DATA BREACH & DATA LOSS
- AWS FreeRTOS Bugs Allow Compromise of IoT Devices
- Campaign 2018: Artificial intelligence is automating attacks on political campaigns
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- A Pentagon #DataBreach exposed data on at least 30,000 individuals, but other details about the incident are still scarce. By
- Campaign 2018: Artificial Intelligence Is Automating Attacks On Political Campaigns
- New RTF-based Campaign Distributing Agent Tesla and Loki Malware
- Did you know? Corporate email accounts can be compromised for as little as $150. Read more key findings from our
- US Voter Leak Hits Tea Party Organization
- VestaCP users warned about possible server compromise
- jQuery File Upload Plugin Vulnerable for 8 Years and Only Hackers Knew
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- Campaign launched to protect ethical hackers in the Americas
- The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
- Facepunch 2016 breach exposed 343,000 users
- Today we're explaining #Canada's Data Breach Regulations on the #blog. Jet on over to find out if your organization complies
- ADHA's non-process for releasing My Health Record data revealed
- MikroTik routers targeted by cryptomining campaign | Avast
- Vulnerability in Tumblr could have compromise users’ account data
- Poor security practices and access to hacking services are making it easy for #cybercriminals to compromise business email, research reveals:
DENIAL-OF-SERVICE
- New DDoS Malware Infects Open-Source Web Hosting Software
- Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
- DDoS Attack Prevention Method on Your Enterprise’s Systems – A Detailed Report
MALVERTISING
Nil
PHISHING
- Password and credit card-stealing Azorult malware adds new tricks
- AISA 2018: Hunting for phishing kits
- Hackers launched #phishing attacks against @netflix users via malicious sites with TLS certificates. Learn how hackers mimic popular websites to
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- #HurricaneMichael #phishing schemes leverage Azure blob storage to rake in credentials. http://ow.ly/J6m850js1sk via the @threatinsight research team.
WEB DEFACEMENT
Nil
BOTNET
- Ok now, which one of you is running this Twitter botnet of fake infosec professionals?
RANSOMWARE
- City Pays $2,000 in Computer Ransomware Attack
- Water Utility ONWASA Hit by Ransomware Attack
- Madison County Computer Systems Face a Ransomware Attack
- The Week in Ransomware - October 19th 2018 - GandCrab, Birbware, and More
- Top 4 tips to avoid getting hit by ransomware
- Onslow County Utility Hit with Ransomware Attack
CRYPTOMINING & CRYPTOCURRENCIES
- Report: Cryptocurrency Exchanges Lost $882 Million to Hackers
- MikroTik routers targeted by cryptomining campaign | Avast
- Fraudster Targets Cryptocurrency Wallets with a Variety of Info Stealers
MALWARE
- Small or Big Business, Malware Hits Everyone
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- Password and credit card-stealing Azorult malware adds new tricks
- SettingContent-ms can be Abused to Drop Complex DeepLink and Icon-based Payload
- New DDoS Malware Infects Open-Source Web Hosting Software
- America’s First: US Leads in Global Malware C2 Distribution
- New RTF-based Campaign Distributing Agent Tesla and Loki Malware
- Hackers launched #phishing attacks against @netflix users via malicious sites with TLS certificates. Learn how hackers mimic popular websites to
- The Golden Age of Malware
- LuminosityLink RAT author sentenced to 30 years in prison
- Inside Safari Extensions | Malware’s Golden Key to User Data
- .@TrendMicro researchers discovered a malicious #ChromeExtension spreading #malware. Learn more with expert @lewisnic.
- ADHA's non-process for releasing My Health Record data revealed
- APT Group Uses Datper Malware To Launch Cyber Attack on Asia Countries by Executing Shell Commands
- Canberra competence shines in day of PM domain lapses and tortured analogies
EXPLOIT
- NSA-Linked 'DarkPulsar' Exploit Tool Detailed
VULNERABILITY
- libssh Vulnerability: Is WatchGuard Affected?
