Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2021/01/26 5:24 p.m.99 views

Criminal, Domestic Violence Case Info Exposed in Cook County Leak

A non-password protected database, belonging to a county in Illinois, exposed 323,000 court records for at least four months, according to researchers. The database exposed the names of various people involved in sensitive criminal, domestic-abuse or child-custody court cases. Researchers from...

6.8AI score
Exploits0References8
ThreatPost
ThreatPost
added 2020/08/03 7:3 p.m.99 views

Netgear Won't Patch 45 Router Models Vulnerable to Serious Flaw

UPDATE Netgear will not patch 45 router models that are vulnerable to a high-severity remote code execution flaw, the router company revealed last week. However, the company says that routers that won’t receive updates are outdated or have reached EOL End of Life. The remote code execution...

10AI score0.26869EPSS
Exploits0References17
ThreatPost
ThreatPost
added 2020/03/30 8:53 p.m.99 views

Nation-State Attacks Drop in Latest Google Analysis

Google has registered a significant drop in government-backed cyberattacks against its properties and the people who use its products. Google sends out warnings if it detects that an account is a target of government-backed phishing or malware attempts. For 2019, the internet giant sent almost...

7.6CVSS0.1AI score0.86863EPSS
Exploits39References15
ThreatPost
ThreatPost
added 2019/09/30 5:2 p.m.99 views

New Bug Found in NSA’s Ghidra Tool

A medium severity bug reported on Saturday impacts Ghidra, a free, open-source software reverse-engineering tool released by the National Security Agency earlier this year. The vulnerability allows a remote attacker to compromise exposed systems, according to a NIST National Vulnerability Databas...

7.8CVSS0.1AI score0.05133EPSS
Exploits7References9
ThreatPost
ThreatPost
added 2019/04/25 3:55 p.m.99 views

Amazon Employees Given 'Broad Access' to Personal Alexa Info

Employees at Amazon can access geolocation information for Alexa users, according to reports – thus uncovering their home addresses and even satellite pictures of their houses generated from a service such as Google Earth. Alexa is the built-in voice assistant shipped with devices like Amazon Ech...

9CVSS8.6AI score0.99965EPSS
Exploits30References2
ThreatPost
ThreatPost
added 2019/04/10 8:12 a.m.99 views

SAS 2019: Triton ICS Malware Hits A Second Victim

SINGAPORE – The group behind the Triton malware, which first came to light after a disruptive critical-infrastructure attack on Saudi oil giant Petro Rabigh in 2017, has found a second victim. According to researchers at FireEye, the cybercriminals behind Triton, also called Trisis, have once aga...

6.9AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/03/30 1:0 p.m.99 views

Medical Weed Dispensary Exposes Health Data for Thousands

A data breach at a medical marijuana dispensary company operating in Canada has sent the personal health privacy of about 34,000 patients up in smoke. An electronic medical record system used by Natural Health Services – a self-described “cannabinoid medical clinic that specializes in cannabis...

1.2AI score
Exploits0References3
ThreatPost
ThreatPost
added 2019/03/13 4:23 p.m.99 views

Three Ways DNS is Weaponized and How to Mitigate the Risk

In the early stages of the “Net” each computer system participating in this network could only be contacted by knowing it’s unique 32bit IP address. As the Net grew into the Internet that we know today, some changes had to be made to allow this system of interconnected computers to communicate wi...

Exploits0References6
ThreatPost
ThreatPost
added 2016/12/05 3:32 p.m.99 views

Dirty Cow Vulnerability Patched in Android Security Bulletin

The Dirty Cow vulnerability lived in Linux for close to a decade, and while it was patched in October in the kernel and in Linux distributions, Android users had to wait for more than a month for their fix. Today, Google included a patch for CVE-2016-5195 in the monthly Android Security Bulletin,...

7.2CVSS1.4AI score0.83524EPSS
Exploits82References4
ThreatPost
ThreatPost
added 2016/08/11 11:31 a.m.99 views

Microsoft Mistakenly Leaks Secure Boot Key

Update Opponents of the government’s constant talk about intentional backdoors and exceptional access finally may have their case study as to why it’s such a bad idea. Two researchers operating under aliases my123 and slipstream this week posted a report—accompanied by a relentless chiptune—that...

