Lucene search
K
ThreatpostMost viewed

15946 matches found

ThreatPost
ThreatPost
added 2011/05/12 5:55 p.m.36 views

Google Fixes Two Chrome Bugs, Adds Flash 10.3 to Browser

Google has released an updated version of its Chrome browser, which includes fixes for two security vulnerabilities as well as a new version of the Adobe Flash player. The latest version of Chrome is just a small incremental update of the browser, and there were no bugs found by external...

6.8CVSS1.9AI score0.0119EPSS
Exploits2References5
ThreatPost
ThreatPost
added 2011/04/13 4:13 p.m.36 views

Analysis of the New Adobe Flash Attacks

When Adobe warned customers earlier this week about a newly discovered vulnerability in the Flash Player software, company officials said that there were already attacks underway against the bug. Those attacks are using malicious Flash files buried in Word documents and Microsoft’s security...

9.3CVSS0.3AI score0.9941EPSS
Exploits14References4
ThreatPost
ThreatPost
added 2010/09/09 3:38 p.m.36 views

Adobe Exploit Bypasses ASLR and DEP, Drops Signed Malicious File

Attackers are using a previously unknown exploitation technique that bypasses both ASLR and DEP to exploit the unpatched Adobe Reader bug that Adobe warned users about on Wednesday. The exploit works on machines running either Windows Vista or Windows 7 and is also dropping a file on compromised...

9.3CVSS1.3AI score0.82485EPSS
Exploits13References7
ThreatPost
ThreatPost
added 2010/08/11 7:43 p.m.36 views

Apple Zaps JailbreakMe Bugs in Record Time

Less than two weeks after exploits for a pair of serious security vulnerabilities were fitted into an automated JailbreakMe.com exploit, Apple has rushed out a patch to block the jailbreaking of iPhone, iPad and iPod Touch devices. The iOS 3.2.2 for iPad and iOS 4.0.2 iPhone and iPod Touch update...

9.3CVSS1AI score0.30653EPSS
Exploits8References1
ThreatPost
ThreatPost
added 2010/03/16 1:49 p.m.36 views

Security Risks Abound in Virtualized Environments

Through 2012, 60 percent of virtualized servers will be less secure than the physical servers they replace, according to Gartner. Although they expect this figure to fall to 30 percent by the end of 2015, analysts warned that many virtualization deployment projects are being undertaken without...

7.2CVSS1.7AI score0.37212EPSS
Exploits6References2
ThreatPost
ThreatPost
added 2010/01/19 9:27 p.m.36 views

Apple Patches 12 Serious Mac OS X Flaws

Apple’s first Mac OS X security update for 2010 is out, providing cover for at least 12 serious vulnerabilities. The update, rated critical, plugs security holes that could lead to code execution vulnerabilities if a Mac user is tricked into opening audio files or surfing to a rigged Web site. Wi...

9.3CVSS1.6AI score0.87264EPSS
Exploits18References1
ThreatPost
ThreatPost
added 2022/07/06 10:33 a.m.35 views

Human Error Blamed for Leak of 1 Billion Records of Chinese Citizens

A prominent Chinese tech CEO has cited human error as the likely reason hackers got their hands on the personal data of 1 billion people in China from a Shanghai police database and then put some of it up for sale on illicit online markets. A government developer wrote a blog post on the China...

7.1AI score
Exploits0References16
ThreatPost
ThreatPost
added 2022/04/26 12:29 p.m.35 views

Firms Push for CVE-Like Cloud Bug System

Big gaps exist in the 22-year-old Common Vulnerability and Exposures CVE system that do not address dangerous flaws in cloud services that drive millions of apps and backend services. Too often, cloud providers needlessly expose customers to risk by not sharing the details of bugs discovered on...

7.3AI score
Exploits0References3
ThreatPost
ThreatPost
added 2022/01/28 4:54 p.m.35 views

Zerodium Spikes Payout for Outlook Zero-Days

Zerodium has jacked up its offering price for Microsoft Outlook zero-day exploits. Act fast if you have the goods and the moral equanimity, to make up to $400,000 for a zero-click, remote code-execution RCE exploit. “Zero-click” means that targets neither have to read a malicious email message no...