- 0-Day in jQuery Plugin Impacts Thousands of Applications
- Fixing a CSRF Vulnerability
- This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
- AWS FreeRTOS Bugs Allow Compromise of IoT Devices
- Drupal dev team fixed Remote Code Execution flaws in the popular CMS
- Flaw in Libssh Grants Admin Control to Servers
- FreeRTOS Vulnerabilities Expose Many Systems to Attacks
- Linksys E Series Vulnerabilities
- Google warns Apple: Missing bugs in your security bulletins are 'disincentive to patch'
- jQuery Zero-Day Was Exploited For At Least Three Years
- A Serious Security Flaw Found in LibSSH
- In this week's Risk & Repeat podcast, editors discuss the #GAOreport on vulnerabilities and weaknesses in military weapons systems and
- Splunk addressed several vulnerabilities in Enterprise and Light products
- Serious D-Link router security flaws may never be patched
- Scams and flaws: Why we get duped
- Remote Code Execution Flaws Patched in Drupal
- Tumblr bug bounty program detects flaw, no user info lost
- .@Google Firebase's lack of #DatabaseSecurity and inadequate #BackendDevelopment led to #DataLeaks and vulnerabilities, including HospitalGown. Learn more about this
- The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
- Critical Flaw Found in Streaming Library Used by VLC and Other Media Players
- Drupal Remote Code Execution Vulnerability Alert
- Business emails could represent a major security flaw for UK companies, after it was revealed millions of account details are
- Splunk Patches Several Flaws in Enterprise, Light Products
- Vulnerability in Tumblr could have compromise users’ account data
- Three critical vulnerabilities can be chained to take full control of D-Link routers
- Zero-day in popular jQuery plugin actively exploited for at least three years
- Tumblr serious vulnerability can reveal everyone information
- Critical Flaws Found in Amazon FreeRTOS IoT Operating System
ASIA
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- The Week in Ransomware - October 19th 2018 - GandCrab, Birbware, and More
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- Secret Comment Crew Code Spotted in New Attack
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- APT Group Uses Datper Malware To Launch Cyber Attack on Asia Countries by Executing Shell Commands
OCEANIA
- AISA 2018: Hunting for phishing kits
- ADHA's non-process for releasing My Health Record data revealed
- Authorities seize properties of creators of “Infamous” cheat code, for GTA V
- Canberra competence shines in day of PM domain lapses and tortured analogies
NORTH AMERICA
- Small or Big Business, Malware Hits Everyone
- America’s First: US Leads in Global Malware C2 Distribution
- In this week's Risk & Repeat podcast, editors discuss the #GAOreport on vulnerabilities and weaknesses in military weapons systems and
- US Voter Leak Hits Tea Party Organization
- Secret Comment Crew Code Spotted in New Attack
- #GroupIB is a platinum sponsor @Gartner_inc Security & Risk Management Summit (Dubai, UAE, 22-23 October 2018) Visit us at Stand
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- Today we're explaining #Canada's Data Breach Regulations on the #blog. Jet on over to find out if your organization complies
- Inside Safari Extensions | Malware’s Golden Key to User Data
- Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
SOUTH AMERICA
Nil
EUROPE
- Small or Big Business, Malware Hits Everyone
- This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- GreyEnergy
- Onslow County Utility Hit with Ransomware Attack
- Report: Cryptocurrency Exchanges Lost $882 Million to Hackers
- Business emails could represent a major security flaw for UK companies, after it was revealed millions of account details are
- Three critical vulnerabilities can be chained to take full control of D-Link routers
- Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
AFRICA
- Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
HEALTHCARE
- Small or Big Business, Malware Hits Everyone
- This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
- Secret Comment Crew Code Spotted in New Attack
TRANSPORT
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
BANKING & FINANCE
- Small or Big Business, Malware Hits Everyone
- City Pays $2,000 in Computer Ransomware Attack
- Madison County Computer Systems Face a Ransomware Attack
- Password and credit card-stealing Azorult malware adds new tricks
- SettingContent-ms can be Abused to Drop Complex DeepLink and Icon-based Payload
- AISA 2018: Hunting for phishing kits
- US Voter Leak Hits Tea Party Organization
- Secret Comment Crew Code Spotted in New Attack
- Inside Safari Extensions | Malware’s Golden Key to User Data
- Critical Flaws Found in Amazon FreeRTOS IoT Operating System
INFORMATION & TELECOMMUNICATION
- Fixing a CSRF Vulnerability
- This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
- Flaw in Libssh Grants Admin Control to Servers
- Did you know? Corporate email accounts can be compromised for as little as $150. Read more key findings from our
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- #HurricaneMichael #phishing schemes leverage Azure blob storage to rake in credentials. http://ow.ly/J6m850js1sk via the @threatinsight research team.
