Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2017/10/17 6:13 p.m.79 views

Oracle Patches 250 Bugs in Quarterly Critical Patch Update

Oracle patched 250 vulnerabilities across hundreds of different products as part of its quarterly Critical Patch Update released today. Rounding out the list of products with the most patches is Oracle Fusion Middleware with 38, Oracle Hospitality Applications with 37 and Oracle MySQL with 25. Of...

10CVSS0.99999EPSS
Exploits44References5
ThreatPost
ThreatPost
added 2017/09/22 2:2 p.m.79 views

EternalBlue Exploit Used in Retefe Banking Trojan Campaign

Criminals behind the Retefe banking Trojan have added a new component to their malware that uses the NSA exploit EternalBlue. The update makes Retefe the latest malware family to adopt the SMBv1 attack against a patched Windows vulnerability, and could signal an emerging trend, said researchers a...

9.3CVSS0.3AI score0.9923EPSS
Exploits55References3
ThreatPost
ThreatPost
added 2016/09/12 11:0 a.m.79 views

Critical MySQL Vulnerability Disclosed

A researcher has published details and a limited proof-of-concept exploit for a critical vulnerability in MySQL that has been patched by some vendors, but not yet by Oracle. The vulnerability allows an attacker to remotely or locally exploit a vulnerable MySQL database and execute arbitrary code,...

10CVSS1.7AI score0.6773EPSS
Exploits21References2
ThreatPost
ThreatPost
added 2016/07/08 11:4 a.m.79 views

'Dropping Elephant' APT Attackers Targets Old Windows Flaws

Don’t judge an APT by its exploits alone. That’s the takeaway from a report that details a unique advanced persistent threat that leverages a kludge of unsophisticated, outdated and rudimentary attack tools to conduct cyber espionage. The target of the attacks are government and diplomatic agenci...

9.3CVSS0.9AI score0.99966EPSS
Exploits23References1
ThreatPost
ThreatPost
added 2015/10/15 3:32 p.m.79 views

Latest Microsoft Transparency Report Details Content Removal Requests

Microsoft launched a new transparency website this week that bundles reports detailing requests for data the company has received, including those from law enforcement, the government, and elsewhere. The page, which Microsoft is calling its Transparency Hub, is somewhat similar to what Apple did...

9.3CVSS0.4AI score0.99945EPSS
Exploits33References5
ThreatPost
ThreatPost
added 2015/08/12 10:49 a.m.79 views

Microsoft Patches USB-Related Flaw Used in Targeted Attacks

It used to be that dropping a USB stick in a parking lot in the hope that someone plugs the malicious peripheral into an important computer was the realm of penetration testers and ambitious nation-state actors. That’s just not so anymore. The practice has gone mainstream, even infiltrating popul...

9.3CVSS0.99945EPSS
Exploits47References9
ThreatPost
ThreatPost
added 2013/05/09 12:4 p.m.79 views

Microsoft Fix It a Temporary Patch for IE 8 Zero Day Flaw

Microsoft has released a Fix-It to address an Internet Explorer 8 zero-day that was exploited in a watering hole attack against the U.S. Department of Labor website last week. The Fix It is a temporary mitigation until a patch is released. Microsoft’s next scheduled Patch Tuesday security updates...

9.3CVSS0.3AI score0.99945EPSS
Exploits44References8
ThreatPost
ThreatPost
added 2012/04/17 6:33 p.m.79 views

Errors, Outliers Obscure Cybercrime Losses

Estimates of the extent of cyber crime are hopelessly overblown, two computer security researchers argue in an editorial from Sunday’s New York Times. Arguing counter to the prevailing opinion that online crime is a modern day Yukon Gold Rush for entrepreneurial hackers, the two Microsoft...

9.3CVSS0.99945EPSS
Exploits33References4
ThreatPost
ThreatPost
added 2009/05/12 10:23 p.m.79 views

Pirated Windows 7 builds botnet with Trojan

From eWEEK Brian Prince Attackers pushing pirated, malware-laced copies of Microsoft’s upcoming Windows 7 operating system have been actively trying to build a botnet. According to researchers at Damballa, attackers hid a Trojan inside of pirated copies of the operating system and began circulati...

9.3CVSS3.9AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2022/02/03 8:15 p.m.78 views

Critical Cisco Bugs Open VPN Routers to Cyberattacks

UPDATE Critical security vulnerabilities in Cisco’s Small Business RV Series routers could allow privilege escalation, remote code execution RCE with root privileges on the devices and more. The RV series is a set of affordable VPN appliances that enable remote workers to connect to a company...