6.5CVSS6.8AI score0.04992EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2022/01/14 4:6 p.m.35 views

‘Be Afraid:’ Massive Cyberattack Downs Ukrainian Gov’t Sites

Cyberattackers brought down around 70 Ukrainian government websites on Friday, defacing the site of the foreign ministry with a message to “Be afraid and expect the worst.” The huge attack hit on Friday, unfolding hours after Russia and Western allies wrapped up fruitless talks intended to...

7.5AI score
Exploits0References24
ThreatPost
ThreatPost
added 2022/01/04 5:12 p.m.35 views

Purple Fox Rootkit Dropped by Malicious Telegram Installers

A malicious Telegram instant-messaging app installer scurries past a slew of antivirus AV engines to deliver Purple Fox malware, evading detection by separating the attack into bite-sized morsels that fly under the radar. In a Monday report, Minerva Labs said that the attack evades detection by A...

7.3AI score
Exploits0References12
ThreatPost
ThreatPost
added 2021/12/01 7:34 p.m.35 views

80K Retail WooCommerce Sites Exposed by Plugin XSS Bug

The plugin “Variation Swatches for WooCommerce,” installed across 80,000 WordPress-powered retail sites, contains a stored cross-site scripting XSS security vulnerability that could allow cyberattackers to inject malicious web scripts and take over sites. Variation Swatches is designed to allow...

6.4CVSS5.8AI score0.00531EPSS
Exploits0References8
ThreatPost
ThreatPost
added 2021/11/22 8:13 p.m.35 views

Online Merchants: Prevent Fraudsters from Becoming Holiday Grinches

As the holiday shopping season gets into full swing, merchants aren’t the only ones expecting to have a prosperous year. Fraudsters, too, are out to grab their illicit share of the money changing hands or accounts in the weeks ahead. Especially susceptible to theft by fraud are millions of...

6.9AI score
Exploits0References8
ThreatPost
ThreatPost
added 2021/11/15 9:53 p.m.35 views

The Best Ransomware Response, According to the Data

Ransomware has become part of the cost of doing business, and driving down that cost can be the difference between recovery and catastrophe. A data analysis from Fox-IT, part of NCC Group, offers some best practices for how to minimize the fallout of a ransomware attack, after creating a dataset ...

7.1AI score
Exploits0References6
ThreatPost
ThreatPost
added 2021/11/02 8:55 p.m.35 views

Squid Game Crypto Scammers Rip Off Investors for Millions

Players in the Squid Game cryptocurrency market have been eliminated — at least their investment has — by what cryptocurrency watchers have called a classic “rug-pull” scam. When SQUID tokens were first released last week, they were valued at a paltry $0.01 but promised entry into a game with the...

7.2AI score
Exploits0References10
ThreatPost
ThreatPost
added 2021/10/04 8:40 p.m.35 views

Facebook Outage Drags Down Instagram, WhatsApp, Messenger, Oculus VR

As of Monday afternoon, Facebook had been flat on its face for hours, suffering a simultaneous worldwide outage not only on its main site, but also at its Instagram, WhatsApp, Messenger and Oculus VR subsidiaries. We’re aware that some people are having trouble accessing Facebook app. We’re worki...

7.1AI score
Exploits0References12
ThreatPost
ThreatPost
added 2021/09/29 8:48 p.m.35 views

Apple AirTag Zero-Day Weaponizes Trackers

An unpatched stored cross-site scripting XSS bug in Apple’s AirTag “Lost Mode” could open up users to a cornucopia of web-based attacks, including credential-harvesting, click-jacking, malware delivery, token theft and more. That’s according to Bobby Rauch, an independent security researcher who...

5.9AI score
Exploits0References5
ThreatPost
ThreatPost
added 2021/09/16 6:26 p.m.35 views

Airline Credential-Theft Takes Off in Widening Campaign

A two-year-old espionage campaign against the airline industry is ongoing, with AsyncRAT and other commodity remote-access trojans RATs helping those efforts take flight. The campaign can effectively be a bird strike to the business engine, so to speak, resulting in data theft, financial fraud or...

6.9AI score
Exploits0References13
ThreatPost
ThreatPost
added 2021/08/17 6:56 p.m.35 views

The Overlooked Security Risks of The Cloud

Cloud networking has done more to change computing as we know it than any other innovation in the last 15 years. It’s enabled small companies to quickly deploy an online presence, large companies to scale as demand ebbs and flows, and in a post-COVID world, it provides the foundation for a remote...

