Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2020/07/02 4:6 p.m.80 views

Facebook Privacy Glitch Gave 5K Developers Access to ‘Expired’ Data

Facebook is facing yet another privacy faux pas in how its users’ data is collected and used by third-party apps. The social media giant said that it recently discovered that 5,000 developers received data from Facebook users — long after their access to that data should have expired. In 2018, on...

7AI score
Exploits0References11
ThreatPost
ThreatPost
added 2020/04/10 9:56 p.m.80 views

Apple, Google Team on Coronavirus Tracking – Sparking Privacy Fears

Apple and Google are teaming up to launch technology that traces the spread of the coronavirus, via apps for iOS and Android users. Despite the companies’ insistence that privacy will be “of utmost importance,” some in the security space remain wary of data privacy concerns around the newly...

6.6AI score
Exploits0References19
ThreatPost
ThreatPost
added 2020/04/09 2:0 p.m.80 views

Zoom Taps Ex-Facebook CISO Amid Security Snafus, Lawsuit

As it faces a major lawsuit, Zoom is taking a significant step to bolster security and privacy efforts by recruiting an industry heavy-hitter – former Facebook CISO Alex Stamos – to provide special counsel. It has also named third-party expert security advisory teams. The popular videoconferencin...

7AI score
Exploits0References20
ThreatPost
ThreatPost
added 2020/03/25 9:7 p.m.80 views

Apple Update Fixes WebKit Flaws in iOS, Safari

Apple has released a slew of patches across its iOS and macOS operating systems, Safari browser, watchOS, tvOS and iTunes. The most serious flaw in this latest security update, released Tuesday, exists in the WebKit and could enable remote code execution. Of the CVEs disclosed, 30 affected Apple’...

9.3CVSS0.8AI score0.26869EPSS
Exploits0References9
ThreatPost
ThreatPost
added 2020/03/25 1:12 p.m.80 views

TrickBot App Bypasses Non-SMS Banking 2FA

The TrickBot trojan has a new trick up its sleeve for bypassing a new kind of two-factor authentication 2FA security method used by banks – by fooling its victims into downloading a malicious Android app. The app, which researchers dubbed “TrickMo,” is still under active development. While TrickM...

0.2AI score
Exploits0References16
ThreatPost
ThreatPost
added 2020/02/05 4:50 p.m.80 views

WhatsApp Bug Allows Malicious Code-Injection, One-Click RCE

Security researchers have identified a JavaScript vulnerability in the WhatsApp desktop platform that could allow cybercriminals to spread malware, phishing or ransomware campaigns through notification messages that appear completely normal to unsuspecting users. And, further investigation shows...

5.8CVSS7.7AI score0.67859EPSS
Exploits5References12
ThreatPost
ThreatPost
added 2020/01/14 1:13 p.m.80 views

Apple Denies FBI Request to Unlock Shooter’s iPhone—Again

Apple once again is drawing the line at breaking into a password-protected iPhone for a criminal investigation, refusing a request by the Federal Bureau of Investigation FBI to help unlock the iPhones of a shooter responsible for an attack in Florida. The company late Monday said it won’t help th...

7AI score
Exploits0References12
ThreatPost
ThreatPost
added 2019/12/26 2:0 p.m.80 views

Combining AI and Playbooks to Predict Cyberattacks

When organizations invest in AI, they are not only able to automate menial tasks like patching, but they can also create an automated system that looks for and discovers attacks, not only after the fact, but even before they occur. This predictive capability becomes increasingly necessary as...

0.2AI score
Exploits0References4
ThreatPost
ThreatPost
added 2019/11/19 9:52 p.m.80 views

D-Link Adds More Buggy Router Models to ‘Won’t Fix’ List

D-Link has warned that more of its routers are vulnerable to critical flaws that allow remote hackers to take control of hardware and steal data. The routers won’t be fixed, said D-Link, explaining that the hardware has reached its end-of-life and will no longer receive security updates. The...

10CVSS10AI score0.99996EPSS
Exploits5References13
ThreatPost
ThreatPost
added 2019/09/19 4:44 p.m.80 views

These Hacks Require Literally Sneaking in the Backdoor

After slipping past security, picking a backdoor lock and gaining access to a company’s inner sanctum, a skilled hacker can cause mayhem. They can plant malware on a network, grab physical files and walk out the front door with a donut pilfered from the employee break room. Meet the world of a...