9.3CVSS8.1AI score0.99945EPSS
Exploits33References9
ThreatPost
ThreatPost
added 2015/07/23 9:14 a.m.99 views

Four Zero Days Disclosed in Internet Explorer

UPDATE–As if all of the vulnerabilities in Flash and Windows discovered in the Hacking Team document cache and the 193 bugs Oracle fixed last week weren’t enough for organizations to deal with, HP’s Zero Day Initiative has released four new zero days in Internet Explorer Mobile that can lead to...

9.3CVSS0.4AI score0.99945EPSS
Exploits33References3
ThreatPost
ThreatPost
added 2012/02/14 8:17 p.m.99 views

Microsoft Fixes Critical IE, Windows Bugs with February Patch Tuesday

Microsoft released nine security updates Tuesday, four critical; five important, fixing 21 different holes in various applications with its February patch release. The four critical fixes deal with vulnerabilities in the company’s Windows, Internet Explorer, .NET Framework and Silverlight program...

9.3CVSS0.2AI score0.99945EPSS
Exploits33References4
ThreatPost
ThreatPost
added 2010/09/01 1:38 p.m.99 views

Microsoft Publishes New FixIt Tool For DLL Bug

Microsoft has released some updated guidance on the recent DLL-hijacking bug, including a new FixIt tool that enables the workaround for the vulnerability that Microsoft shipped late last month. The new guidance includes a detailed explanation of the bug itself as well as how potential attacks...

9.3CVSS0.4AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2022/02/24 2:0 p.m.98 views

The Art of Non-boring Cybersec Training–Podcast

Log4j, ransomware, cloud vulnerabilities, phishing: Cyber threats are manifold. They all pale, however, in comparison to the security black holes that walk around on two legs. Studies have shown that nearly all successful breaches stem from human error, be it failure to install security patches...

8.6AI score
Exploits0References8
ThreatPost
ThreatPost
added 2021/03/10 8:25 p.m.98 views

Cyberattackers Exploiting Critical WordPress Plugin Bug

The Plus Addons for Elementor plugin for WordPress has a critical security vulnerability that attackers can exploit to quickly, easily and remotely take over a website. First reported as a zero-day bug, researchers said it’s being actively attacked in the wild. The plugin, which has more than...

2.1AI score0.14462EPSS
Exploits3References10
ThreatPost
ThreatPost
added 2020/04/23 1:48 p.m.98 views

Fake Skype, Signal Apps Used to Spread Surveillanceware

Cybercriminals are increasingly peddling booby-trapped version of popular apps such as Skype and Signal that contain surveillanceware. Apurva Kumar, security intelligence engineer at Lookout, said that one such surveillanceware family that’s been spotted using this tactic is Monokle, a...

6.8AI score
Exploits0References5
ThreatPost
ThreatPost
added 2020/03/05 7:53 p.m.98 views

Chris Eng: Patch Management Challenges Drive 'Security Debt'

Companies are lagging when it comes to keeping up with software security patches – causing them to fall into “security debt,” Chris Eng, chief research officer with Veracode said. Today, challenges around patch management are being worsened by applications using third-party code and open source...

9.2AI score0.0552EPSS
Exploits1References2
ThreatPost
ThreatPost
added 2019/11/21 12:5 p.m.98 views

Popular Apps on Google Play Store Remain Unpatched

Most people think if they keep their mobile apps updated to the latest version, they also are patching for critical vulnerabilities. Not so, said researchers from Check Point Software, which discovered that outdated code—including known vulnerabilities—are still present in hundreds of popular app...

7.5CVSS1.1AI score0.0986EPSS
Exploits1References7
ThreatPost
ThreatPost
added 2019/11/18 8:30 p.m.98 views

The Unhappiest Subscribers on Earth? Disney+ Accounts Hacked & Hijacked

The highly anticipated Disney+ streaming service launched last week – and was promptly targeted by hackers looking to compromise users’ accounts. Around 4,000 customer account credentials have shown up for sale on hacking forums for around $3 each, according to reports. An investigation by ZDNet...

0.4AI score
Exploits0References11
ThreatPost
ThreatPost
added 2019/10/21 8:41 p.m.98 views

Gustuff Android Banker Switches Up Technical Approach

An Instagram-initiated campaign using the Gustuff Android mobile banking trojan has rolled out in October, featuring an updated version of the malware that lowers its detection profile. How the cybercriminals are rolling out the campaign is the same as a previous offensive seen in June, according...

