VirusList.com

Syndikovat obsah
The First Stop For Security News
Aktualizace: 15 min 54 sek zpět

Sophisticated Info-Stealer Targets Air-Gapped Devices via USB

3 Červen, 2020 - 22:51
The newly discovered USBCulprit malware is part of the arsenal of an APT known as Cycldek, which targets government entities.
Kategorie: Viry a Červi

Attackers Target 1M+ WordPress Sites To Harvest Database Credentials

3 Červen, 2020 - 22:37
An attack over the weekend unsuccessfully targeted 1.3 million WordPress websites, in attempts to download their configuration files and harvest database credentials.
Kategorie: Viry a Červi

TrickBot Adds BazarBackdoor to Malware Arsenal

3 Červen, 2020 - 18:55
The stealthy backdoor is delivered via mass-market phishing emails that are well-crafted to appear convincing.
Kategorie: Viry a Červi

Critical SAP ASE Flaws Allow Complete Control of Databases

3 Červen, 2020 - 18:51
Researchers warn of critical flaws in SAP's Sybase Adaptive Server Enterprise software.
Kategorie: Viry a Červi

Enterprise Mobile Phishing Attacks Skyrocket Amidst Pandemic

3 Červen, 2020 - 15:41
Increase of 37 percent from Q4 2019 to Q1 2020 attributed to creation of remote workforce due to COVID-19 stay-at-home orders.
Kategorie: Viry a Červi

Joomla Resources Directory Users Exposed in Leaky AWS Bucket

3 Červen, 2020 - 06:15
Full backup copies of website, including all user data, was exposed for 2,700 JRD users.
Kategorie: Viry a Červi

Two Critical Android Bugs Open Door to RCE

2 Červen, 2020 - 19:10
Google and Qualcomm both addressed significant vulnerabilities in their June updates.
Kategorie: Viry a Červi

Severe Cisco DoS Flaw Can Cripple Nexus Switches

2 Červen, 2020 - 18:16
Cisco has patched a high-severity flaw that could lead to denial-of-service attacks on its Nexus switch lineup.
Kategorie: Viry a Červi

Octopus Scanner Sinks Tentacles into GitHub Repositories

2 Červen, 2020 - 17:32
At least 26 different open-source code repositories were found to be infected with an unusual attack on the open-source software supply chain.
Kategorie: Viry a Červi

Apple Jailbreak Zero-Day Gets a Patch

2 Červen, 2020 - 15:53
The zero-day vulnerability tracked as CVE-2020-9859 is exploited by the "Uncover" jailbreak tool released last week.
Kategorie: Viry a Červi

Podcast: Why Identity Access Management is the New Perimeter

2 Červen, 2020 - 15:00
DivvyCloud discusses the changing nature of identity access management (IAM) - and what kind of challenges and opportunities that is creating for businesses.
Kategorie: Viry a Červi

Apple Pays $100K Bounty for Critical ‘Sign in With Apple’ Flaw

1 Červen, 2020 - 18:07
Apple has fixed a critical flaw in its Sign in with Apple feature, which could have been abused by attackers to takeover victims' third-party applications.
Kategorie: Viry a Červi

Minneapolis Police Department Hack Likely Fake, Says Researcher

1 Červen, 2020 - 17:43
Troy Hunt said that the supposed data breach perpetrated by Anonymous is most likely a hoax.
Kategorie: Viry a Červi

Hosting Provider’s Database of Crooked Customers Leaked

1 Červen, 2020 - 16:37
Database of sensitive info, including emails and passwords, from owners of Daniel’s Hosting portals could be incriminating.
Kategorie: Viry a Červi

Steganography Anchors Pinpoint Attacks on Industrial Targets

29 Květen, 2020 - 21:58
Ongoing spear-phishing attacks aim at stolen Windows credentials for ICS suppliers worldwide.
Kategorie: Viry a Červi

NTT Communications Data Breach Affects Customers, Threatens Supply Chain

29 Květen, 2020 - 18:45
Attackers managed to compromise NTT Communication’s Active Directory server and a construction information management server.
Kategorie: Viry a Červi

NSA Warns of Sandworm Backdoor Attacks on Mail Servers

29 Květen, 2020 - 18:34
The Russian spy group, a.k.a. BlackEnergy, is actively compromising Exim mail servers via a critical security vulnerability.
Kategorie: Viry a Červi

‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials

29 Květen, 2020 - 15:16
Google TAG report reveals that "hack for hire" firms are tapping into the coronavirus pandemic via WHO phishing lures.
Kategorie: Viry a Červi

ACLU Sues Clearview AI Over Faceprint Collection, Sale

29 Květen, 2020 - 14:40
Watchdog group said company has violated the Illinois BIPA and ‘will end privacy as we know it’ without intervention.
Kategorie: Viry a Červi

Inside the Hoaxcalls Botnet: Both Success and Failure

28 Květen, 2020 - 23:10
The DDoS group sets itself apart by using exploits -- but it doesn't always pan out.
Kategorie: Viry a Červi