DATA BREACH
- 100K Routers Hijacked for Phishing in GhostDNS Campaign
- Picture-in-Picture Phishing Campaign Goes After Steam Credentials
- 4 Ways to Protect Your Files from a Data Breach
- Facebook hacked – 50 Million Users’ Data exposed in the security breach
- Telegram Patched IP Address Leak Problem In Its Desktop Client
- Telegram Leaks User IP Addresses
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Flaws in Tory party conference app leak ministers' personal information
- Facebook faces a whopping €1.4 billion penalty under GDPR for Sept. 30 data breach
- Phishing campaign targets developers of Chrome extensions
- 3 GOP senators doxed during Kavanaugh hearing
- Facebook Data Breach Extended to Third-Party Applications
- Facebook could face up to $1.6bn fine for data breach
- Telegram CVE-2018-17780 flaw causes the leak of IP addresses when initiating calls
- Telegram Calling Feature Leaks Your IP Addresses—Patch Released
- High-Profile Instagram Accounts Hacked For Ransom In A Recent Campaign
DENIAL-OF-SERVICE
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- Instagram Being Used To Sell Botnets And Stolen Fortnite Accounts
- Hackers Are Selling Botnets and Stolen ‘Fortnite’ Accounts Over Instagram
- Torii malware could be gateway to more sophisticated IoT botnet attacks
- New vicious Torii IoT botnet discovered
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- Gigantic 100,000-strong botnet used to hijack traffic meant for Brazilian banks
- Torii IoT Botnet Takes Mirai to the Next Level
MALVERTISING
Nothing to report
PHISHING
- 100K Routers Hijacked for Phishing in GhostDNS Campaign
- Picture-in-Picture Phishing Campaign Goes After Steam Credentials
- Roaming Mantis Group Adds Phishing and Web Crypto Mining for iOS Devices
- Weak Passwords Abused for 'FruitFly' Mac Malware Distribution
- Third-Party Apps Using Facebook Login Also Affected by Latest Hacking Incident
- How to Orchestrate a Smarter Phishing Response
- Voice Phishing Scams Are Getting More Clever
- Why nearly 50% of organizations are failing at password security
- Employees Share Average of 6 Passwords With Co-Workers
- UK firms’ password security score ‘average’
- Phishing campaign targets developers of Chrome extensions
- Password Security Better, Still Poses Business Risk
- Password Security Better, Still Poses Business Risk
- Following a loud critical backlash to a new #Chrome login feature and cookie retention functionality, @Google will make changes in
WEB DEFACEMENT
Nothing to report
MALWARE
- Top Cloud Domain Controller for MSPs
- Multiple Code Execution Vulnerabilities Found in Atlantis Word Processor
- GhostDNS malware already infected over 100K+ devices and targets 70+ different types of home routers
- GrandCrab Ransomware Spreads Using Multiple Known Vulnerabilities
- Fileless Malware Attacks on the Rise, Microsoft Says
- 'Short, Brutal Lives': Life Expectancy for Malicious Domains
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Roaming Mantis Group Adds Phishing and Web Crypto Mining for iOS Devices
- Google Adds New Rules To End Malicious Chrome Extensions
- Code Execution Vulnerabilities Uncovered In Atlantis Word Processor
- Deep Dive Into iTranslator - MITM Malware
- LoJax: Fisrt UEFI Rootkit Found In The Wild
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- Telegram Patched IP Address Leak Problem In Its Desktop Client
- Weak Passwords Abused for 'FruitFly' Mac Malware Distribution
- Code execution vulnerabilities uncovered in Atlantis Word Processor
- Malwarebytes is a champion of National Cybersecurity Awareness Month
- Monitor privileged execution to defend against
- Telegram Leaks User IP Addresses
- Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
- TrickBot Banking Trojan Takes Center Stage in 2018
- More on the Five Eyes Statement on Encryption and Backdoors
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Roaming Mantis part III: iOS crypto-mining and spreading via malicious content delivery system
- GandCrab ransomware is spreading wildly through several known vulnerabilities
- Docs reveal how Fruitfly Mac spyware initially spread
- Torii malware could be gateway to more sophisticated IoT botnet attacks
- SamSam ransomware: How is this version different from others?