6.9AI score
Exploits0References6
ThreatPost
ThreatPost
added 2021/08/11 4:43 p.m.35 views

Friends Reunion Anchors Video Swindle

The second quarter saw a rise in entertainment lures for fraud and phishing, including one campaign capitalizing on the buzz around “Friends: The Reunion.” Researchers at Kaspersky found fake sites supposedly hosting video for the much-anticipated special episode of the popular sitcom, according ...

6.8AI score
Exploits0References3
ThreatPost
ThreatPost
added 2021/05/14 12:30 p.m.35 views

Ransomware’s New Swindle: Triple Extortion

Ransomware attacks are exploding at a staggering rate, and so are the ransoms being demanded. Now experts are warning against a new threat — triple extortion — which means that attackers are expanding out to demand payments from customers, partners and other third parties related to the initial...

5.8AI score
Exploits0References12
ThreatPost
ThreatPost
added 2021/04/12 6:14 p.m.35 views

Zero Trust: The Mobile Dimension

After embarking on a second unforeseen year of mass remote work, everyone is now accessing corporate resources through the cloud. To help enable this, organizations are introducing new technologies into their standard workflows. The COVID-19 pandemic presented a new realm of unmarked territory as...

0.1AI score
Exploits0References1
ThreatPost
ThreatPost
added 2021/04/05 9:4 p.m.35 views

Spy Operations Target Vietnam with Sophisticated RAT

An advanced cyberespionage campaign targeting government and military entities in Vietnam has been discovered that delivered a remote-access tool RAT for carrying out espionage operations, researchers said. Further analysis suggested that this campaign was conducted by a group related to a...

7.6AI score
Exploits0References5
ThreatPost
ThreatPost
added 2021/03/25 8:4 p.m.35 views

Microsoft Offers Up To $30K For Teams Bugs

Microsoft wants to send the message the company is serious about the security of its popular Teams desktop application and it’s willing to put some cash behind the talk. A new bug-bounty program offers up to $30,000 for security vulnerabilities, with top payouts going to those with the most...

Exploits0References9
ThreatPost
ThreatPost
added 2021/03/03 7:18 p.m.35 views

RTM Cybergang Adds New Quoter Ransomware to Crime Spree

The Russian-speaking group behind the infamous RTM banking trojan is now packing a trifecta of threats as it turns up the heat – part of a massive new money-grab campaign. Beyond the banking malware it is known for, attackers have enlisted a recently-discovered ransomware family called Quoter as...

0.7AI score
Exploits0References12
ThreatPost
ThreatPost
added 2021/02/26 6:0 p.m.35 views

Yeezy Fans Face Sneaker-Bot Armies for Hot Kicks Releases

Shopping bots are likely to make it tough for everyday sneakerheads to get their hands on a pair of new Adidas Yeezy shoes from Kanye West as more styles become available through retailers in the next few months. Researchers at Cequence Security track bots across the internet, and the company’s...

7.1AI score
Exploits0References7
ThreatPost
ThreatPost
added 2021/01/04 8:14 p.m.35 views

Leading Game Publishers Hit Hard by Leaked-Credential Epidemic

Leading gaming companies, such as Ubisoft, have become big targets for cybercriminals that aim to turn a profit by selling leaked insider-credentials tied to the top game publishers. Over 500,000 stolen credentials tied to the top 25 gaming firms were found on caches of breached data online and u...

0.5AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/12/22 4:24 p.m.35 views

Tech Giants Lend WhatsApp Support in Spyware Case Against NSO Group

Facebook subsidiary WhatsApp has received new high-caliber support in its case against Israeli intelligence company NSO Group. The court case aims to hold NSO Group accountable for distributing its Pegasus spyware on the popular WhatsApp messaging service with the intent of planting its spyware o...

7.1AI score
Exploits0References15
ThreatPost
ThreatPost
added 2020/12/18 4:0 p.m.35 views

Insider Threats: What Are They, Really?

What an insider threat really is The idea of an “insider threat” sounds like some sort of double agent hiding away in a cubicle—someone hired to steal company secrets and take you down. That sounds pretty exciting, but it’s not very accurate. When we talk about insider threats, in reality, we’re...