6.8AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/08/23 7:30 p.m.80 views

WordPress Plugins Exploited in Ongoing Attack, Researchers Warn

Researchers are warning of an ongoing campaign exploiting vulnerabilities in a slew of WordPress plugins. The campaign is redirecting traffic from victims’ websites to a number of potentially harmful locations. Impacted by the campaign is a plugin called Simple 301 Redirects – Addon – Bulk Upload...

7.3AI score
Exploits0References13
ThreatPost
ThreatPost
added 2019/08/15 6:41 p.m.80 views

Apache Security Advisories Red Flag Wrong Versions in Patching Gaffe

Researchers have pinpointed errors in two dozen Apache Struts security advisories, which warn users of vulnerabilities in the popular open-source web app development framework. They say that the security advisories listed incorrect versions impacted by the vulnerabilities. The concern from this...

7.5CVSS9.3AI score0.98931EPSS
Exploits25References12
ThreatPost
ThreatPost
added 2019/07/10 4:17 p.m.80 views

Zoom Pushes Emergency Patch for Webcam Hijack Flaw

After facing public outcry over its handling of a zero-day vulnerability in its collaboration client for Mac, the Zoom web- and video-conferencing service has rushed out an emergency patch. The flaw CVE-2019–13450, allows a malicious website to hijack a user’s web camera without their permission,...

6.8AI score0.03523EPSS
Exploits1References7
ThreatPost
ThreatPost
added 2019/06/04 3:16 p.m.80 views

A New Approach for Combating Insider Threats

LONDON, UK – As insider attacks continue to plague the enterprise the security community is doubling down on finding new solutions to mitigate against the age-old problem. An insider threat can encompass anything from a gullible employee falling for a spearphishing email, to unaware new hires...

Exploits0References4
ThreatPost
ThreatPost
added 2019/05/30 1:16 p.m.80 views

2.3B Files Exposed in a Year: A New Record for Misconfigs

The last 12 months has seen the exposure of a record 2.3 billion files across cloud databases and online shares, according to an analysis released on Thursday. A report from Digital Shadows’ Photon Research Team, Too Much Information: The Sequel, assessed the scale of inadvertent global data...

0.2AI score
Exploits0References4
ThreatPost
ThreatPost
added 2019/04/10 8:11 p.m.80 views

SAS 2019: Joe FitzPatrick Warns of the '$5 Supply Chain Attack'

SINGAPORE – At the Security Analyst Summit this year in Singapore, Threatpost editor Tara Seals catches up with Joe FitzPatrick, researcher with Securing Hardware, who led a session during the conference titled “A Measured Response to a Grain of Rice: An Implant in the Shell.” After a 2018...

7.1AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/03/29 4:6 p.m.80 views

Zero-Day Bug Lays Open TP-Link Smart Home Router

A zero-day bug has been uncovered in the TP-Link SR20 smart hub and home router, which would allow a local adversary to execute arbitrary commands on the device without authentication and establish a persistent backdoor for remote access. The SR20 is an all-in-one router that can also work as an...

8.3AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/02/22 5:21 p.m.80 views

Threatpost News Wrap Podcast For Feb. 22

Threatpost editors Lindsey O’Donnell and Tom Spring discuss the biggest news of the week ended Feb. 22, including a report about flaws in password managers, and a 19-year-old flaw found in WinRAR. The Threatpost team also discussed an upcoming webinar on Feb. 27 at 2 p.m. ET. Patrick Hevesi of...

7.5AI score
Exploits0References6
ThreatPost
ThreatPost
added 2019/02/19 5:23 p.m.80 views

ATM Jackpotting Malware Hones Its Heist Tools

The WinPot ATM jackpotting malware is evolving, as its authors look to solve the obstacles that get in their way. The latest is an effort to help ATM hackers, a.k.a. jackpotters, better target their efforts in order to steal more cash in a lesser amount of time. Thieves infect ATMs through physic...

0.9AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/01/23 4:23 p.m.80 views

'Chaos' iPhone X Attack Alleges Remote Jailbreak

A Chinese security researcher has published what he claims is a proof-of-concept exploit that would allow a remote attacker to jailbreak an iPhoneX, unbeknownst to the user – allowing them to gain access to a victim’s data, processing power and more. Qixun Zhao of Qihoo 360 built the exploit, whi...