- Ransomware Casts Anchor at the Port of San Diego
- Hackers Hijacked More Than 100,000 Routers DNS Settings and Redirecting Users to Malicious WebSites
- Ransomware Casts Anchor at the Port of San Diego
- #VPNFilter #malware: How can users protect themselves?
- Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
- Telegram CVE-2018-17780 flaw causes the leak of IP addresses when initiating calls
- Telegram Calling Feature Leaks Your IP Addresses—Patch Released
- New Banking Malware Steal Money From Victim’s Bank Accounts Using Weaponized Adobe Reader
EXPLOIT
- A new Browser Reaper exploit can crash or freeze Mozilla #Firefox, according to a proof of concept published by a
- Python-based attack tools are the most common vector for launching exploit attempts
- Several Bugs Exploited in Massive Facebook Hack
- Sophos recently discovered a #Samsam extortion code that performs whole-company attacks through a variety of vulnerability exploits. Discover how this
- How can attackers exploit a buffer underflow #vulnerability?
- New Banking Malware Steal Money From Victim’s Bank Accounts Using Weaponized Adobe Reader
VULNERABILITY
- Adobe Patches 47 Critical Flaws in Acrobat and DC
- Multiple Code Execution Vulnerabilities Found in Atlantis Word Processor
- CVE-2018-11776 and why you need Black Duck Security Advisories
- Nine NAS Bugs Open LenovoEMC, Iomega Devices to Attack
- GrandCrab Ransomware Spreads Using Multiple Known Vulnerabilities
- Google Bug Breaks Search Results with a Plus Sign On Mac Safari
- Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
- Gemalto ID Card Provider Sued for €152 Million in eID Vulnerability Case
- Code Execution Vulnerabilities Uncovered In Atlantis Word Processor
- Facebook: How to minimize the risk of vulnerabilities
- Code execution vulnerabilities uncovered in Atlantis Word Processor
- Attackers chained three bugs to breach into the Facebook platform
- Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
- Monero fixes major ‘burning bug’ flaw, preventing mass devaluation
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Flaws in Tory party conference app leak ministers' personal information
- Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
- GandCrab ransomware is spreading wildly through several known vulnerabilities
- Several Bugs Exploited in Massive Facebook Hack
- Sophos recently discovered a #Samsam extortion code that performs whole-company attacks through a variety of vulnerability exploits. Discover how this
- Nasty Linux Kernel Vulnerability Discovered, Mandatory Kernel Update Required
- How can attackers exploit a buffer underflow #vulnerability?
- CISO @rickhholland joins @drshellface and @mazzazone to discuss the latest #cybersecurity news: Security Flaws Affect 50 Million Facebook Accounts and
- Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
- Telegram CVE-2018-17780 flaw causes the leak of IP addresses when initiating calls
ASIA
- Cyber Security Roundup for September 2018
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Roaming Mantis Group Adds Phishing and Web Crypto Mining for iOS Devices
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Roaming Mantis part III: iOS crypto-mining and spreading via malicious content delivery system
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
WORLD
- Cyber Security Roundup for September 2018
- Hacking Week Call for Pitches: Who Is the Weakest Link In Cybersecurity?