10CVSS9.5AI score0.80031EPSS
Exploits3References5
ThreatPost
ThreatPost
added 2021/09/29 6:8 p.m.78 views

GriftHorse Money-Stealing Trojan Takes 10M Android Users for a Ride

More than 10 million Android users have been saddled with a malware called GriftHorse that’s trojanizing various applications and secretly subscribing victims to premium mobile services – a type of billing fraud that researchers categorize as “fleeceware.” Zimperium uncovered more than 130...

6.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2021/07/29 4:25 p.m.78 views

Israeli Government Agencies Visit NSO Group Offices

UPDATE Authorities from multiple agencies of the Israeli government paid a visit the offices of the NSO Group as part of a new investigation into claims that the secretive firm is selling its spyware to threat actors for targeted attacks, according to the Israeli Ministry of Defense. A single twe...

6.4AI score
Exploits0References14
ThreatPost
ThreatPost
added 2021/05/28 8:8 p.m.78 views

Hackers Exploit Post-COVID Return to Offices

With COVID-19 restrictions lifting and workers trickling back to offices, threat actors are sharpening their spear phishing ploys. The latest scam includes pelting recipients with emails purportedly from their CIOs welcoming employees back into offices. The emails outline a company’s post-pandemi...

7.3AI score
Exploits0References8
ThreatPost
ThreatPost
added 2021/04/26 6:12 p.m.78 views

Nvidia Warns: Severe Security Bugs in GPU Driver, vGPU Software

Nvidia has disclosed a group of security vulnerabilities in the Nvidia graphics processing unit GPU display driver, which could subject gamers and others to privilege-escalation attacks, arbitrary code execution, denial of service DoS and information disclosure. Meanwhile, the Nvidia virtual GPU...

0.7AI score0.00498EPSS
Exploits0References13
ThreatPost
ThreatPost
added 2021/01/19 3:51 p.m.78 views

Linux Devices Under Attack by New FreakOut Malware

Researchers are warning a novel malware variant is targeting Linux devices, in order to add endpoints to a botnet to then be utilized in distributed-denial-of-service DDoS attacks and cryptomining. The malware variant, called FreakOut, has a variety of capabilities. Those include port scanning,...

10CVSS10AI score0.99783EPSS
Exploits16References8
ThreatPost
ThreatPost
added 2020/11/17 7:16 p.m.78 views

COVID-19 Antigen Firm Hit by Malware Attack

Over the past two weeks, global biotech firm Miltenyi has been battling a malware attack on its IT infrastructure, the company said in a recent disclosure to its customers. Miltenyi, which has been working on treatments for COVID-19, is still wrestling with phone and email communications in the...

7.1AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/10/29 2:49 p.m.78 views

Oracle WebLogic Server RCE Flaw Under Active Attack

If an organization hasn’t updated their Oracle WebLogic servers to protect them against a recently disclosed RCE flaw, researchers have a dire warning: “Assume it has been compromised.” Oracle WebLogic Server is a popular application server used in building and deploying enterprise Java EE...

10CVSS9.7AI score0.99997EPSS
Exploits83References15
ThreatPost
ThreatPost
added 2020/10/20 6:31 p.m.78 views

Adobe Fixes 16 Critical Code-Execution Bugs Across Portfolio

Adobe has released 18 out-of-band security patches in 10 different software packages, including fixes for critical vulnerabilities that stretch across its product suite. Adobe Illustrator was hit the hardest. There are 16 critical bugs, all of which allow arbitrary code execution in the context o...

9.3CVSS0.6AI score0.06014EPSS
Exploits1References7
ThreatPost
ThreatPost
added 2020/08/26 1:49 p.m.78 views

Medical Data Leaked on GitHub Due to Developer Errors

Developer error caused the leak of 150,000 to 200,000 patient health records stored in productivity apps from Microsoft and Google that were recently found on GitHub. Dutch researcher Jelle Ursem discovered nine separate files of highly sensitive personal health information PHI from apps such as...

7.1AI score
Exploits0References17
ThreatPost
ThreatPost
added 2020/04/29 8:37 p.m.78 views

High-Severity Cisco IOS XE Flaw Threatens SD-WAN Routers

Cisco has patched a high-severity vulnerability in its router software, which if exploited could enable a local, authenticated attacker to execute arbitrary commands with root privileges. The flaw exists in Cisco IOS XE. This Linux-based version of Cisco’s Internetworking Operating System IOS is...