9.3CVSS1.3AI score0.99512EPSS
Exploits75References5
ThreatPost
ThreatPost
added 2019/10/04 9:28 a.m.98 views

Virus Bulletin 2019: Magecart Infestations Saturate the Web

LONDON — Magecart, the digital card-skimming collective, is now so ubiquitous that its infrastructure is flooding the internet. In a paper presented at Virus Bulletin 2019 this week in London, Jordan Herman and Yonathan Klijnsma of RiskIQ said that there are now 573 known C2 domains for the group...

0.4AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/08/14 1:0 p.m.98 views

TikTok Scammers Cash In On Adult Dating, Impersonation Tricks

As social media platform TikTok becomes the top App Store download in 2019 – and the number three app download on Google Play and on platforms overall – scammers are looking to cash in on the troves of younger users of the popular platform. Tenable researcher Satnam Narang, who has been tracking...

6.9AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/07/09 11:9 p.m.98 views

Intel Patches High-Severity Flaw in Processor Diagnostic Tool

Intel has patched a high-severity vulnerability in its processor diagnostic tool, which could allow local attackers to launch several malicious attacks on affected devices, such as escalation of privilege or denial of service. The Intel Processor Diagnostic tool is a free product that allows user...

4.6CVSS8AI score0.00515EPSS
Exploits0References10
ThreatPost
ThreatPost
added 2019/01/28 2:39 p.m.98 views

Wordpress Users Urged to Delete Zero-Day-Ridden Plugin

Researchers are urging WordPress site owners to delete a compromised plugin after multiple zero-day vulnerabilities were discovered being exploited by a malicious actor. Researchers at Wordfence said on Friday that flaws in the plugin, Total Donations, are being exploited by malicious actors to...

7.5CVSS0.26076EPSS
Exploits1References5
ThreatPost
ThreatPost
added 2018/10/16 9:29 p.m.98 views

As End of Life Nears, More Than Half of Websites Still Use PHP V5

Almost 62 percent of all websites are still running PHP version 5 – even as version 5.6 of the server-side scripting language inches toward an ominous end-of-life. Hypertext Preprocessor PHP, a programming language designed for use in web-based applications with HTML content, supports a wide...

6.9AI score
Exploits0References13
ThreatPost
ThreatPost
added 2018/02/15 12:31 p.m.98 views

Word-based Malware Attack Doesn’t Use Macros

Typically, inbox-based attacks that include malicious Microsoft Office attachments require adversaries to trick users into enabling macros. But researchers say they have identified a new malicious email campaign that uses booby-trapped Office attachments that are macro-free. The attacks do not...

9.3CVSS0.99945EPSS
Exploits33References4
ThreatPost
ThreatPost
added 2017/08/12 8:0 a.m.98 views

APT28 Using EternalBlue to Attack Hotels in Europe, Middle East

Russian-speaking cyberespionage group APT28, also known as Sofacy, is believed to be behind a series of attacks last month against travelers staying in hotels in Europe and the Middle East. APT28 notably used the NSA hacking tool EternalBlue as part of its scheme to steal credentials from busines...

8.5AI score0.99993EPSS
Exploits41References3
ThreatPost
ThreatPost
added 2014/10/15 11:40 a.m.98 views

Microsoft Extends SHA-2, TLS Support for Windows

One by one, tech companies have been tossing aside the SHA-1 cryptographic algorithm like the unreliable collision-prone mess that it is. Microsoft was among the first to steer its customers away from SHA-1 and established an internal edict that its developers would no longer use it for...

9.3CVSS0.5AI score0.99945EPSS
Exploits33References8
ThreatPost
ThreatPost
added 2010/11/03 4:3 p.m.98 views

New Bug in Internet Explorer Used in Targeted Attacks

There’s a new flaw in all of the current versions of Internet Explorer that is being used in some targeted attacks right now. Microsoft has confirmed the bug and said it is working on a fix, but has no timeline for the patch release yet. The company did not rule out an emergency out-of-band patch...

