Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2017/01/10 12:47 p.m.37 views

January 2017 Adobe Flash, Reader, Acrobat Security Patches

Adobe today released its first patches of the year, a familiar refrain of Flash Player and Reader fixes, none of which are under attack. The Flash update addresses 13 vulnerabilities, all but one of which trigger remote code execution attacks. Meanwhile, 29 bugs were patched in Reader and Acrobat...

7.5CVSS0.9AI score0.06869EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2016/12/02 11:45 a.m.37 views

Google Fixes 12 High-Severity Vulnerabilities In Chrome Browser

Google is urging Windows, Mac and Linux users to update their Chrome browsers to fix multiple vulnerabilities that could allow malicious third parties to take control of targeted systems. Released Thursday, Chrome version 55.0.2883.75 for Windows, Mac, and Linux fixes those security issues. It al...

6.8CVSS0.5AI score0.11182EPSS
Exploits5References4
ThreatPost
ThreatPost
added 2016/10/26 11:24 a.m.37 views

Adobe Patches Flash Zero Day Under Attack

Adobe today released an emergency Flash Player update that includes a patch for a vulnerability being exploited in targeted attacks. The vulnerability, CVE-2016-7855, was privately disclosed by Neel Mehta and Billy Leonard of the Google Threat Analysis Group. Mehta was one of four researchers...

10CVSS0.9AI score0.25198EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2016/09/20 5:14 p.m.38 views

Apple Squashes 68 Security Bugs With Sierra Release

With the release of macOS Sierra 10.12 Tuesday, Apple snuffed out dozens of lingering security vulnerabilities in OS X El Capitan and Yosemite. Along with updates to its OS, Apple addressed security bugs in its Safari web browser and macOS Server in separate security bulletins, also released...

10CVSS2AI score0.05764EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2016/08/29 1:32 p.m.37 views

RIPPER ATM Malware Uses Malicious EMV Chip

Update This story was updated Aug. 31. A never-before-seen malware family known as RIPPER is being blamed for a rash of ATM heists in Thailand last week. The malware, found by researchers at FireEye, is responsible for the theft of 12 million baht $378,000 from ATMs at banks across Thailand. The...

0.2AI score
Exploits0References3
ThreatPost
ThreatPost
added 2016/08/24 5:53 p.m.37 views

Cisco Begins Patching Equation Group ASA Zero Day

Cisco today began the process of patching a zero-day vulnerability in its Adaptive Security Appliance ASA software exposed in the ShadowBrokers data dump. Users on affected versions of ASA, 7.2, and 8.0 through 8.7, are urged to migrate soon to 9.1.79 or later. Newer versions that are also...

8.5CVSS2.6AI score0.87503EPSS
Exploits7References6
ThreatPost
ThreatPost
added 2016/05/07 9:52 a.m.37 views

Microsoft Security Intelligence Report: Top Takeaways

Microsoft’s Security Intelligence Report painted a bleak picture when it comes to malware, fraudulent login attempts and the staying power of really old exploits. Key findings in the 198-page biannual report run the gamut illustrating how old threats die hard and what new threats are on the...

9.3CVSS0.2AI score0.91324EPSS
Exploits13References3
ThreatPost
ThreatPost
added 2015/11/02 3:10 p.m.37 views

November 2015 Android Security Bulletin

The Stagefright vulnerabilities are the gifts that keep on giving. Months after the potentially devastating security flaws in the mobile OS were publicly disclosed, Google continues to send out patches addressing vulnerabilities related to the initial reports. Today’s monthly Android security...

10CVSS0.6AI score0.02574EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2015/09/02 8:48 a.m.37 views

Google Chrome 45 Security Patches, Bug Bounty Awards

Tuesday turned out to be a busy day for browser makers. The three major vendors in the space—Google; Mozilla; and Microsoft—joined arms and announced their intent to stop support for the weakened RC4 encryption algorithm starting early next year. Google, having already announced it would pause...

7.5CVSS9.3AI score0.0224EPSS
Exploits2References17
ThreatPost
ThreatPost
added 2015/04/13 10:3 a.m.37 views

Darwin Nuke Vulnerability Details in OS X, iOS Disclosed

Since Apple released a monster batch of patches for OS X and iOS last week, details on a number of the vulnerabilities that were addressed have been made public. The latest concerns a kernel vulnerability in the Darwin operating system, an open-source OS developed and used by Apple in its desktop...