7.2CVSS0.8AI score0.02606EPSS
Exploits0References11
ThreatPost
ThreatPost
added 2020/04/17 2:33 p.m.78 views

Hackers Update Age-Old Excel 4.0 Macro Attack

Hackers have updated the age-old Excel malware attack technique with a new passwordless twist. Researchers have identified a new method that no longer requires victims to enter a password to open a danger document, more readily exposing them to potential malware infection. Researchers from securi...

7AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/01/28 12:2 p.m.78 views

LoRaWAN for IoT: Beware Encryption Misconfigurations and Security Pitfalls

UPDATE The LoRaWAN protocol, which efficiently supports low-power wireless devices over wide area networks, has become standard in the world of the industrial internet of things IoT. One of its benefits is its support for end-to-end encryption. However, researchers are warning that while LoRaWAN...

0.6AI score
Exploits0References6
ThreatPost
ThreatPost
added 2020/01/22 10:19 p.m.78 views

Vivin Nets Thousands of Dollars Using Cryptomining Malware

A recently uncovered threat actor, dubbed Vivin, has made thousands of U.S. dollars through a large-scale cryptomining campaign. Vivin is unique due to its longevity — the threat actor has been active since at least 2017 — and researchers with Cisco Talos point to Vivin as a good example of why...

6.9AI score
Exploits0References12
ThreatPost
ThreatPost
added 2019/12/26 2:0 p.m.78 views

Top 10 Breaches and Leaky Server Screw Ups of 2019

Top 10 Breaches and Leaky Server Screw Ups of 2019 From massive credential spills on the Dark Web and hacked data to card-skimming and rich profiles exposed by way of cloud misconfigurations, 2019 was a notable year for data breaches. Big names like Capital One, Macy’s and Sprint were impacted, a...

8.2AI score0.0552EPSS
Exploits1References29
ThreatPost
ThreatPost
added 2019/11/08 4:9 p.m.78 views

Pwn2Own Tokyo Roundup: Amazon Echo, Routers and Smart TVs Fall to Hackers

Another Pwn2Own has drawn to a close, with Team Fluoroacetate researchers Amat Cama and Richard Zhu taking home the Master of Pwn title for the third year in a row. Overall, contestants in the Tokyo 2019 event earned more than $315,000 over the two-day hacking contest, for uncovering 18 different...

8.6AI score
Exploits0References11
ThreatPost
ThreatPost
added 2019/11/07 2:9 p.m.78 views

How to Secure Critical Infrastructure When Patching Isn't Possible

Cyberattacks are on the rise and threatening our digital life and our most intimate information — but also our operational realities. Attacks on critical infrastructure such as power plants, water works, airports and the like transportation ranks among the highest-value targets for cyberattackers...

7.4AI score
Exploits0References16
ThreatPost
ThreatPost
added 2019/10/21 11:3 a.m.78 views

New Way Found to Use Alexa, Google to 'Voice Phish' and Eavesdrop on Users

Researchers have found new ways that bad actors can exploit Alexa and Google Home smart speakers to spy on users. This time the hack not only includes eavesdropping, but also includes voice-phishing, or using people’s voice cues to determine passwords. The vulnerability lies in small apps created...

0.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/10/01 11:27 a.m.78 views

Malvertising Attack Hijacks 1B+ Sessions With Webkit Exploit

Researchers have discovered a new wave of attacks launched by the threat group eGobbler where victims are redirected to websites with malicious payloads. Security experts believe eGobbler was behind this year’s prolific Easter malvertising attack. This time, more than 1 billion ad impressions wer...

0.3AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/08/08 8:13 p.m.78 views

Black Hat 2019: Addressing Supply-Chain Risk Starts with People, Microsoft Says

LAS VEGAS – Supply-chain attacks have nabbed headlines lately thanks to high-profile incidents like the Wipro news last April, where attackers were able to compromise the staffing agency’s network and pivot to their customers. That incident pointed out that supply-chain risk should be thought of ...

7AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/05/09 9:7 p.m.78 views

Chinese Hackers Behind 2015 Anthem Data Breach Indicted

Two Chinese nationals have been charged in the massive 2015 data breach of health insurer Anthem that impacted more than 78 million people. Fujie Wang, 32, and another Chinese man, who remains unnamed, were allegedly part of a China-based hacking group that was behind the breach of Indiana-based...