6.8CVSS0.6AI score0.28548EPSS
Exploits3References6
ThreatPost
ThreatPost
added 2018/10/16 2:45 p.m.80 views

Privacy Regulation Could Be a Test for States’ Rights

When the California Consumer Privacy Act CCPA passed in June, security experts applauded the state legislation as a win for consumers. The ruling gave residents certain rights around how their personal data can be stored, accessed, sold and deleted. But months later in September, the U.S. Chamber...

0.2AI score
Exploits0References17
ThreatPost
ThreatPost
added 2017/09/05 2:10 p.m.80 views

Patch Released for Critical Apache Struts Bug

The Apache Software Foundation has patched a critical remote code execution vulnerability affecting all versions of the popular application development framework Struts since 2008. All web applications using the framework’s REST plugin are vulnerable. Users are advised to upgrade their Apache...

10CVSS9.9AI score0.99999EPSS
Exploits66References9
ThreatPost
ThreatPost
added 2016/05/25 2:58 p.m.80 views

Wekby APT Gang Seen Using DNS Tunneling for Command and Control

Palo Alto Networks is reporting a shift in malware tactics used by the APT group Wekby that has added a rare but effective new tool to its bag of tricks. The security firm reported on Tuesday that over the past week, Wekby attackers are turning to the technique known as DNS tunneling in lieu of...

10CVSS9.9AI score0.99344EPSS
Exploits6References6
ThreatPost
ThreatPost
added 2015/02/05 10:19 a.m.80 views

IE Memory Attacks Net ZDI $125,000 Microsoft Bounty

When Microsoft introduced use-after-free mitigations into Internet Explorer last summer, certain classes of exploits were closed off, and researchers and black hats were left to chase new ways to corrupt memory inside the browser. A team of experts from HP’s Zero Day Initiative were among those w...

9.3CVSS0.4AI score0.99945EPSS
Exploits33References7
ThreatPost
ThreatPost
added 2014/10/17 2:20 p.m.80 views

Microsoft Patches FASTFIX on Older Versions of Windows

UPDATE – Microsoft this week patched a vulnerability in the FASTFAT driver that interacts with FAT32 disk partitions, closing a privilege escalation and code execution hole in Windows Server 2003, Windows Vista and Windows Server 2008. But what about Windows 7 and up versions of the OS, you may b...

9.3CVSS0.9AI score0.99945EPSS
Exploits33References5
ThreatPost
ThreatPost
added 2011/12/29 3:31 p.m.80 views

Microsoft to Release Emergency Fix for ASP.NET DoS Flaw

UPDATED Microsoft on Thursday plans to release an emergency out-of-band update to address a vulnerability in ASP.NET that could allow an attacker to consume all of the resources on a vulnerable server with a single specially designed HTTP request. The vulnerability affects a wide range of Web...

9.3CVSS0.99945EPSS
Exploits33References5
ThreatPost
ThreatPost
added 2010/08/02 4:44 a.m.80 views

Paul Roberts Joins Threatpost

In the year and a half since we first launched Threatpost, the site has grown very quickly, probably more quickly than any of us had even hoped it might. We’ve added a couple of regular podcasts, original videos, developed a stable of terrific regular contributors and recently launched our first...

9.3CVSS0.2AI score0.99945EPSS
Exploits33
ThreatPost
ThreatPost
added 2022/06/17 1:34 p.m.79 views

China-linked APT Flew Under Radar for Decade

Researchers have identified a small yet potent China-linked APT that has flown under the radar for nearly a decade running campaigns against government, education and telecommunication organizations in Southeast Asia and Australia. Researchers from SentinelLabs said the APT, which they dubbed Aoq...

9.3CVSS7.5AI score0.99966EPSS
Exploits25References1
ThreatPost
ThreatPost
added 2022/01/25 6:54 p.m.79 views

MacOS Malware ‘DazzleSpy’ Used in Watering-Hole Attacks

A new family of cyber-espionage malware targeting macOS and delivered via a Safari exploit was used against politically active, pro-democracy residents of Hong Kong, in August watering-hole attacks initially discovered by Google TAG, researchers said on Tuesday. The watering-hole attacks – which...

9.3CVSS9.2AI score0.14542EPSS
Exploits0References17
ThreatPost
ThreatPost
added 2021/11/18 9:45 p.m.79 views

Ransomware Phishing Emails Sneak Through SEGs

Secure email gateway SEG protections aren’t necessarily enough to stop phishing emails from delivering ransomware to employees, especially if the cybercrooks are using legitimate cloud services to host malicious pages. Researchers are raising the alarm over a phishing email kicking off a...