6.7AI score
Exploits0References4
ThreatPost
ThreatPost
added 2020/12/15 4:47 p.m.35 views

Agent Tesla Keylogger Gets Data Theft and Targeting Update

Six-year-old keylogger malware called Agent Tesla has been updated again, this time with expanded targeting and improved data exfiltration features. Agent Tesla first came into the scene in 2014, specializing in keylogging designed to record keystrokes made by a user in order to exfiltrate data...

0.8AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/12/07 9:30 p.m.35 views

Rana Android Malware Updates Allow WhatsApp, Telegram IM Snooping

Researchers have discovered new samples of a previously discovered Android malware, which is believed to be linked to the APT39 Iranian cyberespionage threat group. The new variant comes with new surveillance capabilities – including the ability to snoop on victims’ Skype, Instagram and WhatsApp...

0.3AI score
Exploits0References11
ThreatPost
ThreatPost
added 2020/12/03 10:4 p.m.35 views

Kmart, Latest Victim of Egregor Ransomware – Report

Retail stalwart Kmart has suffered a ransomware attack at the hands of the Egregor gang, according to a report. The incident has encrypted devices and servers connected to the company’s networks, knocking out back-end services, according to BleepingComputer. The outlet obtained the purported rans...

0.1AI score
Exploits0References8
ThreatPost
ThreatPost
added 2020/11/24 5:46 p.m.35 views

Smart Doorbells on Amazon, eBay, Harbor Serious Security Issues

Researchers have found serious security and privacy issues in 11 different smart doorbells, distributed via online marketplaces like Amazon and eBay, which could be exploited by attackers to physically switch off the devices. Smart doorbells, which connect to a smartphone and alert users when...

8.2AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/11/23 9:8 p.m.35 views

GoDaddy Employees Tricked into Compromising Cryptocurrency Sites

A recent social-engineering “vishing” attack on domain registrar GoDaddy temporarily handed over control of cryptocurrency service sites NiceHash and Liquid to fraudsters, exposing personal information of users. Vishing is a phishing scam that uses voice interactions over the phone to gain trust...

7.6AI score
Exploits0References4
ThreatPost
ThreatPost
added 2020/11/19 6:45 p.m.35 views

Code42 Incydr Series: Protect IP with Code42 Incydr

Stealing a jumbo-jet airplane sounds like a ridiculous movie, but it’s actually just one example of IP theft. It’s happening to tech giants like Twitter and Google, and consumer brands like Hershey. But it’s also happening to organizations built around security — like McAfee and even the CIA. In...

0.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2020/11/10 4:41 p.m.35 views

Ghimob Android Banking Trojan Targets 153 Mobile Apps

A new banking trojan has been discovered targeting Android users, with the capabilities to spy on 153 mobile apps from various banks, cryptocurrencies and exchanges. Researchers describe the banking trojan, called Ghimob, as a “full-fledged spy in your pocket” that can be accessed remotely by its...

0.9AI score
Exploits0References11
ThreatPost
ThreatPost
added 2020/10/22 1:43 p.m.35 views

Feds: Iran Behind 'Proud Boys' Email Attacks on Democratic Voters

Federal officials claim that Iranian threat actors are behind two separate email campaigns that assailed Democratic voters this week with threats to “vote for Trump or else.” The campaigns claimed to be from violent extremist group Proud Boys. Two specific email campaigns — one on Tuesday Oct. 20...

1.2AI score
Exploits0References12
ThreatPost
ThreatPost
added 2020/10/13 2:45 p.m.35 views

TrickBot Takedown Disrupts Major Crimeware Apparatus

The TrickBot trojan has been dealt a serious blow thanks to a coordinated action led by Microsoft that disrupted the botnet that spreads it. However, researchers warn that the operators will quickly try to revive their operations. TrickBot is known for spreading other malware, especially...

0.3AI score
Exploits0References12
ThreatPost
ThreatPost
added 2020/10/07 1:0 p.m.35 views

Comcast TV Remote Hack Opens Homes to Snooping

A security flaw allowing attackers to remotely snoop in on victims’ private conversations was found to stem from an unexpected device – their TV remotes. The flaw stems from Comcast’s XR11, a popular voice-activated remote control for cable TV, which has more than 18 million units deployed across...