- Tumblr bug bounty program detects flaw, no user info lost
- The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
- #GroupIB is a platinum sponsor @Gartner_inc Security & Risk Management Summit (Dubai, UAE, 22-23 October 2018) Visit us at Stand
- Ok now, which one of you is running this Twitter botnet of fake infosec professionals?
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- Today we're explaining #Canada's Data Breach Regulations on the #blog. Jet on over to find out if your organization complies
- Inside Safari Extensions | Malware’s Golden Key to User Data
- Vulnerability in Tumblr could have compromise users’ account data
- Tumblr serious vulnerability can reveal everyone information
- Poor security practices and access to hacking services are making it easy for #cybercriminals to compromise business email, research reveals:
FOOD
Nil
WATER
- Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
ENERGY
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- GreyEnergy
- Onslow County Utility Hit with Ransomware Attack
GOVERNMENT & PUBLIC SERVICE
- Small or Big Business, Malware Hits Everyone
- Madison County Computer Systems Face a Ransomware Attack
- In this week's Risk & Repeat podcast, editors discuss the #GAOreport on vulnerabilities and weaknesses in military weapons systems and
- US Voter Leak Hits Tea Party Organization
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- Authorities seize properties of creators of “Infamous” cheat code, for GTA V
ASIA
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- The Week in Ransomware - October 19th 2018 - GandCrab, Birbware, and More
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- Secret Comment Crew Code Spotted in New Attack
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- APT Group Uses Datper Malware To Launch Cyber Attack on Asia Countries by Executing Shell Commands
WORLD
- Small or Big Business, Malware Hits Everyone
- This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- GreyEnergy
- Onslow County Utility Hit with Ransomware Attack
- America’s First: US Leads in Global Malware C2 Distribution
- AISA 2018: Hunting for phishing kits
- In this week's Risk & Repeat podcast, editors discuss the #GAOreport on vulnerabilities and weaknesses in military weapons systems and
- US Voter Leak Hits Tea Party Organization
- Report: Cryptocurrency Exchanges Lost $882 Million to Hackers
- Secret Comment Crew Code Spotted in New Attack
- #GroupIB is a platinum sponsor @Gartner_inc Security & Risk Management Summit (Dubai, UAE, 22-23 October 2018) Visit us at Stand
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- Today we're explaining #Canada's Data Breach Regulations on the #blog. Jet on over to find out if your organization complies
- Inside Safari Extensions | Malware’s Golden Key to User Data
- Business emails could represent a major security flaw for UK companies, after it was revealed millions of account details are
- ADHA's non-process for releasing My Health Record data revealed
- Three critical vulnerabilities can be chained to take full control of D-Link routers
- Authorities seize properties of creators of “Infamous” cheat code, for GTA V
- Canberra competence shines in day of PM domain lapses and tortured analogies
- Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
ATTACKS
- AWS FreeRTOS Bugs Allow Compromise of IoT Devices
- Campaign 2018: Artificial intelligence is automating attacks on political campaigns
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- A Pentagon #DataBreach exposed data on at least 30,000 individuals, but other details about the incident are still scarce. By
- Password and credit card-stealing Azorult malware adds new tricks
- Campaign 2018: Artificial Intelligence Is Automating Attacks On Political Campaigns
- New RTF-based Campaign Distributing Agent Tesla and Loki Malware
- AISA 2018: Hunting for phishing kits
- Did you know? Corporate email accounts can be compromised for as little as $150. Read more key findings from our
- Hackers launched #phishing attacks against @netflix users via malicious sites with TLS certificates. Learn how hackers mimic popular websites to
- US Voter Leak Hits Tea Party Organization
- VestaCP users warned about possible server compromise
- jQuery File Upload Plugin Vulnerable for 8 Years and Only Hackers Knew
- Recent phishing campaign against the Office of the First Deputy Prime Minister - Kingdom of Bahrain. Targeting Aysha Bukhelli, spoofed
- Campaign launched to protect ethical hackers in the Americas
- #HurricaneMichael #phishing schemes leverage Azure blob storage to rake in credentials. http://ow.ly/J6m850js1sk via the @threatinsight research team.
- The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
- Facepunch 2016 breach exposed 343,000 users
- Today we're explaining #Canada's Data Breach Regulations on the #blog. Jet on over to find out if your organization complies
- ADHA's non-process for releasing My Health Record data revealed
- MikroTik routers targeted by cryptomining campaign | Avast
- Vulnerability in Tumblr could have compromise users’ account data
- Poor security practices and access to hacking services are making it easy for #cybercriminals to compromise business email, research reveals:
THREATS
- libssh Vulnerability: Is WatchGuard Affected?