9.3CVSS0.7AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2010/08/27 2:7 p.m.98 views

By Stefan Tanase

In general, a lack of user education and strong policies regarding online security often lead to undesirable events. Whether you manage an official Twitter account or a personal one, you should know how Twitter accounts get hacked so you can protect yourself. Here are some methods:...

3.9AI score
Exploits0
ThreatPost
ThreatPost
added 2009/03/03 8:45 p.m.98 views

Microsoft researching new (secure) browser

Microsoft’s research unit is investing resources in a new Web browser that could eventually signal a shift away from the ubiquitous Internet Explorer. According to a research paper released this week, the project is called Gazelle and is positioned as a secure web browser constructed as a...

9.3CVSS0.7AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2022/01/07 3:12 p.m.97 views

Log4J-Related RCE Flaw in H2 Database Earns Critical Warning

Researchers discovered a bug related to the Log4J logging library vulnerability, which in this case opens the door for an adversary to execute remote code on vulnerable systems. However, this flaw does not pose the same risk as the previously identified in Log4Shell, they said. JFrog security...

10CVSS9.8AI score0.99999EPSS
Exploits354References14
ThreatPost
ThreatPost
added 2021/10/13 8:17 p.m.97 views

FreakOut Botnet Turns DVRs Into Monero Cryptominers

Threat group FreakOut’s Necro botnet has developed a new trick: infecting Visual Tools DVRs with a Monero miner. Juniper Threat Labs researchers have issued a report detailing new activities from FreakOut, also known as Necro Python and Python.IRCBot. In late September, the team noticed that the...

10CVSS10AI score0.96598EPSS
Exploits20References8
ThreatPost
ThreatPost
added 2020/10/23 12:38 p.m.97 views

Ransomware Takes Down Network of French IT Giant

French IT giant Sopra Steria was hit with a cyber attack this week that disrupted the business of the firm and is widely believed to be the work of the threat actors behind Ryuk ransomware. The company revealed the attack in a brief press statement released Oct. 22, two days after officials said...

1.1AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/04/14 11:0 a.m.97 views

Malware Risks Triple on WFH Networks: Experts Offer Advice

Home office networks are 3.5 times more likely than corporate networks to be infected by malware, according a report from BitSight. That statistic comes into sharp focus as the coronavirus pandemic forces companies to shift to a work-from-home workforce. Those home networks that remote workers ar...

6.9AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/01/17 6:3 p.m.97 views

News Wrap: PoC Exploits, Cable Haunt and Joker Malware

This week’s news wrap podcast breaks down the biggest Threatpost security stories of the week, including: Various proof-of-concept exploits being released for serious vulnerabilities this week – including for the recently-patched crypto-spoofing vulnerability found by the National Security Agency...

7.3AI score
Exploits0References18
ThreatPost
ThreatPost
added 2019/12/24 6:13 p.m.97 views

Biggest Malware Threats of 2019

One out of five computer users were subject to at least one malware-class web attack in 2019. This past year cities such as New Orleans were under ransomware siege by the likes of malware Ryuk. Zero-day vulnerabilities were also in no short supply with targets such as Google Chrome and Operation...

0.3AI score
Exploits0References25
ThreatPost
ThreatPost
added 2019/12/18 6:13 p.m.97 views

TP-Link Routers Give Cyberattackers an Open Door to Business Networks

A firmware vulnerability in TP-Link Archer C5 v4 routers used in enterprise and home environments could allow unauthorized, remote access to the device with administrative privileges. The bug CVE-2017-7405 affects models that run firmware version 3.16.0 0.9.1 v600c.0 Build 180124 Rel.28919n. Firs...

7.5CVSS9.4AI score0.01558EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2019/12/13 6:33 p.m.97 views

Critical Bug in WordPress Plugins Open Sites to Hacker Takeovers

UPDATE Security researchers are warning users of two WordPress plugins – made by Brainstorm Force – that they need to patch a “major” vulnerability that could allow hackers to gain administrative access to any website using the plugins. According to Brainstorm Force, it is only aware of one...

8AI score
Exploits0References10
ThreatPost
ThreatPost
added 2019/12/09 8:36 p.m.97 views

Romanian Duo Receives Jailtime For Infecting 400,000 With Malware

A Romanian duo has been sentenced to jailtime for infecting 400,000 computers with malware that stole credentials and financial information, and scammed victims out of millions of dollars. The two Romanian hackers, Bogdan Nicolescu, 37, and Radu Miclaus, 37, were sentenced to 20 years and 18 year...

