Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2021/07/05 12:0 p.m.69 views

Ransomware Defense: Top 5 Things to Do Right Now

If there is any cyber-threat at the top of everyone’s mind right now, it must be ransomware. Once a “nuisance” threat, ransomware has grown into a layered, multi-billion-dollar industry for attackers. These threat actors are no longer amateurs trying their hand at breaking and entering. Rather, w...

7.2AI score
Exploits0References1
ThreatPost
ThreatPost
added 2021/06/24 3:44 p.m.69 views

Musk-Themed ‘$SpaceX’ Cryptoscam Invades YouTube Ads

YouTube fans have been swindled out of almost $1 million and counting thanks to an extremely convincing fake SpaceX crypto-coin campaign that uses a popular decentralized finance protocol called Uniswap. The scam is rearing its Elon-Musk-themed head in ads on YouTube that show up before and after...

6.5AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/11/17 9:17 p.m.69 views

ThreatList: Pharma Mobile Phishing Attacks Turn to Malware

As pharmaceutical companies such as Pfizer race to develop a vaccine for COVID-19, mobile phishing gangs are swapping up their tactics in hopes to get their hands on critical research. Cybercriminals previously targeted pharmaceutical company employee credentials. However, new research shows that...

1AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/11/11 9:4 p.m.69 views

Silver Peak SD-WAN Bugs Allow for Network Takeover

Silver Peak’s Unity Orchestrator, a software-defined WAN SD-WAN management platform, suffers from three remote code-execution security bugs that can be chained together to allow network takeover by unauthenticated attackers. SD-WAN is a cloud-based networking approach used by enterprises and...

7.5CVSS0.2AI score0.27569EPSS
Exploits2References11
ThreatPost
ThreatPost
added 2020/10/01 6:27 p.m.69 views

Microsoft Office 365 Phishing Attack Uses Multiple CAPTCHAs

Researchers are warning of an ongoing Office 365 credential-phishing attack that’s targeting the hospitality industry – and using visual CAPTCHAs to avoid detection and appear legitimate. CAPTCHAs – commonly utilized by websites like LinkedIn and Google – are a type of challenge–response test use...

6.8AI score
Exploits0References12
ThreatPost
ThreatPost
added 2020/09/25 3:26 p.m.70 views

Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks

Microsoft has suspended 18 Azure Active Directory applications that were being leveraged for command-and-control C2 infrastructure by what it says is a Chinese nation-state actor. While Microsoft services like Azure Active Directory AD – its cloud-based identity and access management service – ar...

0.3AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/09/21 5:1 p.m.69 views

Firefox for Android Bug Allows 'Epic Rick-Rolling'

A vulnerability in Firefox for Android paves the way for an attackers to launch websites on a victim’s phone, with no user interaction. The attack manifests in the form of a Firefox browser window on the target device suddenly launching, without the users’ permission. This can be used for various...

Exploits0References8
ThreatPost
ThreatPost
added 2020/07/28 1:11 p.m.69 views

Researchers Warn of High-Severity Dell PowerEdge Server Flaw

Researchers have disclosed details of a recently patched, high-severity Dell PowerEdge server flaw, which if exploited could allow an attacker to fully take over and control server operations. The web vulnerability was found in the Dell EMC iDRAC remote access controller, technology embedded with...

4CVSS0.3AI score0.0552EPSS
Exploits1References6
ThreatPost
ThreatPost
added 2020/05/29 4:45 p.m.69 views

NTT Communications Data Breach Affects Customers, Threatens Supply Chain

Japan-based systems integrator NTT Communications has disclosed a recent data breach that it said impacted hundreds of customers. The total affected comes to as many as 621 customers, the company said, but security experts worry about the impacts of the data breach due to the company’s positionin...

0.1AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/05/27 5:3 p.m.69 views

'[F]Unicorn' Ransomware Impersonates Legit COVID-19 Contact-Tracing App

A fresh ransomware strain known as “FUnicorn” has emerged, first seen this week targeting users by pretending to be an official government COVID-19 contact tracing app. According to an advisory from the Computer Emergency Response Team CERT from the Agency for Digital Italy AgID, the malware fami...