7.2CVSS0.6AI score0.01741EPSS
Exploits1References6
ThreatPost
ThreatPost
added 2015/03/02 9:43 a.m.37 views

Seagate Business NAS Firmware Vulnerabilities Disclosed

Firmware running on certain Seagate network-attached storage devices that are popular with small businesses and home offices, are vulnerable to remote attacks. Researchers at Beyond Binary, a security consulting firm in Australia, on Sunday went public with their disclosure after a nearly...

7.8AI score
Exploits0References1
ThreatPost
ThreatPost
added 2014/12/08 3:8 p.m.37 views

VMware Releases Patches for XSS, Cert. Validation Issue

VMware released a handful of patches late last week to fix several vulnerabilities, including a nasty cross-site scripting issue in one of its server virtualization platforms. The vulnerabilities lie in VMware’s vCenter Server Appliance vCSA – a module for VMware’s vCenter Server. The main bug, a...

4.3CVSS5.5AI score0.01795EPSS
Exploits0References2
ThreatPost
ThreatPost
added 2014/11/20 8:2 a.m.37 views

Angler Exploit Kit Adds New Flash Exploit

Exploit kit authors are nothing if not opportunistic, and they know a prime opportunity when they see one. Adobe Flash bugs fit that description nicely, and the people behind the Angler exploit kit already are exploiting one of the Flash bugs patched last week in the kit’s arsenal. This is a comm...

10CVSS1.1AI score0.81943EPSS
Exploits5References2
ThreatPost
ThreatPost
added 2014/11/06 2:34 p.m.37 views

November 2014 Microsoft Patch Tuesday Security Bulletins

Microsoft today provided its Patch Tuesday advanced notification, giving IT managers a head’s up about 16 bulletins that are scheduled to be delivered next week, including five rated critical for remote code execution and privilege escalation issues. The heavy patch load is an anomaly for 2014,...

9.3CVSS0.9AI score0.99945EPSS
Exploits33References1
ThreatPost
ThreatPost
added 2014/09/30 12:47 p.m.37 views

OpenVPN vulnerable to Shellshock Bash vulnerability

OpenVPN wasn’t immune to the Heartbleed vulnerability in OpenSSL, and it’s not going to sidestep Shellshock either. Fredrick Stromberg, cofounder of Mullvad, a Swedish VPN company, reported that OpenVPN servers are vulnerable to Shellshock , the vulnerability in Bash plaguing Linux, UNIX and Mac ...

5.4CVSS0.1AI score0.00658EPSS
Exploits0References10
ThreatPost
ThreatPost
added 2014/06/10 2:9 p.m.37 views

June 2014 Microsoft Patch Tuesday security updates

As expected, Microsoft delivered a patch today for a zero-day vulnerability in Internet Explorer 8 that was disclosed by HP’s Zero Day Initiative three weeks ago, six months after it was reported to the ZDI. The IE8 patch, MS14-035, is included in a cumulative Internet Explorer rollup that patche...

9.3CVSS0.1AI score0.99945EPSS
Exploits33References9
ThreatPost
ThreatPost
added 2014/05/23 9:3 a.m.37 views

May 2014 Apple Safari Browser Security Patches

Apple released an update to Safari yesterday patching 22 vulnerabilities in the WebKit browser engine that allow code execution or a browser crash. Safari 7.0.4 is available for OS X Mavericks 10.9 and Safari 6.1.4 for OS X Mountain Lion 10.8. The vulnerabilities could be exploited if the user wa...

7.5CVSS9.4AI score0.03252EPSS
Exploits0References4
ThreatPost
ThreatPost
added 2014/03/12 3:9 p.m.37 views

Google Fixes Four High-Risk Flaws in Chrome Before Pwn2Own

Google has fixed several serious security vulnerabilities in Chrome 33, just ahead of the Pwn2Own hacking competition at CanSecWest this week, which surely will reveal several more new bugs in the browser. The company’s Chrome browser is always at the top of the target list for contestants in...

7.5CVSS0.9AI score0.01475EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2014/02/10 1:3 p.m.37 views

New APT Campaign Dubbed The Mask Called Most Sophisticated Seen to Date

PUNTA CANA–A group of high-level, nation-state attackers has been targeting government agencies, embassies, diplomatic offices and energy companies with a cyber-espionage campaign for more than five years that researchers say is the most sophisticated APT operation they’ve seen to date. The attac...

10CVSS5.5AI score0.05476EPSS
Exploits1References5
ThreatPost
ThreatPost
added 2014/02/04 2:21 p.m.37 views

Emergency Adobe Flash Player Security Update Patches 0Day

Adobe today released an out-of-band security update for Flash Player that patches a vulnerability the company said is currently being exploited. Adobe Flash Player version 12.0.0.43 and earlier for Windows and Mac are affected as is 11.2.202.335 and earlier on Linux. The vulnerability,...