0.1AI score
Exploits0References13
ThreatPost
ThreatPost
added 2019/09/27 2:42 p.m.97 views

Arcane Stealer V Takes Aim at the Low End of the Dark Web

A general-purpose info-stealing malware is poised to make a splash in cybercrime circles, thanks to its market niche: It’s positioned as an ideal tool for low-skilled adversaries looking to get some skin in the game without having a lot of expertise. According to the Fidelis Threat Research Team...

1.1AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/08/15 8:54 p.m.97 views

How to Guide Users to Better Passwords by Learning from Attackers

If you’re human, you’ve probably re-used a password or two. In fact, the majority of internet users between the ages of 18-65 have done so, and the younger you are, the more likely it is that you use just one password for all of your accounts. Article written by: Chris LaConte, Chief Strategy...

7.4AI score
Exploits0References11
ThreatPost
ThreatPost
added 2019/07/18 6:33 p.m.97 views

Slack Initiates Mass Password Reset

Popular workspace collaboration platform Slack is in the middle of asking tens of thousands of users to reset their passwords after a security breach. The move is actually in response to new information that has come to light regarding a 2015 compromise, when hackers infiltrated Slack’s networks ...

0.4AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/07/11 7:59 p.m.97 views

Google Home Captures Porn and More, Unbeknownst to Users

Google Home smart speakers and the Google Assistant virtual assistant have been caught eavesdropping without permission — capturing and recording highly personal audio of domestic violence, confidential business calls — and even some users asking their smart speakers to play porn on their connect...

6.9AI score
Exploits0References10
ThreatPost
ThreatPost
added 2019/06/07 2:24 p.m.97 views

News Wrap: Infosecurity Europe Highlights and BlueKeep Anxiety

This week, the focus was on Infosecurity Europe, which took place in London and showcased a myriad of sessions, threat research and trends in the cybersecurity space. During the Threatpost news wrap for the week ended June 7, the team breaks down the top news from the show, as well as other...

7.3AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/05/23 2:6 p.m.97 views

Soaring Cryptocurrency Prices Draw Malicious Apps, Malware

The price of Bitcoin is steadily surging in May and hackers are looking to cash in on the uptick with fake cryptocurrency apps, malware and other related scams. In May 2019, Bitcoin prices climbed to their highest points this year, with the popular cryptocurrency being worth $8,300 its highest...

7AI score
Exploits0References11
ThreatPost
ThreatPost
added 2019/04/08 3:15 p.m.97 views

Spam Campaigns Spread Trickbot Malware with Tax Lure

Hackers pushing the TrickBot banking trojan are exploiting tax season by pushing malicious Microsoft Excel spreadsheet documents via spam campaigns. Researchers said that they discovered the malware in three different campaigns since Jan. 27, 2019. These campaigns target victims with emails...

7AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/03/27 3:26 p.m.97 views

Cybercriminals Have a Heyday with WinRAR Bug in Fresh Campaigns

A recently discovered vulnerability in the WinRAR file archival utility has been exploited in a slew of new campaigns, including one with a never-before-seen payload. The flurry of activity shows no sign of waning as cybercriminals continue to find success exploiting the bug. The campaigns take...

6.8CVSS0.96274EPSS
Exploits13References9
ThreatPost
ThreatPost
added 2019/02/12 8:25 p.m.97 views

Attackers Completely Destroy VFEmail's Secure Mail Infrastructure

A catastrophic, smash-and-destroy cyberattack has eliminated the U.S. infrastructure for secure email service VFEmail. It’s a rare example of a purely destructive offensive, apparently unmotivated by financial gain or espionage goals. An attacker wiped out the company’s U.S. servers on Monday...

0.4AI score
Exploits0References7
ThreatPost
ThreatPost
added 2012/10/24 7:1 p.m.97 views

Microsoft Agrees to Modify Windows 8 Following EU Complaint

Microsoft announced Wednesday it will tweak the release of its forthcoming Windows 8 operating system to comply with the European Commission, which argues that in its current state, the software fails to offer customers a browser choice screen to let them “easily choose their preferred web...

9.3CVSS0.99945EPSS
Exploits33References5
Total number of security vulnerabilities5000