7.1AI score
Exploits0References14
ThreatPost
ThreatPost
added 2020/05/20 2:6 p.m.69 views

Verizon DBIR: Web App Attacks and Security Errors Surge

Verizon’s 2020 Data Breach Investigations Report DBIR, released Tuesday, analyzed 32,002 security incidents and 3,950 data breaches to sniff out the top causes of data breaches over the past year. While cyber-espionage attacks and malware decreased, other trends, such as security “errors” cloud...

6.7AI score
Exploits0References21
ThreatPost
ThreatPost
added 2020/04/03 7:31 p.m.69 views

Self-Propagating Malware Targets Thousands of Docker Ports Per Day

The Docker cloud containerization technology is under fire, with an organized, self-propagating cryptomining campaign targeting misconfigured open Docker Daemon API ports. Thousands of container-compromise attempts are being observed every day as part of the campaign, according to Gal Singer, a...

7.5AI score
Exploits0References12
ThreatPost
ThreatPost
added 2020/03/25 12:54 p.m.69 views

Apple Safari Blocks Ad-Targeting Cookie Support

Apple has released an update to its Safari browser that blocks third-party cookies, following an announcement by Google that it would do the same for its Chrome browser. Through the release of Safari 13.1 on Tuesday, alongside some changes to Apple’s Intelligent Tracking Prevention ITP in iOS and...

1.2AI score
Exploits0References16
ThreatPost
ThreatPost
added 2020/03/20 8:3 p.m.69 views

Defying Covid-19’s Pall: Pwn2Own Goes Virtual

Covid-19 has brought the world to grinding halt, but for the hacking competition Pwn2Own, that wasn’t the case. The event, planned for CanSecWest this week in Vancouver, went virtual along with the conference itself. Faced with travel restrictions and new social-distancing guidelines, contestants...

7.8AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/02/25 2:52 p.m.69 views

Sen. Schumer Pushes for TSA Employee Ban on TikTok App at Work

The Transportation Safety Authority TSA has become the latest federal agency to ban the use of TikTok among its employees based on national-security fears over how ByteDance, the Beijing-based company that owns the app, uses the data collected by it. Some TSA employees have used the app to create...

0.2AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/02/04 5:53 p.m.69 views

Medtronic Patches Implanted Device, CareLink Programmer Bugs

Medtronic has released updates to address known vulnerabilities in its line of connected medical devices that were initially disclosed last year and in 2018. The vendor has addressed two sets of bugs. The first group, disclosed in March of last year, is found in a range of Medtronic implanted...

5.2CVSS1.2AI score0.0132EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2020/01/28 8:51 p.m.69 views

Trolls-For-Hire Pave Way For Sophisticated Social Media Hacks

NEW ORLEANS – Researchers have observed the blossoming of a new type of social media nuisance they are calling Trolling-as-a-Service. They say these rabble-rousing efforts have emerged as a clever new way for hackers to launch coordinated and dangerous attacks via Facebook and Twitter. Speaking a...

0.4AI score
Exploits0References6
ThreatPost
ThreatPost
added 2020/01/15 9:19 p.m.69 views

Critical WordPress Bug Leaves 320,000 Sites Open to Attack

Two WordPress plugins, InfiniteWP Client and WP Time Capsule, suffer from the same critical authorization bypass bug that allows adversaries to access a site’s backend with no password. All an attacker needs is the admin username for the WordPress plugins and they are in, according to researchers...

7.5AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/11/15 2:48 p.m.69 views

Stealthy Malware Flies Under AV Radar with Advanced Obfuscation

Researchers warn hackers are putting a new spin on old injection techniques and successfully end-running endpoint protection. They are tracking a campaign, that kicked off in January, that is still going strong exploiting weaknesses in web browsers. The objective is to hide in the background of...

0.1AI score
Exploits0References6
ThreatPost
ThreatPost
added 2019/11/01 5:10 p.m.69 views

Stubborn Malware Targets QNAP NAS Hardware Specifically

UPDATE Top-selling network attached storage devices NAS made by QNAP Systems are being singled out by attackers, who have crafted malware specifically designed for the vendor’s hardware. Researchers at the Finland’s National Cyber Security Centre NCSC-FI reported the targeted attacks late last...

Exploits0References11
ThreatPost
ThreatPost
added 2019/10/30 4:42 p.m.69 views

Murky Details Surround Bed, Bath and Beyond Breach

Housewares and home furnishings purveyor Bed, Bath and Beyond has disclosed a data-thieving cyber attack that allowed the adversaries to access customers’ online accounts. According to a Tuesday SEC filing, the company “discovered that a third party acquired email and password information from a...