10CVSS2.3AI score0.99883EPSS
Exploits7References2
ThreatPost
ThreatPost
added 2013/11/14 4:2 p.m.37 views

11 China APTs Linked by Central Arms Dealer Infrastructure

As targeted Chinese espionage campaigns are disclosed, it’s easy to get caught up in the immediate impact and details with regard to the compromised site or malware samples involved. It’s also simple to discount them as separate endeavors, one-off projects targeting the secrets held so precious b...

9.3CVSS0.84971EPSS
Exploits7References2
ThreatPost
ThreatPost
added 2013/11/12 1:17 p.m.37 views

12 Flaws Fixed in Google Chrome

Google has fixed 12 security vulnerabilities in Chrome, including six high-risk bugs. The new version of the browser includes a number of fixes for bugs discovered by external researchers as well as by Google’s own internal security team. Two of the more serious vulnerabilities patched in Chrome...

10CVSS1.3AI score0.10117EPSS
Exploits4References20
ThreatPost
ThreatPost
added 2013/10/16 7:41 a.m.37 views

October 2013 Oracle Java Critical Patch Update

On Tuesday, for the first time, Java security updates were included with the quarterly Oracle Critical Patch Update – and just as quickly, Java wasted no time elevating itself as the top concern for Oracle admins and security experts. Of the 51 Java patches released, 50 allow for remote code...

10CVSS0.1AI score0.07188EPSS
Exploits0References3
ThreatPost
ThreatPost
added 2013/10/15 1:37 p.m.37 views

Google Fixes Three High-Risk Flaws in Chrome

There is a trio of high-risk security vulnerabilities in Google Chrome that have been patched in a new version of the browser released on Tuesday. The vulnerabilities all are use-after-free bugs, and Google paid a total of $5,000 in rewards to researchers who discovered and reported them. Google...

6.8CVSS1.5AI score0.01647EPSS
Exploits0References6
ThreatPost
ThreatPost
added 2013/09/23 1:57 p.m.37 views

IE Zero Day Used in Targeted Attacks Against Japanese Firms

Attackers exploiting a zero-day vulnerability in Microsoft’s Internet Explorer browser have compromised several popular local Japanese media outlets and have infected systems belonging to government, high tech and manufacturing organizations in Japan. Researchers at FireEye said the attacks appea...

9.3CVSS8.6AI score0.99945EPSS
Exploits51References8
ThreatPost
ThreatPost
added 2013/03/12 6:28 p.m.37 views

Critical IE, Windows Kernel Flaws Patched

For the second month in a row, Microsoft has released a cumulative update for Internet Explorer, patching a number of critical remote code execution vulnerabilities in the browser, including one previously disclosed. It also patched a serious kernel mode driver vulnerability that could enable...

9.3CVSS8.6AI score0.81868EPSS
Exploits8References14
ThreatPost
ThreatPost
added 2013/02/26 9:26 p.m.37 views

Adobe Patches Two Critical Flash Player Vulnerabilities

Adobe released yet another security update for its Flash Player product, it’s third this month, earlier today. The emergency update patches three vulnerabilities, including two critical CVE-2013-0643 and CVE-2013-0648 that are targeting Flash Player in Mozilla’s Firefox browser and could let an...

9.3CVSS0.9AI score0.77597EPSS
Exploits10References4
ThreatPost
ThreatPost
added 2012/05/23 7:12 p.m.37 views

Months After A Patch, Targeted Attacks Still Using Adobe Flash Bug

More than three months after it was patched, attackers are still using a vulnerability in Adobe’s Flash product in targeted, ‘APT-style’ attacks. The vulnerability, identified as CVE-2012-0754 was patched in February and linked to targeted attacks weeks later. But new attacks targeting unpatched...

10CVSS2.3AI score0.9203EPSS
Exploits11References4
ThreatPost
ThreatPost
added 2012/03/27 3:40 p.m.37 views

Carberp: It's Not Over Yet

On 20 March, Russian law enforcement agencies announced the arrest of a cybercriminal gang involved in stealing money using the Carberp Trojan. This is very good news, but unfortunately does not mark the end of the Carberp story. Evidently, those arrested were just one of the criminal gangs using...

10CVSS0.6AI score0.96714EPSS
Exploits25
ThreatPost
ThreatPost
added 2012/03/20 6:8 p.m.37 views

Exploit For Ms12-020 RDP Bug Moves to Metasploit

As the inquiry into who leaked the proof-of-concept exploit code for the MS12-020 RDP flaw continues, organizations that have not patched their machines yet have a new motivation to do so: A Metasploit module for the vulnerability is now available. It’s been a week now since Microsoft released a...