0.3AI score
Exploits0References7
ThreatPost
ThreatPost
added 2020/09/02 1:0 p.m.35 views

Live Webinar: XDR and Beyond

Anyone paying attention to the cybersecurity technology market has heard the term XDR – Extended Detection and Response. It’s a new technology approach that combines multiple protection technologies into a single platform. All the analyst firms are writing about it and many of the top cybersecuri...

0.4AI score
Exploits0References2
ThreatPost
ThreatPost
added 2020/08/26 4:9 p.m.35 views

Hackers Exploit Autodesk Flaw in Recent Cyberespionage Attack

Threat actors exploited a vulnerability in the popular 3D computer graphics Autodesk software in order to launch a recent cyber-espionage attack against an international architectural and video production company. Researchers said that further analysis of the attack points to a sophisticated,...

0.1AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/07/15 4:57 p.m.35 views

Brazil's Banking Trojans Go Global

Malware that is typically used in Brazil is expanding its geography, targeting users in North America, Europe and elsewhere in Latin America. Banking trojans, which steal online banking logins and other financial credentials from unsuspecting victims, are fairly common – but the more sophisticate...

0.5AI score
Exploits0References5
ThreatPost
ThreatPost
added 2020/06/23 1:0 p.m.35 views

The Evolution of DevSecOps

The DevOps methodology offers organizations of all sizes from across all industries a framework for delivering value and responsiveness. Instead of traditional distinct development and operations teams, DevOps embraces multidisciplinary teams that use efficient practices that support continuous...

1.5AI score
Exploits0References1
ThreatPost
ThreatPost
added 2020/06/17 9:5 p.m.35 views

Premier League's Return: A Hat Trick of Cyberthreats?

England’s Premier League is returning this week, with millions of soccer fans around the world looking to stream matches using their online video accounts. Unfortunately, the U.K.’s National Cyber Security Centre NCSC is warning on phishing, fraud and brute-forcing attempts by attackers looking t...

7.3AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/06/12 7:52 p.m.35 views

Knoxville Ransomware Attack Leads to IT Network Shutdown

The city of Knoxville, Tenn. is reeling from a ransomware attack that knocked the city’s network offline and prevented police officers from responding to non-life-threatening traffic crashes. The incident occurred Wednesday and shuttered systems until Thursday. Also impacted was the city’s intern...

0.3AI score
Exploits0References12
ThreatPost
ThreatPost
added 2020/05/05 3:55 p.m.35 views

GoDaddy Hack Breaches Hosting Account Credentials

UPDATE GoDaddy, the world’s largest domain name registrar, is warning customers that attackers may have obtained their web hosting account credentials. An “unauthorized individual” was able to access users’ login details in an intrusion that the company said took place back in October — the compa...

0.9AI score
Exploits0References9
ThreatPost
ThreatPost
added 2020/03/11 1:56 p.m.35 views

More Than Half of IoT Devices Vulnerable to Severe Attacks

More than half of all internet of things IoT devices are vulnerable to medium- or high-severity attacks, meaning that enterprises are sitting on a “ticking IoT time bomb,” according to Palo Alto Networks Unit 42 research team. In new research released Tuesday, researchers said that several...

7.2AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/11/21 4:35 p.m.35 views

Gnip Banking Trojan Shows Ongoing, Aggressive Development

A new custom mobile banking malware for Android, dubbed Gnip, has emerged onto the scene, and its authors have taken an aggressive development track: Gnip appears to have been cobbled together in under five months, with four different variants already circulating — including a sample released in...

7.5AI score
Exploits0References5
ThreatPost
ThreatPost
added 2019/07/09 4:0 p.m.35 views

Marriott Hit With $123M Fine For Massive 2018 Data Breach

The U.K.’s privacy watchdog is hitting Marriott International with a $123 million £99 million penalty stemming from its 2018 data breach of more than 383 million guest records. The Tuesday fine is issued by the Information Commissioner’s Office ICO and comes only a day after the organization...

7.1AI score
Exploits0References14
ThreatPost
ThreatPost
added 2019/06/06 2:6 p.m.35 views

Help Keep Data and Systems Safe with Access Rights Manager (ARM)

Built to provision, deprovision, audit, and manage user access rights to data, files, and other systems, SolarWinds® Access Rights Manager ARM is designed to help security admins and IT pros protect their companies from potential risks like data loss and breaches. Visualize who has access to what...

0.2AI score
Exploits0References10
Total number of security vulnerabilities5000