Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2022/03/08 9:42 p.m.179 views

Microsoft Addresses 3 Zero-Days & 3 Critical Bugs for March Patch Tuesday

Microsoft has addressed 71 security vulnerabilities in its scheduled March Patch Tuesday update – only three of which are rated critical in severity. The other 68 are all rated “important.” Three of the bugs are listed as publicly known zero-days, but none of them are listed as having been...

8.8CVSS9AI score0.40789EPSS
Exploits3References15
ThreatPost
ThreatPost
added 2022/02/18 4:55 p.m.179 views

New Critical RCE Bug Found in Adobe Commerce, Magento

Yet another zero-day bug has been discovered in the Magento Open Source and Adobe Commerce platforms, while researchers have created a working proof-of-concept PoC exploit for the recently patched CVE-2022-24086 vulnerability that came under active attack and forced Adobe to push out an emergency...

10CVSS9.7AI score0.99199EPSS
Exploits6References15
ThreatPost
ThreatPost
added 2021/06/22 11:14 a.m.179 views

Six Flags to Pay $36M Over Collection of Fingerprints

Theme park operator Six Flags has agreed to pay $36 million to settle a class-action lawsuit over its acquisition of the fingerprint data of visitors to its theme parks. The Illinois Supreme Court ruled in the case Rosenbach v. Six Flags that collecting biometric data at premises’ gates by scanni...

6.9AI score
Exploits0References9
ThreatPost
ThreatPost
added 2021/03/04 5:8 p.m.179 views

CISA Orders Fed Agencies to Patch Exchange Servers

Hot on the heels of Microsoft’s announcement about active cyber-espionage campaigns that are exploiting four serious security vulnerabilities in Microsoft Exchange Server, the U.S. government is mandating patching for the issues. The news comes as security firms report escalating numbers of relat...

0.4AI score0.99999EPSS
Exploits66References6
ThreatPost
ThreatPost
added 2021/03/03 9:15 p.m.179 views

Malaysia Air Downplays Frequent-Flyer Data Breach

Malaysia Airlines sent out an email to frequent flyer program members assuring them that there’s “no evidence” their personal data has been misused in the wake of a supply-chain attack via a third-party vendor. However, experts think that’s unlikely. And, they say the repercussions could be...

0.8AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/08/13 7:16 p.m.179 views

22 Critical Flaws Patched in Adobe Photoshop

Adobe has patched 22 critical vulnerabilities in Adobe Photoshop CC, its photo editing application, which the company warns can enable arbitrary code execution. Overall, Adobe issued patches for 119 important and critical vulnerabilities in August, including 25 critical bugs across several...

10CVSS1.6AI score0.14215EPSS
Exploits7References8
ThreatPost
ThreatPost
added 2019/06/13 7:33 p.m.179 views

Evernote Critical Flaw Opened Personal Data of Millions to Attack

UPDATE A critical flaw in the popular note-taking Evernote extension could have allowed attackers to steal personal data – including emails and financial transactions – of millions. Specifically impacted was the Evernote Web Clipper extension for the Chrome browser, which lets users capture...

4.3CVSS0.6AI score0.01076EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2017/03/20 2:50 p.m.179 views

Local Windows Admins Can Hijack Sessions Without Credentials

A researcher has exposed how attackers with local admin privileges could use native command-line Windows tools to hijack other users’ sessions without credentials. Researcher Alexander Korznikov on Friday published a report in which he describes how he could, locally and remotely via Remote Deskt...

9.3CVSS1AI score0.99945EPSS
Exploits33References3
ThreatPost
ThreatPost
added 2022/05/16 11:46 a.m.178 views

Microsoft’s May Patch Tuesday Updates Cause Windows AD Authentication Errors

Microsoft is alerting customers that its May Patch Tuesday update is causing authentications errors and failures tied to Windows Active Directory Domain Services. In a Friday update, Microsoft said it was investigating the issue. The warning comes amid shared reports of multiple services and...

9CVSS9.5AI score0.83277EPSS
Exploits8References15
ThreatPost
ThreatPost
added 2021/07/26 3:0 p.m.178 views

Malware Makers Using ‘Exotic’ Programming Languages

Malware authors are increasingly using rarely spotted programming languages such as Go, Rust, Nim and DLang in order to create new tools and to hinder analysis, researchers have found. Use of those four languages is escalating in the number of malware families being identified, according to a...