7.6AI score
Exploits0References6
ThreatPost
ThreatPost
added 2021/10/13 11:22 a.m.79 views

30 Mins or Less: Rapid Attacks Extort Orgs Without Ransomware

In less time than it takes to get a stuffed crust pizza delivered, a new group called SnapMC can breach an organization’s systems, steal their sensitive data, and demand payment to keep it from being published, according to a new report from NCC Group’s threat intelligence team — no ransomware...

10CVSS9AI score0.99737EPSS
Exploits18References10
ThreatPost
ThreatPost
added 2021/09/28 5:45 p.m.79 views

SAS 2021: FinSpy Surveillance Kit Re-Emerges Stronger Than Ever

The FinSpy surveillance kit has been driven from its hiding place following an eight-month investigation by Kaspersky researchers. Detections of the spyware trojan have dwindled since 2018, but it turns out that it hasn’t gone away – it’s simply been hiding behind various first-stage implants tha...

9.8CVSS8.8AI score0.99999EPSS
Exploits11References4
ThreatPost
ThreatPost
added 2021/08/31 8:35 p.m.79 views

Fortress Home Security Open to Remote Disarmament

A pair of vulnerabilities in the Fortress S03 WiFi Home Security System could allow cyberattackers to remotely disarm the system, leaving homes open to unlawful entry. The Fortress platform is a consumer-grade home security system that allows users to mix and match various sensors, IP cameras and...

7.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2021/07/23 6:52 p.m.79 views

5 Steps to Improving Ransomware Resiliency

The ransomware landscape is evolving, and ransomware is now one of the most popular for cybercriminals and damaging types of malwares. The JBS, Colonial Pipeline and Kaseya attacks are the recent high-profile examples of the impact of ransomware and the monumental consequences it can have: Shifts...

7.1AI score
Exploits0References7
ThreatPost
ThreatPost
added 2021/04/27 7:43 p.m.79 views

Linux Kernel Bug Opens Door to Wider Cyberattacks

An information-disclosure security vulnerability has been discovered in the Linux kernel, which can be exploited to expose information in the kernel stack memory of vulnerable devices. Specifically, the bug CVE-2020-28588 exists in the /proc/pid/syscall functionality of 32-bit ARM devices running...

6.4AI score0.011EPSS
Exploits1References9
ThreatPost
ThreatPost
added 2021/04/12 8:18 p.m.79 views

1.3M Clubhouse Users’ Data Dumped in Hacker Forum for Free

Clubhouse, the startup invitation-only chat app, is the latest social-media platform to see mammoth troves of user data collected and posted in underground forums. An SQL file containing the personal data of 1.3 million Clubhouse users has been posted in a hacker forum for free. Names, user IDs,...

7.9AI score
Exploits0References11
ThreatPost
ThreatPost
added 2020/11/19 7:52 p.m.79 views

GO SMS Pro Android App Exposes Private Photos, Videos and Messages

A security weakness discovered in the GO SMS Pro Android app can be exploited to publicly expose media sent using the app, according to researchers. The GO SMS Pro application is a popular messenger app with more than 100 million downloads from the Google Play store. Researchers at Trustwave...

0.5AI score0.65907EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2020/11/18 5:37 p.m.79 views

Google Chrome 87 Closes High-Severity 'NAT Slipstreaming' Hole

Google has released patches for several high-severity vulnerabilities in its Chrome browser with the rollout of Chrome 87 for Windows, Mac and Linux users. Overall, Google fixed 33 vulnerabilities in its latest version, Chrome 87.0.4280.66, which is being rolled out over the coming days. This...

0.1AI score0.02826EPSS
Exploits1References10
ThreatPost
ThreatPost
added 2020/11/12 9:33 p.m.79 views

Animal Jam Hacked, 46M Records Roam the Dark Web

The company behind the wildly popular kids’ game Animal Jam has announced that hackers stole a menagerie of account records during a breach of a third-party vendor’s server in October — more than 46 million of them, in fact. The company, WildWorks, said that it was unaware that the data had been...

7.2AI score
Exploits0References15
ThreatPost
ThreatPost
added 2020/09/25 6:41 p.m.79 views

Ring's Flying In-Home Camera Drone Escalates Privacy Worries

Ring’s newly announced robot drone – a connected device that flies around homes taking security footage – is causing privacy experts’ concerns to take off. Amazon on Thursday unveiled the Always Home Cam as part of its Ring division, which will cost $249.99 and starts shipping next year. The...