- GhostDNS malware already infected over 100K+ devices and targets 70+ different types of home routers
- A week in security (September 24 – 30)
- 4 Ways to Protect Your Files from a Data Breach
- Gemalto ID Card Provider Sued for €152 Million in eID Vulnerability Case
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- Facebook: How to minimize the risk of vulnerabilities
- Voice Phishing Scams Are Getting More Clever
- Malwarebytes is a champion of National Cybersecurity Awareness Month
- Formjacking in the Nutshell
- TrickBot Banking Trojan Takes Center Stage in 2018
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Roaming Mantis part III: iOS crypto-mining and spreading via malicious content delivery system
- Facebook faces a whopping €1.4 billion penalty under GDPR for Sept. 30 data breach
- UK firms’ password security score ‘average’
- CISO @rickhholland joins @drshellface and @mazzazone to discuss the latest #cybersecurity news: Security Flaws Affect 50 Million Facebook Accounts and
- Gigantic 100,000-strong botnet used to hijack traffic meant for Brazilian banks
- New Banking Malware Steal Money From Victim’s Bank Accounts Using Weaponized Adobe Reader
ATTACKS
- 100K Routers Hijacked for Phishing in GhostDNS Campaign
- Picture-in-Picture Phishing Campaign Goes After Steam Credentials
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- Roaming Mantis Group Adds Phishing and Web Crypto Mining for iOS Devices
- 4 Ways to Protect Your Files from a Data Breach
- Facebook hacked – 50 Million Users’ Data exposed in the security breach
- Instagram Being Used To Sell Botnets And Stolen Fortnite Accounts
- Telegram Patched IP Address Leak Problem In Its Desktop Client
- Weak Passwords Abused for 'FruitFly' Mac Malware Distribution
- Hackers Are Selling Botnets and Stolen ‘Fortnite’ Accounts Over Instagram
- Third-Party Apps Using Facebook Login Also Affected by Latest Hacking Incident
- How to Orchestrate a Smarter Phishing Response
- Voice Phishing Scams Are Getting More Clever
- Why nearly 50% of organizations are failing at password security
- Employees Share Average of 6 Passwords With Co-Workers
- Telegram Leaks User IP Addresses
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Flaws in Tory party conference app leak ministers' personal information
- Facebook faces a whopping €1.4 billion penalty under GDPR for Sept. 30 data breach
- UK firms’ password security score ‘average’
- Torii malware could be gateway to more sophisticated IoT botnet attacks
- Phishing campaign targets developers of Chrome extensions
- Password Security Better, Still Poses Business Risk
- New vicious Torii IoT botnet discovered
- Password Security Better, Still Poses Business Risk
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- 3 GOP senators doxed during Kavanaugh hearing
- Facebook Data Breach Extended to Third-Party Applications
- Following a loud critical backlash to a new #Chrome login feature and cookie retention functionality, @Google will make changes in
- Facebook could face up to $1.6bn fine for data breach
- Telegram CVE-2018-17780 flaw causes the leak of IP addresses when initiating calls
- Telegram Calling Feature Leaks Your IP Addresses—Patch Released
- Gigantic 100,000-strong botnet used to hijack traffic meant for Brazilian banks
- Torii IoT Botnet Takes Mirai to the Next Level
- High-Profile Instagram Accounts Hacked For Ransom In A Recent Campaign
THREATS
- Adobe Patches 47 Critical Flaws in Acrobat and DC
- Top Cloud Domain Controller for MSPs
- Multiple Code Execution Vulnerabilities Found in Atlantis Word Processor
- CVE-2018-11776 and why you need Black Duck Security Advisories
- GhostDNS malware already infected over 100K+ devices and targets 70+ different types of home routers
- Nine NAS Bugs Open LenovoEMC, Iomega Devices to Attack
- GrandCrab Ransomware Spreads Using Multiple Known Vulnerabilities
- Fileless Malware Attacks on the Rise, Microsoft Says
- 'Short, Brutal Lives': Life Expectancy for Malicious Domains
- Google Bug Breaks Search Results with a Plus Sign On Mac Safari
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Roaming Mantis Group Adds Phishing and Web Crypto Mining for iOS Devices
- Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
- Google Adds New Rules To End Malicious Chrome Extensions
- Gemalto ID Card Provider Sued for €152 Million in eID Vulnerability Case
- Code Execution Vulnerabilities Uncovered In Atlantis Word Processor
- Deep Dive Into iTranslator - MITM Malware
- LoJax: Fisrt UEFI Rootkit Found In The Wild
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- Telegram Patched IP Address Leak Problem In Its Desktop Client
- Weak Passwords Abused for 'FruitFly' Mac Malware Distribution
- Facebook: How to minimize the risk of vulnerabilities
- Code execution vulnerabilities uncovered in Atlantis Word Processor
- A new Browser Reaper exploit can crash or freeze Mozilla #Firefox, according to a proof of concept published by a
- Malwarebytes is a champion of National Cybersecurity Awareness Month
- Monitor privileged execution to defend against
- Attackers chained three bugs to breach into the Facebook platform
- Telegram Leaks User IP Addresses
- Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
- TrickBot Banking Trojan Takes Center Stage in 2018
- More on the Five Eyes Statement on Encryption and Backdoors
- Monero fixes major ‘burning bug’ flaw, preventing mass devaluation
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Telegram not really anonymous? Researcher reports bug that leaks IP addresses
- Flaws in Tory party conference app leak ministers' personal information
- Roaming Mantis part III: iOS crypto-mining and spreading via malicious content delivery system
- Vulnerability Spotlight: Multiple Issues in Foxit PDF Reader
- GandCrab ransomware is spreading wildly through several known vulnerabilities
- Python-based attack tools are the most common vector for launching exploit attempts
- Docs reveal how Fruitfly Mac spyware initially spread
- Torii malware could be gateway to more sophisticated IoT botnet attacks
- SamSam ransomware: How is this version different from others?