1.1AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/03/27 3:37 p.m.78 views

Gamers Beware: Nvidia Fixes High-Severity GeForce Experience Bug

Nvidia, a maker of gaming-friendly graphics processing units GPU, has patched a high-severity vulnerability in its GeForce Experience software, which could lead to code execution or denial-of-service of products if exploited. The vulnerability CVE‑2019‑5674 has a CVSS score of 8.8, making it high...

6.9CVSS0.2AI score0.01163EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2019/03/08 2:50 p.m.78 views

RSA Conference 2019 Recap

SAN FRANCISCO – The RSA Conference 2019 is wrapping up, and Threatpost has been on the show floor this week covering the barrage of security news from the conference – including the annual cryptographers’ panel, big tech companies’ thoughts on privacy, and new vulnerabilities and patches that wer...

0.2AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/03/05 2:0 p.m.78 views

RSAC 2019: Joomla! Flaw Exploited to Create Mass Phishing Infrastructure

SECOND UPDATE Editor’s Note: It has come to our attention that Check Point’s findings are being questioned by Joomla! and others in the open-source ecosystem. Our story accurately reflects Check Point’s report — but it’s clear that the news isn’t about Jmail or the vulnerability which is at least...

0.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2019/02/25 4:39 p.m.78 views

ToRPEDO Privacy Attack on 4G/5G Networks Affects All U.S. Carriers

Privacy-breaking flaws in the 4G and 5G mobile protocols could allow attackers to intercept calls, send fake amber alerts or other notifications, track location and more, according to a research team from Purdue University and the University of Iowa. In a paper presented at Mobile World Congress ...

Exploits0References4
ThreatPost
ThreatPost
added 2019/02/19 10:36 p.m.78 views

Microsoft to Kill Updates for Legacy OS Using SHA-1

Microsoft is in the process of phasing out use of the Secure Hash Algorithm 1 SHA-1 code-signing encryption to deliver Windows OS updates – announcing that customers running legacy OS versions will be required to have SHA-2 code-signing support installed on their devices by July 2019. No SHA-2...

0.9AI score
Exploits0References10
ThreatPost
ThreatPost
added 2019/02/11 4:49 p.m.78 views

Exposed: Instagram, OKCupid, Mumsnet All Face Data Concerns

It has once again been busy on the data privacy/exposure front as the week kicks off, with Instagram, dating site OKCupid and the UK’s powerhouse discussion site, Mumsnet, all making recent news. A report on GDPR breach notifications rounds out the latest. First up, Instagram users are apparently...

6.9AI score
Exploits0References14
ThreatPost
ThreatPost
added 2018/12/17 2:28 p.m.78 views

PewDiePie Hackers Say They Launched Second Printer Siege

UPDATE Hackers have claimed that they launched yet another attack tricking hundreds of thousands of printers globally to print pamphlets promoting YouTube celebrity “PewDiePie.” The latest incident comes on the heels of a similar hack last month. That’s when hackers claimed they commandeered 50,0...

9.3CVSS9.2AI score0.12227EPSS
Exploits1References9
ThreatPost
ThreatPost
added 2018/09/13 7:26 p.m.78 views

ThreatList: Microsoft Macros Remain Top Vector for Malware Delivery

Attacks using malicious Microsoft macros, always a popular method for compromising target machines, are more virulent than ever, accounting for 45 percent of all delivery mechanisms analyzed in August. Top Malware Delivery Mechanisms in August Just behind this tried-and-true method lies the...

9.3CVSS0.3AI score0.99945EPSS
Exploits33References15
ThreatPost
ThreatPost
added 2018/02/09 1:6 p.m.78 views

Cisco Confirms Critical Firewall Software Bug Is Under Attack

Attackers are trying to exploit a critical vulnerability in Cisco’s Adaptive Security Appliance firewall software, the company has confirmed. Cisco has updated its advisory for the vulnerability, which was first revealed on Jan. 29 and has been logged as CVE-2018-0101, on Feb. 7. “The Cisco Produ...

10CVSS1.9AI score0.95707EPSS
Exploits22References4
ThreatPost
ThreatPost
added 2016/12/13 3:27 p.m.78 views

Microsoft Patches Publicly Disclosed IE, Edge Vulnerabilities

Microsoft today patched a half-dozen critical browser vulnerabilities that have been publicly disclosed, but apparently not used in attacks as of yet. The critical Internet Explorer and Microsoft Edge bulletins are among six released today, along with six others with a severity rating of importan...