8AI score
Exploits0References22
ThreatPost
ThreatPost
added 2021/07/12 6:1 p.m.178 views

Critical RCE Vulnerability in ForgeRock OpenAM Under Active Attack

Attackers are actively exploiting a critical, pre-authorization remote-code execution RCE vulnerability in the popular Access Management platform from digital identity management firm ForgeRock. Access Management, a commercial access-management platform, is based on the OpenAM open-source...

10CVSS9.6AI score0.99999EPSS
Exploits8References17
ThreatPost
ThreatPost
added 2020/05/28 1:54 p.m.178 views

Valak Loader Revamped to Rob Microsoft Exchange Servers

Threat actors have revamped a popular malware loader into a stealthy infostealer that targets Microsoft Exchange servers to pilfer enterprise mailing information, passwords and enterprise certificates, researchers have found. Security researchers from Cybereason Nocturnus have discovered Valak, a...

6.6AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/04/22 2:35 p.m.178 views

Microsoft Issues Out-Of-Band Security Update For Office, Paint 3D

Microsoft has released an out-of-band security update for Microsoft Office, Office 365 ProPlus and Paint 3D. The applications are affected by multiple Autodesk vulnerabilities that, if exploited, could enable remote code execution. The flaws, all rated “important” in severity, are tied to six CVE...

9.3CVSS8.6AI score0.26869EPSS
Exploits0References15
ThreatPost
ThreatPost
added 2020/01/08 2:30 p.m.178 views

TikTok Riddled With Security Flaws

Researchers say they have discovered several major vulnerabilities in the short form video app TikTok. The reported vulnerabilities come as scrutiny around the Chinese-owned platform increases. Researchers say the most serious vulnerability in the platform could allow attackers to remotely take...

0.2AI score0.0552EPSS
Exploits1References7
ThreatPost
ThreatPost
added 2019/12/05 11:44 a.m.178 views

'Ultimate' MiTM Attack Steals $1M from Israeli Startup

Hackers pulled off an elaborate man-in-the-middle campaign to rip off an Israeli startup by intercepting a wire transfer from a Chinese venture-capital firm intended for the new business. New research by Check Point Software details how the security vendor uncovered the wire-transfer heist, in...

0.4AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/07/09 8:4 p.m.178 views

Microsoft Patches A Pair of Zero-Days Under Active Attack

Microsoft has addressed 77 vulnerabilities in its July Patch Tuesday update, with 15 of them rated as critical and two known to be under active exploit; and Adobe issued a small group of updates, with surprisingly none for Acrobat Reader or Flash. Eleven of the critical bugs are for scripting...

8.5CVSS9.2AI score0.98745EPSS
Exploits7References18
ThreatPost
ThreatPost
added 2019/06/20 9:30 p.m.178 views

Match, Tinder Swipe Right For Privacy Red Flags, Say Experts

Over 70 percent of subscribers across Match.com express concern about the amount of data they share with the platform, according to a ProPrivacy.com survey. But despite those concerns, users of the service do it anyway and also remain unaware of just how much data the company collects and how the...

6.5AI score
Exploits0References12
ThreatPost
ThreatPost
added 2019/05/16 6:1 p.m.178 views

Forbes Becomes Latest Victim of Magecart Payment Card Skimmer

The payment card-siphoning Magecart group has struck again; this time injecting web-skimming scripts into the subscription website for the Forbes print magazine as well as a slew of others over the past week. Scroll down for our exclusive podcast on Magecart The script, which has since been...

6.9AI score
Exploits0References18
ThreatPost
ThreatPost
added 2017/10/26 1:53 p.m.178 views

EternalRomance Exploit Found in Bad Rabbit Ransomware

One day after clear ties were established between the Bad Rabbit ransomware attacks and this summer’s NotPetya outbreak, researchers at Cisco today strengthened that bond disclosing that the leaked NSA exploit EternalRomance was used to spread the malware on compromised networks. This contradicts...

9.3CVSS0.3AI score0.8985EPSS
Exploits18References8
ThreatPost
ThreatPost
added 2016/07/12 9:31 a.m.178 views

Malware Dropper Built to Target European Energy Company

A malware dropper with designs on specific targets was found in a private underground forum and is likely the predecessor to the Furtim malware that was uncovered in May. Researchers at SentinelOne today published a report that says the dropper sample they investigated, which they’re calling SFG,...

