Threatpost

Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 32 min 17 sek zpět

WikiLeaks Reveals CIA Tool ‘Scribbles’ For Document Tracking

20 hodin 1 min zpět
The CIA is planting web beacons inside Microsoft Word documents to track whistleblowers, journalists and informants, according to WikiLeaks.
Kategorie: Hacking & Security

Threatpost News Wrap, April 28, 2017

28 Duben, 2017 - 16:28
Mike Mimoso and Chris Brook recap this year's SOURCE Boston Conference and discuss the week in news, including the long term implications of the NSA's DoublePulsar exploit, and the HipChat breach.
Kategorie: Hacking & Security

Ransomware, Cyberespionage Dominate Verizon DBIR

28 Duben, 2017 - 00:19
Verizon's Data Breach Investigations Report for 2017 shows big growth in the reported number of ransomware attacks and incidents involving cyberespionage.
Kategorie: Hacking & Security

Lack of Communication Achilles’ Heel for Ransomware Fighters

27 Duben, 2017 - 23:12
A member of law enforcement acknowledged at SOURCE Boston that the lack of communication around ransomware remains a serious problem.
Kategorie: Hacking & Security

Chrome to Mark More HTTP Pages ‘Not Secure’

27 Duben, 2017 - 20:27
Starting with Chrome 62, Google will start marking any HTTP page where users may enter data, and any HTTP page visited in incognito mode
Kategorie: Hacking & Security

The Time Has Arrived to Embrace Hackers

27 Duben, 2017 - 17:47
Source Boston keynoter Keren Elazari sounded a call to action for industry to extend an acceptance of hackers.
Kategorie: Hacking & Security

Attack Method Highlights Weaknesses in Microsoft CFG

27 Duben, 2017 - 16:02
As Microsoft hardens its defenses with tools such as Control Flow Guard, researchers at Endgame are preparing for the reality of Counterfeit Object-Oriented Programming attacks to move from theoretical to real.
Kategorie: Hacking & Security

Air Force Hopes To Attract Hackers With Bug Bounty Program

26 Duben, 2017 - 21:43
The Hack the Air Force bug bounty program invites white hats from inside and outside the U.S. to hack its websites.
Kategorie: Hacking & Security

Lack of Security Talent Afflicts Healthcare

26 Duben, 2017 - 17:39
At Source Boston, Josh Corman of the Atlantic Council said that healthcare is suffering from a lack of security talent, devices rife with vulnerabilities, and government incentivizing bad behavior.
Kategorie: Hacking & Security

Auto Lender Exposes Loan Data For Up To 1 Million Applicants

26 Duben, 2017 - 15:15
A trove of consumer auto loan data—some 1 million records—has been locked down after a researcher found an exposed and accessible database online.
Kategorie: Hacking & Security

Atlassian Resets HipChat Passwords Following Breach

25 Duben, 2017 - 21:34
Atlassian reset user passwords for its group chat service HipChat on Monday following an incident that may have resulted in unauthorized access to a server used by the service.
Kategorie: Hacking & Security

xDedic Market Spilling Over With School Servers, PCs

25 Duben, 2017 - 19:45
Nearly two-thirds of servers and PCs peddled on the xDedic underground marketplace belong to schools and universities based in United States.
Kategorie: Hacking & Security

ColdFusion Hotfix Resolves XSS, Java Deserialization Bugs

25 Duben, 2017 - 18:36
Adobe released an important security hotfix for several versions of Coldfusion, resolving two bugs, Tuesday morning.
Kategorie: Hacking & Security

Zimperium Acquisition Program Publishes Exploits for Patched Android Bugs

25 Duben, 2017 - 16:30
Exploits for patched Android elevation of privilege vulnerabilities were published through the Zimperium N-Days Exploit Acquisition Program.
Kategorie: Hacking & Security

Hyundai Patches Leaky Blue Link Mobile App

25 Duben, 2017 - 15:05
Hyundai Motor America patched its Blue Link mobile app after researchers found a cleartext encryption key that could be use to expose user and vehicle information.
Kategorie: Hacking & Security

Hard Target: Fileless Malware

25 Duben, 2017 - 13:00
Researchers say fileless in-memory malware attacks have become a major nuisance to businesses and have become even harder to detect and defend.
Kategorie: Hacking & Security

Original XPan Ransomware Returns, Targets Brazilian SMBs

25 Duben, 2017 - 12:00
Brazilian cybercriminals are using the original version of the XPan ransomware, targeting small to medium-sized business based in Brazil with the malware.
Kategorie: Hacking & Security

NSA’s DoublePulsar Kernel Exploit In Use Internet-Wide

24 Duben, 2017 - 21:31
Scans show tens of thousands of Windows servers infected with the DoublePulsar kernel exploit leaked by the ShadowBrokers two weeks ago.
Kategorie: Hacking & Security

Locky Ransomware Roars Back to Life Via Necurs Botnet

24 Duben, 2017 - 20:53
The first large scale Locky campaign in months has been detected via the Necurs botnet.
Kategorie: Hacking & Security

No Fix for SquirrelMail Remote Code Execution Vulnerability

24 Duben, 2017 - 19:52
SquirrelMail suffers from a remote code execution vulnerability that could let attackers execute arbitrary commands on the target and compromise the remote system.
Kategorie: Hacking & Security