6.9AI score
Exploits0References14
ThreatPost
ThreatPost
added 2020/05/18 4:16 p.m.79 views

Edison Mail iOS Bug Exposes Emails to Strangers

Edison Mail, a popular third-party email app, has warned thousands of iOS users that their emails may have been compromised after a security flaw exposed emails to complete strangers. Edison Mail, owned by Edison Software Inc., is in the top 100 productivity apps on the Apple app store, and touts...

7AI score
Exploits0References13
ThreatPost
ThreatPost
added 2020/03/09 3:41 p.m.79 views

AMD Downplays CPU Threat Opening Chips to Data Leak Attacks

AMD is seeking to downplay side-channel attacks that can leak potentially sensitive data from its processors released between 2011 and 2019. The “Take A Way” attack, so-called by researchers with the Graz University of Technology in a new analysis this weekend, is a side-channel attack...

0.6AI score
Exploits0References13
ThreatPost
ThreatPost
added 2019/08/14 7:46 p.m.79 views

Fingerprints of 1M Exposed in Public Biometrics Database

Researchers discovered the personal and biometrics data of more than a million people left publicly exposed on a database owned by Suprema, a biometric security company. Data includes facial recognition and fingerprint information collected by the UK metropolitan police, small local businesses an...

6.4AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/07/15 1:0 p.m.79 views

Why Cities Are a Low-Hanging Fruit For Ransomware

Ransomware attacks against local governments and cities are repeatedly making headlines, with crippling results on city operations and budgets. Last month, the Florida city of Riviera Beach paid hackers $600,000 after being hit by a ransomware attack that downed its computer systems for three...

7.9AI score
Exploits0References13
ThreatPost
ThreatPost
added 2019/05/29 5:37 p.m.79 views

5G IoT: Literally a Matter of Life or Death

THE HAGUE, Netherlands – Mobile operators need to get security right as they deploy their 5G networks this year and next – because the ramifications for getting it wrong will include loss of life. That’s the consensus at GSMA’s Mobile360 Security for 5G conference, where speakers on Wednesday not...

7.9AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/04/12 2:58 p.m.79 views

North Korea's Hidden Cobra Strikes U.S. Targets with HOPLIGHT

A never-before-seen spyware variant called HOPLIGHT is targeting U.S. companies and government agencies in active attacks, according to the U.S. Department of Homeland Security. In an advisory this week, the United States Computer Emergency Readiness Team US-CERT said that there are nine differen...

7.5AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/04/03 9:27 p.m.79 views

Nvidia Fixes 8 High-Severity Flaws Allowing DoS, Code Execution

Nvidia has released fixes for eight high-severity vulnerabilities in its Linux for Tegra driver packages. The worst of these flaws could allow information disclosure, denial of service and code execution on impacted systems. Overall, the chipmaker on Tuesday released patches for 13 flaws that...

9.3CVSS1.1AI score0.60631EPSS
Exploits2References13
ThreatPost
ThreatPost
added 2019/03/27 9:8 p.m.79 views

FTC Demands Broadband Providers Reveal Data Handling Practices

The Federal Trade Commission FTC is putting pressure on internet broadband providers to reveal exactly what data they’re collecting – and how they are using it. The FTC on Tuesday issued orders to seven U.S. ISPs requesting that they detail how they collect, retain, use and disclose information...

0.2AI score
Exploits0References10
ThreatPost
ThreatPost
added 2019/03/21 4:19 p.m.79 views

MyPillow and Amerisleep Targeted in Magecart Group Attacks

The Magecart threat group continues its offensive with two newly disclosed breaches targeting bedding retailers MyPillow and Amerisleep. The group attacked the two companies with online payment credit card skimming attacks, researchers with RiskIQ said on Wednesday. While MyPillow removed a skimm...

6.7AI score
Exploits0References7
ThreatPost
ThreatPost
added 2018/10/15 2:35 p.m.79 views

Facebook Offers Details on ‘View As’ Breach, Revises Numbers

The data breach first disclosed by Facebook in September has directly impacted the access tokens of 30 million accounts, the social media giant confirmed Friday. Facebook recently admitted that hackers exploited a flaw in its “View As” feature, which lets users see what their profiles look like...

0.1AI score
Exploits0References5
Total number of security vulnerabilities5000