7.2CVSS0.8AI score0.87042EPSS
Exploits60References2
ThreatPost
ThreatPost
added 2009/11/30 3:38 p.m.178 views

Latest MS Patches Causing Black Screen of Death

The IDG News Service is reporting that Microsoft’s latest round of security patches appears to be causing some PCs to seize up and display a black screen, rendering the computer useless. The problem affects Microsoft products including Windows 7, Vista and XP operating systems. From the article:...

9.3CVSS0.8AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2022/02/23 2:0 p.m.177 views

Creaky Old WannaCry, GandCrab Top the Ransomware Scene

What’s old in ransomware is new again. Or, more accurately, never really went away. New analysis shows that for a years-old malware, WannaCry is still a viciously active pest. The self-propagating ransomware cryptoworm that’s been parasitizing victims since 2017 was the top most detected ransomwa...

8.5AI score
Exploits0References19
ThreatPost
ThreatPost
added 2021/08/26 12:39 p.m.177 views

Microsoft Breaks Silence on Barrage of ProxyShell Attacks

Microsoft has broken its silence on the recent barrage of attacks on several ProxyShell vulnerabilities in that were highlighted by a researcher at Black Hat earlier this month. The company released an advisory late Wednesday letting customers know that threat actors may use unpatched Exchange...

10CVSS9.2AI score0.99999EPSS
Exploits18References15
ThreatPost
ThreatPost
added 2021/07/12 8:23 p.m.177 views

WordPress File Management Plugin Riddled with Critical Bugs

A critical cross-site scripting XSS bug impacts WordPress sites running the Frontend File Manager plugin and allows remote unauthenticated users to inject JavaScript code into vulnerable websites to create admin user accounts. The bug is one of six critical flaws impacting the WordPress plugin...

6.9AI score
Exploits0References7
ThreatPost
ThreatPost
added 2021/03/16 8:27 p.m.177 views

Mom & Daughter Duo Hack Homecoming Crown

A 17-year-old high school senior along with her mother, Laura Rose Carroll, were arrested this week, charged with accessing student records in a fraudulent attempt to rig her school’s Homecoming Queen election. Carroll worked as an assistant principal at Bellview Elementary School in the Escambia...

7.3AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/08/10 3:56 p.m.177 views

TeamViewer Flaw in Windows App Allows Password-Cracking

Popular remote-support software TeamViewer has patched a high-severity flaw in its desktop app for Windows. If exploited, the flaw could allow remote, unauthenticated attackers to execute code on users’ systems or crack their TeamViewer passwords. TeamViewer is a proprietary software application...

6.8CVSS8.8AI score0.26869EPSS
Exploits3References12
ThreatPost
ThreatPost
added 2019/11/29 2:0 p.m.177 views

Amazon Plans Ring Facial Recognition-Based 'Watch List', Report

UPDATE Amazon is planning to use facial recognition software and its Ring smart home security devices to create an artificial-intelligence enabled “neighborhood watch list,” according to reports. According to internal documents reviewed by The Intercept, the “watch list” would automatically alert...

0.2AI score
Exploits0References13
ThreatPost
ThreatPost
added 2019/05/13 4:46 p.m.177 views

ScarCruft APT Adds Bluetooth Harvester to its Malware Bag of Tricks

The ScarCruft Korean-speaking APT is changing up its espionage tactics to include an unusual piece of malware devoted to harvesting Bluetooth information – while also showing some overlap with the DarkHotel APT. An analysis of ScarCruft’s binary infection procedure by Kaspersky Lab shows that in ...

7.2CVSS0.8AI score0.73721EPSS
Exploits18References10
ThreatPost
ThreatPost
added 2009/07/06 2:55 p.m.177 views

UPDATED: Mass Attacks Exploiting 0-Day in Microsoft Video DLL

There is a widespread attack underway against an unpatched vulnerability in the Msvidctl DLL, with attackers using thousands of newly compromised Web sites to exploit victims’ PCs via drive-by downloads. The attacks are using Internet Explorer as the attack vector and are pushing a Trojan...

9.3CVSS0.9AI score0.99945EPSS
Exploits33References7
ThreatPost
ThreatPost
added 2020/07/14 7:1 p.m.176 views

Critical DNS Bug Opens Windows Servers to Infrastructure Takeover

A critical Microsoft Windows Server bug opens company networks to hackers, allowing them to potentially seize control of IT infrastructures. Microsoft issued a patch for the bug on Tuesday as part of its July Patch Tuesday roundup. It turns out that the bug is 17 years old. Impacted are Windows...