0.5AI score
Exploits0References9
ThreatPost
ThreatPost
added 2019/08/13 2:6 p.m.69 views

British Airways E-Ticketing Flaw Exposes Passenger Flight, Personal Data

A security bug discovered in British Airways’ e-ticketing system has the potential to expose passengers’ data, including their flight booking details and personal information. Researchers on Tuesday said that check-in links being sent by British Airways to their passengers via email are unencrypt...

7.3AI score
Exploits0References11
ThreatPost
ThreatPost
added 2019/08/08 9:3 p.m.69 views

State Farm Falls Victim to Credential-Stuffing Attack

State Farm Insurance is notifying customers that accounts have been compromised by hackers in a credential-stuffing attack. Credential-stuffing is accomplished by hackers who take advantage of users who often reuse the same passwords across multiple online accounts. The cyberattackers use stolen...

1.2AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/08/01 3:10 p.m.69 views

Unpatched Flaws in IoT Smart Deadbolt Open Homes to Danger

UPDATE Researchers have uncovered vulnerabilities in a popular smart deadbolt could allow attackers to remotely unlock doors and break into homes. The manufacturer behind the smart lock, Hickory Hardware, has deployed patches to the affected apps on the Google Play Store and Apple App Store. The...

5CVSS0.4AI score0.00372EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2019/07/31 8:43 p.m.69 views

Malvertising Campaigns Skirt Ad Blockers, Serve Up Mac Malware

Two fresh malvertising campaigns are making the scene that are abusing the convoluted underpinnings of the internet economy to find malware victims. One is a large-scale exploit kit EK campaign designed to circumvent traditional safeguards, such as ad blockers, and the other uses web redirects to...

7AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/06/14 2:55 p.m.69 views

Amazon Alexa Secretly Records Children, Lawsuits Allege

A federal lawsuit is alleging that Amazon is recording children who use its Alexa devices, without their consent or knowledge. Alexa is the built-in voice assistant shipped with devices like Amazon Echo, Amazon Dot, Fire TV and some third-party gadgets. “Alexa routinely records and voiceprints...

0.2AI score
Exploits0References8
ThreatPost
ThreatPost
added 2019/04/23 5:30 p.m.69 views

Exploits for Social Warfare WordPress Plugin Reach Critical Mass

UPDATE Active exploits for a recently disclosed bug in a popular WordPress plugin, Social Warfare, are snowballing in the wild – potentially putting more than 40,000 websites at risk. The vulnerability, CVE-2019-9978, tracks both a stored cross-site scripting XSS vulnerability and a remote...

4.3CVSS0.6AI score0.73543EPSS
Exploits20References11
ThreatPost
ThreatPost
added 2019/02/20 8:48 p.m.69 views

Separ Malware Plucks Hundreds of Companies' Credentials in Ongoing Phish

An ongoing phishing campaign is using malicious PDF documents to spread Separ malware and ultimately steal victims’ browser and email credentials. Since the attack started at the end of January, it has affected around 200 companies and over 1,000 individuals, located mainly in Southeast Asia, the...

1.2AI score
Exploits0References4
ThreatPost
ThreatPost
added 2019/01/23 12:0 p.m.69 views

Microsoft Windows RCE Flaw Gets Temporary Micropatch

Three unfixed Microsoft Windows vulnerabilities have been assigned unofficial, temporary micropatches – including a recently-disclosed high-severity remote code-execution flaw. The micropatches were released Tuesday by ACROS Security’s 0patch platform. 0patch, which is still in its beta stage,...

0.3AI score
Exploits0References3
ThreatPost
ThreatPost
added 2017/05/31 1:51 p.m.69 views

Cisco, Netgear Readying Patches for Samba Vulnerability

Device manufacturers are combing through code again this week to determine whether their products are affected by a vulnerability tied to the SMB file-sharing protocol. The vulnerability, CVE-2017-7494 disclosed last Wednesday, affects versions of 3.5.0 onward of Samba, the free software...

10CVSS10AI score0.99448EPSS
Exploits24References16
ThreatPost
ThreatPost
added 2013/12/10 8:0 a.m.69 views

Microsoft Protects User Accounts with New Security Features

Microsoft announced yesterday that it will complement the two-factor authentication it enabled for account holders in April with additional security features designed to deny account hijacking and unauthorized access. Windows PC and mobile users, along with Outlook, SkyDrive, Xbox, Skype and othe...