9.3CVSS8.6AI score0.99945EPSS
Exploits33References2
ThreatPost
ThreatPost
added 2011/12/07 7:15 p.m.37 views

Adobe Zero-Day Targets Lockheed Martin

Adobe said a previously undisclosed vulnerability in its Reader and Acrobat applications was passed along by defense contractor Lockheed Martin, raising the specter of a targeted attack on the important military supplier. In issuing a warning about a critical flaw on Tuesday, Adobe credied both...

7.1AI score
Exploits0References6
ThreatPost
ThreatPost
added 2011/11/05 9:8 p.m.37 views

Stars Attack on Iran Was Early Version of Duqu

A few months after the hysteria around Stuxnet had died down, officials in Iran announced in April that some sensitive systems in the government’s networks had been attacked by a new piece of malware, known then as Stars. It now appears that attack was, in fact, the first appearance of an early...

9.3CVSS1.5AI score0.78285EPSS
Exploits1References5
ThreatPost
ThreatPost
added 2011/10/25 5:51 p.m.37 views

Google Fixes 27 Bugs in Chrome 15

Google has fixed more than two dozen vulnerabilities in its Chrome browser and also implemented a defense against the BEAST SSL attack. The bugs fixed in the new version of Chrome include 11 high-severity flaws. As part of its bug bounty program, Google paid more than $26,000 in rewards to...

7.5CVSS6.5AI score0.0208EPSS
Exploits0References32
ThreatPost
ThreatPost
added 2010/11/02 7:15 p.m.37 views

Adobe Accelerates Patch Schedule for Critical Flash Bug

Adobe has moved up the release date for the patch for the critical bug in Adobe Flash Player revealed last week, and now plans to have a fix ready on Thursday. The company still plans to patch Reader two weeks from now. The vulnerability in Flash also exists in Reader and researchers said last we...

9.3CVSS3AI score0.69679EPSS
Exploits14References4
ThreatPost
ThreatPost
added 2010/01/19 9:27 p.m.37 views

Apple Patches 12 Serious Mac OS X Flaws

Apple’s first Mac OS X security update for 2010 is out, providing cover for at least 12 serious vulnerabilities. The update, rated critical, plugs security holes that could lead to code execution vulnerabilities if a Mac user is tricked into opening audio files or surfing to a rigged Web site. Wi...

9.3CVSS1.6AI score0.87264EPSS
Exploits18References1
ThreatPost
ThreatPost
added 2009/12/29 9:50 p.m.37 views

Apple Safari

Buffer overflow in ImageIO in Apple Mac OS X 10.5 before 10.5.8, and Safari before 4.0.3, allows remote attackers to execute arbitrary code or cause a denial of service application crash via an image with crafted EXIF metadata. Apple Safari, possibly before 4.0.3, on Mac OS X does not properly...

6.8CVSS7.1AI score0.05741EPSS
Exploits4
ThreatPost
ThreatPost
added 2022/07/20 12:14 p.m.36 views

Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems

Magecart campaigns have been skimming payment-card credentials of unsuspecting customers using three online restaurant-ordering systems, affecting about 300 restaurants that use the services and compromising tens of thousands of cards so far, researchers have found. Two separate ongoing Magecart...

7.1AI score
Exploits0References11
ThreatPost
ThreatPost
added 2022/07/14 3:8 p.m.36 views

Journalists Emerge as Favored Attack Target for APTs

Targeted phishing attacks are traced to multiple threat actors who have each independently focused on stealing credentials and sensitive data and tracking the geolocation of journalists. In a Thursday report by Proofpoint, researchers outline individual efforts by advance persistent threat APT...

7.5AI score
Exploits0References12
ThreatPost
ThreatPost
added 2022/07/08 10:46 a.m.36 views

U.S. Healthcare Orgs Targeted with Maui Ransomware

Several federal agencies are warning healthcare organizations that they are under threat of attacks from North Korean state-sponsored actors employing a unique ransomware that targets files with surgical precision, according to U.S. federal authorities. Threat actors from North Korea have been...

7AI score
Exploits0References12
ThreatPost
ThreatPost
added 2022/01/20 2:27 p.m.36 views

SEC Filing Reveals Fortune 500 Firm Targeted in Ransomware Attack

Fortune 500 integrated services firm R.R.Donnelley & Sons RRD is the latest victim of the hacking collective known as the Conti Group. According to regulatory disclosures RRD was the victim of a network breach that resulted in stolen data in December. RRD, a global firm with 33,000 employees,...