10CVSS0.2AI score0.92178EPSS
Exploits21References7
ThreatPost
ThreatPost
added 2019/05/02 9:15 p.m.176 views

Critical Flaws Found in Eight Wireless Presentation Systems

Multiple wireless presentation systems have critical vulnerabilities – including a remote command-injection glitch and an unauthenticated remote stack buffer overflow flaw. Wireless presentation systems allow users to display their content directly from their laptop no network cable necessary by...

10CVSS0.9AI score0.98952EPSS
Exploits21References15
ThreatPost
ThreatPost
added 2019/02/22 6:32 p.m.176 views

Data Breaches of the Week: Tales of PoS Malware, Latrine Status

The data-breach onslaught continued this week with casualties sprinkled across the globe. Victims included retailers, banks and one state-owned gas station. The theme this was the Indian subcontinent, with consumers in Pakistan and India feeling the main brunt of the proceedings. A point-of-sale...

6.8AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/01/24 2:11 p.m.176 views

Bit-and-Piece DDoS Method Emerges to Torment ISPs

A pioneering distributed denial-of-service DDoS attack pattern has emerged, targeting internet service providers ISPs with something researchers have dubbed the bit-and-piece “Mongol” attack. The approach involves spreading out junk traffic across large numbers of IP addresses in order to evade...

0.5AI score
Exploits0References2
ThreatPost
ThreatPost
added 2015/01/29 11:21 a.m.176 views

GitHub Doubles Maximum Bug Bounty Payouts

Almost a year to the day since Github announced its bug bounty program, the Git repository said yesterday that it will double its maximum payout to $10,000. Ben Toews, a GitHub staffer, said yesterday that since the launch of the GitHub Security Bug Bounty, 73 previously unknown vulnerabilities...

1AI score0.99993EPSS
Exploits41References7
ThreatPost
ThreatPost
added 2022/03/18 8:5 p.m.175 views

Agencies Warn on Satellite Hacks & GPS Jamming Affecting Airplanes, Critical Infrastructure

In a warning to aviation authorities and air operators on Thursday, the European Union Aviation Safety Agency EASA warned of satellite jamming and spoofing attacks across a broad swath of Eastern Europe that could affect air navigation systems. The warning came in tandem with a separate alert fro...

8.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2021/10/26 12:9 p.m.175 views

Millions of Android Users Scammed in SMS Fraud Driven by Tik-Tok Ads

Threat actors are using malicious Android apps to scam users into signing up for a bogus premium SMS subscription service, which results in big charges accruing on their phone bills. Jakub Vavra from the threat operations team of security firm Avast uncovered the campaign, which he dubbed UltimaS...

7.7AI score
Exploits0References5
ThreatPost
ThreatPost
added 2021/08/03 3:28 p.m.175 views

Raccoon Stealer Bundles Malware, Propagates Via SEO

Criminals behind the Raccoon Stealer platform have updated their services to include tools for siphoning cryptocurrency from a target’s computer and new remote access features for dropping malware and scooping up files. The stealer-as-a-service platform, whose customers are typically rookie...

7.8AI score
Exploits0References5
ThreatPost
ThreatPost
added 2021/02/18 5:59 p.m.175 views

Exploit Details Emerge for Unpatched Microsoft Bug

New details have emerged about an unpatched security vulnerability in Microsoft’s Internet Explorer that was recently used in a complex campaign against security researchers. A fresh analysis from 0patch offers further insight into where the bug exists and how it can be triggered in real-world...

8AI score
Exploits0References6
ThreatPost
ThreatPost
added 2020/09/17 8:23 p.m.175 views

Apple Bug Allows Code Execution on iPhone, iPad, iPod

Apple has updated its iOS and iPadOS operating systems, which addressed a wide range of flaws in its iPhone, iPad and iPod devices. The most severe of these could allow an adversary to exploit a privilege-escalation vulnerability against any of the devices and ultimately gain arbitrary...

4.3CVSS0.2AI score0.02986EPSS
Exploits1References11
ThreatPost
ThreatPost
added 2019/10/07 6:16 p.m.175 views

D-Link Home Routers Open to Remote Takeover Will Remain Unpatched

D-Link won’t patch a critical unauthenticated command-injection vulnerability in its routers that could allow an attacker to remotely take over the devices and execute code. The vulnerability CVE-2019-16920 exists in the latest firmware for the DIR-655, DIR-866L, DIR-652 and DHP-1565 products,...

