Threatpost

Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 1 týden 19 hodin zpět

Samples of SiliVaccine Offer Rare Peek Inside North Korea’s Antivirus Software

1 Květen, 2018 - 22:55
Samples of North Korean antivirus software called SiliVaccine crib software code from a competitor and come loaded with malware and a backdoor.
Kategorie: Hacking & Security

Volkswagen Cars Open To Remote Hacking, Researchers Warn

1 Květen, 2018 - 22:19
Vulnerable in-vehicle infotainment systems have left some Volkswagen cars open to remote hacking, researchers warn.
Kategorie: Hacking & Security

Tens of Thousands of Malicious Apps Using Facebook APIs

1 Květen, 2018 - 16:53
The apps are deemed malicious by doing things such as capturing pictures and audio when the app is closed, or making an unusually large amount of network calls.
Kategorie: Hacking & Security

USB Sticks Can Trigger BSOD – Even on a Locked Device

30 Duben, 2018 - 22:52
Thanks to auto-play, it’s possible to crash Windows systems by simply inserting the drive into the USB port, no further user interaction necessary.
Kategorie: Hacking & Security

KRACK Vulnerability Puts Medical Devices At Risk

30 Duben, 2018 - 22:43
A slew of products from medical dispensing company BD are susceptible to the KRACK vulnerability disclosed last fall.
Kategorie: Hacking & Security

Updated GravityRAT Malware Adds Advanced AV Detection

30 Duben, 2018 - 20:20
Researchers warn that the code behind this remote access trojan has been tweaked in an attempt to decrease antivirus detection.
Kategorie: Hacking & Security

NIST Updates Cybersecurity Framework to Tackle Supply Chain Threats, Vulnerability Disclosure and More

30 Duben, 2018 - 17:49
Version 1.1 includes updates on authentication and identity, self-assessment, supply-chain security and vulnerability disclosure, among other changes.
Kategorie: Hacking & Security

Twitter Sold Data To Cambridge Analytica-Linked Company

30 Duben, 2018 - 17:02
Twitter is the latest company to face backlash for how it handles data privacy after disclosing that it sold data access to a Cambridge Analytica-linked researcher.
Kategorie: Hacking & Security

SamSam Ransomware Evolves Its Tactics Towards Targeting Whole Companies

27 Duben, 2018 - 21:41
The gang behind the Atlanta city shutdown and other attacks is selecting victims carefully and offering volume discounts to unlock whole organizations.
Kategorie: Hacking & Security

Uber Tightens Bug Bounty Extortion Policies

27 Duben, 2018 - 19:16
Uber is tightening policies around its bug bounty program after a 2016 data breach exposed deep flaws in its policies around handling extortion.
Kategorie: Hacking & Security

ThaiCERT Seizes Hidden Cobra Server Linked to GhostSecret, Sony Attacks

27 Duben, 2018 - 17:58
It's analyzing the server, operated by the North Korea-sponsored APT, which was used to control the global GhostSecret espionage campaign affecting 17 countries.
Kategorie: Hacking & Security

Microsoft Issues More Spectre Updates For Intel CPUs

26 Duben, 2018 - 21:39
Microsoft has released new Spectre mitigations for Windows 10, which include Intel microcode fixes for CPUs running on Windows.
Kategorie: Hacking & Security

Rubella Crimeware Kit: Cheap, Easy and Gaining Traction

26 Duben, 2018 - 21:33
Taking a “dirty deeds done dirt cheap” approach, the kit generates an initial malware payload for social-engineering spam campaigns for just $40 per month.
Kategorie: Hacking & Security

PyRoMine Uses NSA Exploit for Monero Mining and Backdoors

26 Duben, 2018 - 20:21
Not just a miner, the malware also sets up a hidden default account with system administrator privileges, to be used for re-infection and further attacks.
Kategorie: Hacking & Security

Western Digital My Cloud EX2 NAS Device Leaks Files

25 Duben, 2018 - 22:42
Default configuration of WD’s My Cloud storage device keeps port open for unprivileged data exfiltration within a network.
Kategorie: Hacking & Security

Metamorfo Targets Brazilian Users with Banking Trojans

25 Duben, 2018 - 19:27
In an unusual move, Metamorfo abuses legitimate, signed Windows binaries to load the malicious code.
Kategorie: Hacking & Security

Europol Smacks Down World’s Largest DDoS-for-Hire Market

25 Duben, 2018 - 17:49
Webstresser[.]org, a DDoS-for-hire market believed to be behind at least 4 million cyberattacks around the world, has served up its last internet-paralyzing traffic tsunami.
Kategorie: Hacking & Security

Researchers Hacked Amazon’s Alexa to Spy On Users, Again

25 Duben, 2018 - 17:30
Researchers discovered a flaw in Amazon’s Alexa virtual assistant that enabled them to eavesdrop on consumers with smart devices – and automatically transcribe every word said.
Kategorie: Hacking & Security

Bezop Cryptocurrency Server Spills 25K in Private Investor, Promoter Data

25 Duben, 2018 - 16:46
A leaky Mongo database exposed personal information of 25,000 investors and potential investors tied to the Bezop cryptocurrency.
Kategorie: Hacking & Security

Podcast: Why Manufacturers Struggle To Secure IoT

25 Duben, 2018 - 15:30
Too often, many IoT device manufacturers are opting to leave out costly security features for their small, low power connected devices. 
Kategorie: Hacking & Security