9.3CVSS0.2AI score0.99945EPSS
Exploits33References3
ThreatPost
ThreatPost
added 2012/03/09 5:15 p.m.69 views

Chaouki Bekrar: The Man Behind the Bugs

VANCOUVER–Say what you will about Chaouki Bekrar, but the man is nothing if not frank. Bekrar, who is the public face of the VUPEN team that has been toying with the Pwn2Own contest this week, has become a lightning rod in the debate over exploit sales, and from all outward appearances, he couldn...

7.5AI score
Exploits0References1
ThreatPost
ThreatPost
added 2011/11/04 11:47 a.m.69 views

Microsoft Releases Workaround For Kernel Flaw Used By Duqu

Microsoft has released a workaround for the Windows kernel zero-day vulnerability exploited by the Duqu malware, and said that it is working on a permanent patch, but didn’t specify a timeline for its release. The vulnerability is a serious one that can lead to remote code execution on vulnerable...

9.3CVSS0.7AI score0.99945EPSS
Exploits33References6
ThreatPost
ThreatPost
added 2011/06/28 5:46 p.m.69 views

Google Fixes Six High-Risk Bugs in Chrome, Pays Out $6k in Bounties

Google has fixed seven security vulnerabilities in its Chrome browser, including six high-priority flaws. The new release of Chrome is version 12.0.742.112 and also includes an updated version of Flash. The latest version of Chrome is the third major update from the company since just the end of...

7.5CVSS1.5AI score0.01578EPSS
Exploits1References11
ThreatPost
ThreatPost
added 2010/10/29 7:51 p.m.69 views

To Combat Firesheep, Microsoft's Bing Looking Into SSL

Microsoft’s Bing is looking into SSL and other privacy settings for the next version of their search engine. Currently the site strips SSL when forced into HTTPS and in turn, brings up an advisory on browsers signaling an unsafe connection. Introduced at Toorcon, the Firefox extension allows...

9.3CVSS8.3AI score0.99945EPSS
Exploits33References3
ThreatPost
ThreatPost
added 2009/11/16 4:24 p.m.69 views

Windows Exploitation Part 2

In part two of his lecture on exploiting Microsoft Windows, Dino Dai Zovi discusses specific techniques for attacking Windows machines...

9.3CVSS2.6AI score0.99945EPSS
Exploits33
ThreatPost
ThreatPost
added 2021/12/21 2:42 p.m.68 views

FBI: Another Zoho ManageEngine Zero-Day Under Active Attack

Another Zoho ManageEngine zero-day vulnerability is under active attack from an APT group, this time looking to override legitimate functions of servers running ManageEngine Desktop Central and elevate privileges — with an ultimate goal of dropping malware onto organizations’ networks, the FBI ha...

10CVSS10AI score0.99867EPSS
Exploits16References14
ThreatPost
ThreatPost
added 2021/09/09 5:51 p.m.68 views

Financial Cybercrime: Why Cryptocurrency is the Perfect ‘Getaway Car’

This is Part I of a two-part series on how cybercrooks embrace and use cryptocurrency. To read Part II, please click here. It’s no secret: Hackers are out to make money. Over the summer, it seemed there was practically a new ransomware attack every day of the week. Whether it be Colonial Pipeline...

6.8AI score
Exploits0References5
ThreatPost
ThreatPost
added 2021/08/19 4:58 p.m.68 views

Windows EoP Bug Detailed by Google Project Zero

It looked like Google Project Zero blew its own 90-day disclosure window when, on Wednesday, it disclosed an elevation of privilege EoP flaw in Windows that it reported to Microsoft just over a month ago on July 8. But no: It turns out that Microsoft flip-flopped on whether or not it was planning...

7.3AI score
Exploits0References8
ThreatPost
ThreatPost
added 2021/07/27 9:10 p.m.68 views

No More Ransom Saves Victims Nearly €1 billion Over 5 Years

To date, the No More Ransom repository of ransomware decryptors has helped more than 6 million victims recover their files, keeping nearly a billion euros out of the hands of cybercriminals, according to a Monday release. Launched five years ago, No More Ransom is maintained via cooperation betwe...