10CVSS0.9AI score0.99996EPSS
Exploits5References7
ThreatPost
ThreatPost
added 2019/09/13 7:15 p.m.175 views

iPhone iOS 13 Lockscreen Bypass Flaw Exposes Contacts

An iPhone lock screen bypass has been discovered that could enable an attacker to access victims’ address books, including their contacts’ names, email addresses, phone numbers, mailing addresses and more. The hack was first discovered by researcher Jose Rodriguez, an Apple enthusiast based in...

6.2AI score0.00786EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2019/09/02 12:0 p.m.175 views

Gamification Can Transform Company Cybersecurity Culture

Chief information security officers CISOs of Global 2000 enterprises have one of the toughest jobs in the world, defending their organization’s cyberspace and being the guardian of its assets and private information. But CISOs also have a second, even bigger problem: Their own company employees...

Exploits0References3
ThreatPost
ThreatPost
added 2019/06/03 4:11 p.m.175 views

Smart-TV Bug Allows Rogue Broadcasts

An unpatched vulnerability in smart TVs would allow attackers on the same Wi-Fi network to hijack the TV set to broadcast their own content – including, potentially, fake emergency broadcast messages. Discovered by security researcher Dhiraj Mishra, the flaw CVE-2019-12477 is found in the SUPRA...

7.5CVSS1.8AI score0.94928EPSS
Exploits18References7
ThreatPost
ThreatPost
added 2022/03/29 2:2 p.m.174 views

Exchange Servers Speared in IcedID Phishing Campaign

The ever-evolving banking trojan IcedID is back again with a phishing campaign that uses previously compromised Microsoft Exchange servers to send emails that appear to come from legitimate accounts. Attackers also are using stealthy new payload-delivery tactics to spread the modular malware...

8.7AI score
Exploits0References18
ThreatPost
ThreatPost
added 2021/07/01 11:41 a.m.174 views

LinkedIn’s 1.2B Data-Scrape Victims Targeted by Attackers

Just days after a yet another data-scraping operation aimed at LinkedIn was discovered, evidence has popped up in a popular hacker forum that the vast amount of lifted data is being collated and refined to identify specific targets. This might signal the start of a series of LinkedIn-fueled...

6.8AI score
Exploits0References8
ThreatPost
ThreatPost
added 2021/03/12 3:39 p.m.175 views

Molson Coors Cracks Open a Cyberattack Investigation

Another high-profile company has been hit with a cyber attack that’s causing a major disruption to its business. Brewing company Molson Coors acknowledged on Thursday that it has “experienced a systems outage that was caused by a cybersecurity incident,” according to a Form 8-K filed with the SEC...

0.2AI score
Exploits0References16
ThreatPost
ThreatPost
added 2020/07/17 5:36 p.m.174 views

Twitter Hack Update: What We Know (and What We Don't)

UPDATED 7/18 at 12:50 p.m. ET Earlier this week, Twitter locked down thousands of verified accounts, including the accounts of Joe Biden, Bill Gates, Elon Musk, Apple, Uber and others, after it became clear that hackers had been able to compromise them. The tip-off? Suddenly these high-profile...

7.1AI score
Exploits0References21
ThreatPost
ThreatPost
added 2020/06/03 4:51 p.m.174 views

Critical SAP ASE Flaws Allow Complete Control of Databases

Researchers are urging users to apply patches for several critical vulnerabilities in SAP’s Adaptive Server Enterprise ASE. If exploited, the most severe flaws could give unprivileged users complete control of databases and – in some cases – even underlying operating systems. ASE previously known...

6.5CVSS9.8AI score0.26869EPSS
Exploits1References12
ThreatPost
ThreatPost
added 2020/02/13 8:21 p.m.174 views

Critical WordPress Plugin Bug Afflicts 700K Sites

A popular WordPress plugin, which helps make websites compliant with the General Data Protection Regulation GDPR, has issued fixes for a critical flaw. If exploited, the vulnerability could enable attackers to modify content or inject malicious JavaScript code into victim websites. The plugin, GD...

8.2AI score0.0552EPSS
Exploits1References8
ThreatPost
ThreatPost
added 2019/10/02 8:44 p.m.174 views

Zendesk Exposes 10,000 Accounts to Unknown Third Party

Cloud-based customer service company Zendesk notified customers that account information for 10,000 users was accessed prior to November 2016. In a note posted Wednesday, Zendesk said email addresses, user names, and phone numbers were accessed for customers and users of its Support and Chat...

0.9AI score
Exploits0References6
Total number of security vulnerabilities5000