malware designed for persistence and...

10CVSS9.9AI score0.99999EPSS
Exploits118References10
Krebs on Security
Krebs on Security
added 2018/08/23 8:22 p.m.102 views

Experts Urge Rapid Patching of ‘Struts’ Bug

In September 2017, Equifax disclosed that a failure to patch one of its Internet servers against a pervasive software flaw -- in a Web component known as Apache Struts -- led to a breach that exposed personal data on 147 million Americans. Now security experts are warning that blueprints showing...

0.4AI score0.99993EPSS
Exploits41
The Hacker News
The Hacker News
added 2018/08/22 2:4 p.m.1186 views

New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers

Semmle security researcher Man Yue Mo has disclosed a critical remote code execution vulnerability in the popular Apache Struts web application framework that could allow remote attackers to run malicious code on the affected servers. Apache Struts is an open source framework for developing web...

10CVSS0.3AI score0.99999EPSS
Exploits104
Trend Micro Simply Security
Trend Micro Simply Security
added 2018/05/11 2:12 p.m.30 views

This Week in Security News: Exposure and Susceptibility

Welcome to our weekly roundup, where we share what you need to know about the cybersecurity news and events that happened over the past few days. This week, a new report revealed that the Equifax breach had a larger impact than previously thought. In addition, The Senate Intelligence Committee...

6.8AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/04/09 3:16 p.m.56 views

A week in security (April 02 – April 08)

Last week, we took a look at fake Whatsapp antics, dubious gaming extensions, and a huge Panera bread breach. There was also LockCrypt ransomware to contend with, we had a poke around Linkedin, and we published another Physician, protect thyself blog. Other news Compromised cash register systems...

1.1AI score
Exploits0
Malwarebytes
Malwarebytes
added 2018/02/19 4:55 p.m.43 views

A week in security (February 12 – February 18)

Last week on Malwarebytes Labs, we looked at a huge Android cryptomining campaign, malicious apps on Google Play, and some Apple scams doing the rounds. We also explored the world of healthcare security, and dived into the land of scammy Valentine's Day tricks and cheats. Other news Thought the...

6.8AI score
Exploits0
Qualys Blog
Qualys Blog
added 2018/02/16 5:6 p.m.159 views

Hackers Hit the Olympics, While Patch Tuesday and Meltdown / Spectre Keep IT Departments On Edge

This week offered a representative sampling of different corners of the cyber security world: The monthly Patch Tuesday, a brazen attack against the Olympics, new Meltdown and Spectre concerns, and a boost for Intel’s bug bounty program. Oh, and the gargantuan Equifax data breach may have been ev...

9.3CVSS7.3AI score0.93838EPSS
Exploits12
Carbon Black Blog
Carbon Black Blog
added 2017/11/10 1:33 p.m.42 views

November 10, 2017 – Morning Cyber Coffee Headlines – “Veterans Day” Edition

Good morning! Sit with Carbon Black this morning over a cup of coffee or tea and browse a few industry headlines to get the day started. We’ve got just enough information below to get you through that first cup…enjoy! November 10, 2017 - Headlines Carbon Black in the News: Eric O' Neill Talks...

6.6AI score
Exploits0
Rows per page
Query Builder