7.2AI score
Exploits0References10
ThreatPost
ThreatPost
added 2022/01/05 1:0 p.m.36 views

‘Malsmoke’ Exploits Microsoft’s E-Signature Verification

Threat actors are exploiting Microsoft’s digital signature verification to steal user credentials and other sensitive information by delivering the ZLoader malware, which previously has been used to distribute Ryuk and Conti ransomware, researchers have found. Researchers at Check Point Research...

7.4AI score
Exploits0References10
ThreatPost
ThreatPost
added 2021/10/22 11:44 a.m.36 views

Threat Actors Abuse Discord to Push Malware

Threat actors are abusing the core features of the popular Discord digital communication platform to persistently deliver various types of malware—in particular remote access trojans RATs that can take over systems–putting its 150 million users at risk, researchers have found. RiskIQ and CheckPoi...

7.3AI score
Exploits0References6
ThreatPost
ThreatPost
added 2021/10/21 5:33 p.m.36 views

Gigabyte Allegedly Hit by AvosLocker Ransomware

The AvosLocker ransomware gang is claiming that it breached tech giant Gigabyte and has leaked a sample of what it claims are files stolen from the Taiwanese company’s network. It’s offering to sell the rest. On Wednesday, the gang posted a “press release” announcing that it had purportedly gutte...

6.7AI score
Exploits0References14
ThreatPost
ThreatPost
added 2021/10/18 8:55 p.m.36 views

Podcast: Could the Zoho Flaw Trigger SolarWinds 2.0?

A month ago, the FBI, CISA and the U.S. Coast Guard Cyber Command CGCYBER warned that state-backed advanced persistent threat APT actors are likely among those who’d been actively exploiting a critical flaw in a Zoho-owned single sign-on and password management tool since early August. At issue w...

8.6AI score
Exploits0References7
ThreatPost
ThreatPost
added 2021/10/13 1:22 p.m.36 views

Mandating a Zero-Trust Approach for Software Supply Chains

In the wake of the SolarWinds attack last year, President Biden issued an executive order in May advocating for mandatory software bills of materials, or SBOMs, to increase software transparency and counter supply-chain attacks. For reference, SBOMs are machine-readable documents that provide a...

7.4AI score
Exploits0References7
ThreatPost
ThreatPost
added 2021/09/28 9:36 p.m.36 views

How to Prevent Account Takeovers in 2021

Data breaches and hacking put internet users at risk of account takeover, if cybercriminals successfully gain access to valid login credentials. There are reckoned to be in excess of 8.4 million discrete passwords currently circulating online, more than 3.5 billion of which are tied to active...

7.9AI score
Exploits0References8
ThreatPost
ThreatPost
added 2021/09/20 7:2 p.m.36 views

Payment API Bungling Exposes Millions of Users’ Payment Data

App developers have once again been accused of having butterfingers when it comes to API keys, leaving millions of mobile app users at risk of exposing their personal and payment data. CloudSEK, maker of artificial intelligence- AI- enabled digital threat protection, reported last week that the...

7.3AI score
Exploits0References13
ThreatPost
ThreatPost
added 2021/08/17 6:56 p.m.36 views

The Overlooked Security Risks of The Cloud

Cloud networking has done more to change computing as we know it than any other innovation in the last 15 years. It’s enabled small companies to quickly deploy an online presence, large companies to scale as demand ebbs and flows, and in a post-COVID world, it provides the foundation for a remote...

6.9AI score
Exploits0References6
ThreatPost
ThreatPost
added 2021/06/11 6:29 p.m.36 views

Baby Clothes Giant Carter’s Leaks 410K Customer Records

Baby clothes retailer Carter’s inadvertently exposed the personal data of hundreds of thousands of its customers, dating back years, according to a new disclosure. The issue started with Linc, which is a vendor the company used to automate purchases online, according to analysts with vpnMentor wh...

7.1AI score
Exploits0References7
ThreatPost
ThreatPost
added 2021/05/12 12:41 p.m.36 views

TeaBot Trojan Targets Banks via Hijacked Android Handsets

Researchers have discovered an Android trojan that can steal victims’ SMS messages and credentials and completely take over devices. The trojan, dubbed TeaBot, is aimed at committing fraud against at least 60 banks in Europe. Join Threatpost for “Fortifying Your Business Against Ransomware, DDoS ...

5.5AI score
Exploits0References13
Total number of security vulnerabilities5000