- Ransomware Casts Anchor at the Port of San Diego
- Hackers Hijacked More Than 100,000 Routers DNS Settings and Redirecting Users to Malicious WebSites
- Ransomware Casts Anchor at the Port of San Diego
- Several Bugs Exploited in Massive Facebook Hack
- Sophos recently discovered a #Samsam extortion code that performs whole-company attacks through a variety of vulnerability exploits. Discover how this
- #VPNFilter #malware: How can users protect themselves?
- Nasty Linux Kernel Vulnerability Discovered, Mandatory Kernel Update Required
- How can attackers exploit a buffer underflow #vulnerability?
- CISO @rickhholland joins @drshellface and @mazzazone to discuss the latest #cybersecurity news: Security Flaws Affect 50 Million Facebook Accounts and
- Vulnerability Spotlight: Multiple vulnerabilities in Atlantis Word Processor
- Telegram CVE-2018-17780 flaw causes the leak of IP addresses when initiating calls
- Telegram Calling Feature Leaks Your IP Addresses—Patch Released
- New Banking Malware Steal Money From Victim’s Bank Accounts Using Weaponized Adobe Reader
CRIME
- Cyber Security Roundup for September 2018
- Hacking Week Call for Pitches: Who Is the Weakest Link In Cybersecurity?
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- 4 Ways to Protect Your Files from a Data Breach
- Gemalto ID Card Provider Sued for €152 Million in eID Vulnerability Case
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- NOKKI Almost Ties the Knot with DOGCALL: Reaper Group Uses New Malware to Deploy RAT
- Facebook: How to minimize the risk of vulnerabilities
- Hackers Are Selling Botnets and Stolen ‘Fortnite’ Accounts Over Instagram
- How to Orchestrate a Smarter Phishing Response
- Voice Phishing Scams Are Getting More Clever
- Formjacking in the Nutshell
- Attackers chained three bugs to breach into the Facebook platform
- TrickBot Banking Trojan Takes Center Stage in 2018
- Roaming Mantis part III: iOS crypto-mining and spreading via malicious content delivery system
- Hackers Hijacked More Than 100,000 Routers DNS Settings and Redirecting Users to Malicious WebSites
- Sophos recently discovered a #Samsam extortion code that performs whole-company attacks through a variety of vulnerability exploits. Discover how this
- GhostDNS: New DNS Changer Botnet Hijacked Over 100,000 Routers
- New Banking Malware Steal Money From Victim’s Bank Accounts Using Weaponized Adobe Reader
POLITICS
- Hacking Week Call for Pitches: Who Is the Weakest Link In Cybersecurity?
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- A week in security (September 24 – 30)
- Facebook: How to minimize the risk of vulnerabilities
- Hackers Are Selling Botnets and Stolen ‘Fortnite’ Accounts Over Instagram
- Malwarebytes is a champion of National Cybersecurity Awareness Month
- Report Ties North Korean Attacks to New Malware, Linked by Word Macros
- Roaming Mantis part III: iOS crypto-mining and spreading via malicious content delivery system