9.3CVSS0.2AI score0.99945EPSS
Exploits37References12
ThreatPost
ThreatPost
added 2016/08/11 11:27 a.m.78 views

Bluetooth Hack Leaves Many Smart Locks, IoT Devices Vulnerable To MitM Attacks

Sławomir Jasek with research firm SecuRing is sounding an alarm over the growing number of Bluetooth devices used for keyless entry and mobile point-of-sales systems that are vulnerable to man-in-the-middle attacks. Jasek said the problem is traced back to devices that use the Bluetooth Low Energ...

7.2AI score
Exploits0References2
ThreatPost
ThreatPost
added 2013/11/11 5:54 p.m.78 views

IE Zero Day Patch Already in November Patch Tuesday Updates

Microsoft announced this afternoon that the zero-day vulnerability being exploited in a watering hole attack against an unnamed U.S.-based NGO website was already scheduled to be patched in a cumulative Internet Explorer update tomorrow. The zero-day was reported publicly on Friday by FireEye...

9.3CVSS0.1AI score0.99945EPSS
Exploits33References6
ThreatPost
ThreatPost
added 2013/02/27 7:10 p.m.78 views

Anti-Tibetan Attack Stems from Nvidia Abuse, Old RTF Vulnerability

A series of targeted attacks are continuing to bully a signed Nvidia application into dropping a backdoor that lets attackers root their way through the systems of Tibetan sympathizers. According to Sophos’ Gabor Szappanos, the multifaceted attack can install a backdoor on unsuspecting users’...

9.3CVSS1.9AI score0.99966EPSS
Exploits25References5
ThreatPost
ThreatPost
added 2009/06/22 8:24 a.m.78 views

Mitigating the Slowloris HTTP DoS Attack

Enterprise IT security staffs looking for some mitigation for the newly released HTTP DoS tool may have a few options. The analysts at the SANS Internet Storm Center are recommending that organizations running Web servers that are vulnerable to the tool’s attack make some basic configuration...

Exploits0References3
ThreatPost
ThreatPost
added 2009/04/08 2:14 p.m.78 views

Microsoft: Rogue security software fastest-growing online threat

Trojan downloaders and malware that masquerades as security software are the two fastest growing threats on the Web right now, according an analysis by Microsoft’s Malware Protection Center. In its latest Software Intelligence Report, released on Wednesday, the MMPC found that a Trojan downloader...

9.3CVSS1.2AI score0.99945EPSS
Exploits33References1
ThreatPost
ThreatPost
added 2009/03/23 8:2 p.m.78 views

Partial disclosure: Was it a cat I saw?

Quite often in our industry, two or five people can look at the same problem from different angles, and see radically different things. Rare is the situation that reads the same to everyone, forwards and backwards. It’s all about perspective. In my appearance on the ‘Partial Disclosure Dilemma’...

9.3CVSS8.2AI score0.99945EPSS
Exploits33References20
ThreatPost
ThreatPost
added 2022/06/21 11:20 a.m.77 views

Voicemail Scam Steals Microsoft Credentials

Attackers are using an oft-used and still effective lure to steal credentials to key Microsoft apps by sending emails notifying potential victims that they have a voicemail message, researchers have found. A team from Zscaler ThreatLabZ has been monitoring a campaign since May that targets key...

7.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2022/04/11 5:26 p.m.77 views

Microsoft Takedown Domains Used in Cyberattack Against Ukraine

Microsoft seized seven domains it claims were part of ongoing cyberattacks by what it said are state-sponsored Russian advanced persistent threat actors that targeted Ukrainian-related digital assets. The company obtained court orders to take control of the domains it said were used by Strontium,...

8.6AI score
Exploits0References5
ThreatPost
ThreatPost
added 2022/02/07 10:39 p.m.77 views

CISA Orders Federal Agencies to Fix Actively Exploited Windows Bug

CISA is putting the thumbscrews on federal agencies to get them to patch an actively exploited Windows vulnerability. On Friday, the U.S. Cybersecurity and Infrastructure Security Agency CISA announced that it added the vulnerability – tracked as CVE-2022-21882 and with a CVSS criticality rating ...

7.8CVSS9.2AI score0.55711EPSS
Exploits7References14
ThreatPost
ThreatPost
added 2021/08/13 9:19 p.m.77 views

Amazon’s Plan to Track Worker Keystrokes: A Sign of Controls to Come?

Data theft, insider threats and imposters accessing sensitive customer data have apparently gotten so bad inside Amazon, the company is considering rolling out keyboard-stroke monitoring for its customer-service reps. A confidential memo from inside Amazon explained that customer service credenti...

7.2AI score
Exploits0References5
Total number of security vulnerabilities5000