7.1AI score
Exploits0References13
ThreatPost
ThreatPost
added 2021/07/20 1:31 p.m.68 views

16-Year-Old HP Printer-Driver Bug Impacts Millions of Windows Machines

Researchers have released technical details on a high-severity privilege-escalation flaw in HP printer drivers also used by Samsung and Xerox, which impacts hundreds of millions of Windows machines. If exploited, cyberattackers could bypass security products; install programs; view, change, encry...

7.8CVSS7.9AI score0.02902EPSS
Exploits1References6
ThreatPost
ThreatPost
added 2021/07/16 5:27 p.m.68 views

The Evolving Role of the CISO

Digital technologies have infused every aspect of a business, especially with the shutdown of the physical workplace. The increased interdependence between the physical, digital and cybersecurity worlds demand a leadership position that combines both the technical know-how and the ability to...

6.9AI score
Exploits0References1
ThreatPost
ThreatPost
added 2021/07/07 3:27 a.m.68 views

Pro-Trump Gettr Social Platform Hacked On Day 1

Gettr, a social media platform set up by allies of former President Donald Trump, was still wet and squirming when it got hacked – twice. The first slap on the rump for the politically conservative platform came in the form of Sonic the Hedgehog-themed porn that flooded it over the Fourth of July...

7AI score
Exploits0References15
ThreatPost
ThreatPost
added 2021/06/17 8:46 p.m.68 views

Clop Raid: A Big Win in the War on Ransomware?

Yesterday’s noisy raid of the Clop ransomware gang in Ukraine was a major win according to most experts throughout the cybersecurity community, who said the moment marks a shift in the international war on ransomware. The raid, according to Ukrainian reports translated by eSpire analysts, include...

7.2AI score
Exploits0References10
ThreatPost
ThreatPost
added 2021/04/15 8:9 p.m.68 views

Biden Races to Shore Up Power Grid Against Hacks

President Biden is putting the final details on a plan to encourage American electric utilities to strengthen their cybersecurity protections against hackers in the next 100 days, amid increasing cyberattacks. The White House push to boost electrical grid security comes in the wake of a report th...

7.2AI score
Exploits0References13
ThreatPost
ThreatPost
added 2021/03/11 6:58 p.m.68 views

NanoCore RAT Scurries Past Email Defenses with .ZIPX Tactic

A spate of malicious emails with attachments delivering the NanoCore remote access trojan RAT is evading anti-malware and email scanners by abusing the .ZIPX file format. That’s according to researchers at Trustwave, who found that the campaign is effectively hiding a malicious executable by givi...

7.4AI score
Exploits0References6
ThreatPost
ThreatPost
added 2021/03/08 5:4 p.m.68 views

Fake Google reCAPTCHA Phishing Attack Swipes Office 365 Passwords

Microsoft users are being targeted with thousands of phishing emails, in an ongoing attack aiming to steal their Office 365 credentials. The attackers add an air of legitimacy to the campaign by leveraging a fake Google reCAPTCHA system and top-level domain landing pages that include the logos of...

0.2AI score
Exploits0References16
ThreatPost
ThreatPost
added 2021/03/05 5:24 p.m.68 views

Critics Blast Google’s Aim to Replace Browser Cookie with ‘FLoC’

This month Google begins a public test of a technology it says will eventually replace browser cookies in an effort to boost Chrome browser user privacy. However, critics say the switch is a half-measure and does not protect the web movements of Chrome users adequately. The Google solution–called...

0.3AI score
Exploits0References8
ThreatPost
ThreatPost
added 2020/11/13 7:5 p.m.68 views

Amazon Sues Instagram, TikTok Influencers Over Knockoff Scam

Instagram and TikTok social-media influencers Kelly Fitzpatrick and Sabrina Kelly-Krejci are among 13 defendants in a lawsuit filed by Amazon, which alleges that they participated in an an online scam to sell counterfeit luxury goods. Counterfeit goods are strictly forbidden in the Amazon...

Exploits0References8
ThreatPost
ThreatPost
added 2020/09/25 8:17 p.m.68 views

Industrial Cyberattacks Get Rarer but More Complex

Cyberattacks against the oil and gas industry inched up only slightly compared to the second half of 2019. Security experts say they are encouraged by the anemic growth, but at the same time are expressing concern that attacks are now becoming more potent, targeted and complex. According to new...

0.3AI score
Exploits0References5
Total number of security vulnerabilities5000