- 0-Day in jQuery Plugin Impacts Thousands of Applications
- Small or Big Business, Malware Hits Everyone
- Fixing a CSRF Vulnerability
- This Week in Security News: Apex One™ Release and Java Usage Tracker Flaws
- AWS FreeRTOS Bugs Allow Compromise of IoT Devices
- City Pays $2,000 in Computer Ransomware Attack
- Drupal dev team fixed Remote Code Execution flaws in the popular CMS
- Water Utility ONWASA Hit by Ransomware Attack
- Madison County Computer Systems Face a Ransomware Attack
- Kaspersky says it detected infections with DarkPulsar, alleged NSA malware
- The Week in Ransomware - October 19th 2018 - GandCrab, Birbware, and More
- Top 4 tips to avoid getting hit by ransomware
- Flaw in Libssh Grants Admin Control to Servers
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- FreeRTOS Vulnerabilities Expose Many Systems to Attacks
- Linksys E Series Vulnerabilities
- Password and credit card-stealing Azorult malware adds new tricks
- SettingContent-ms can be Abused to Drop Complex DeepLink and Icon-based Payload
- Google warns Apple: Missing bugs in your security bulletins are 'disincentive to patch'
- Onslow County Utility Hit with Ransomware Attack
- jQuery Zero-Day Was Exploited For At Least Three Years
- New DDoS Malware Infects Open-Source Web Hosting Software
- A Serious Security Flaw Found in LibSSH
- America’s First: US Leads in Global Malware C2 Distribution
- New RTF-based Campaign Distributing Agent Tesla and Loki Malware
- In this week's Risk & Repeat podcast, editors discuss the #GAOreport on vulnerabilities and weaknesses in military weapons systems and
- Splunk addressed several vulnerabilities in Enterprise and Light products
- Hackers launched #phishing attacks against @netflix users via malicious sites with TLS certificates. Learn how hackers mimic popular websites to
- Serious D-Link router security flaws may never be patched
- Scams and flaws: Why we get duped
- Report: Cryptocurrency Exchanges Lost $882 Million to Hackers
- Remote Code Execution Flaws Patched in Drupal
- The Golden Age of Malware
- Tumblr bug bounty program detects flaw, no user info lost
- LuminosityLink RAT author sentenced to 30 years in prison
- .@Google Firebase's lack of #DatabaseSecurity and inadequate #BackendDevelopment led to #DataLeaks and vulnerabilities, including HospitalGown. Learn more about this
- The blogging site Tumblr has disclosed and fixed a security flaw that could have exposed sensitive account information.
- Critical Flaw Found in Streaming Library Used by VLC and Other Media Players
- Drupal Remote Code Execution Vulnerability Alert
- Inside Safari Extensions | Malware’s Golden Key to User Data
- .@TrendMicro researchers discovered a malicious #ChromeExtension spreading #malware. Learn more with expert @lewisnic.
- Business emails could represent a major security flaw for UK companies, after it was revealed millions of account details are
- Splunk Patches Several Flaws in Enterprise, Light Products
- ADHA's non-process for releasing My Health Record data revealed
- MikroTik routers targeted by cryptomining campaign | Avast
- APT Group Uses Datper Malware To Launch Cyber Attack on Asia Countries by Executing Shell Commands
- Fraudster Targets Cryptocurrency Wallets with a Variety of Info Stealers
- Vulnerability in Tumblr could have compromise users’ account data
- Three critical vulnerabilities can be chained to take full control of D-Link routers
- Zero-day in popular jQuery plugin actively exploited for at least three years
- Tumblr serious vulnerability can reveal everyone information
- Critical Flaws Found in Amazon FreeRTOS IoT Operating System
- Canberra competence shines in day of PM domain lapses and tortured analogies
CRIME
- NSA-Linked 'DarkPulsar' Exploit Tool Detailed
- Small or Big Business, Malware Hits Everyone
- Madison County Computer Systems Face a Ransomware Attack
- America’s First: US Leads in Global Malware C2 Distribution
- Did you know? Corporate email accounts can be compromised for as little as $150. Read more key findings from our
- Scams and flaws: Why we get duped
- #HurricaneMichael #phishing schemes leverage Azure blob storage to rake in credentials. http://ow.ly/J6m850js1sk via the @threatinsight research team.
- Secret Comment Crew Code Spotted in New Attack
- LuminosityLink RAT author sentenced to 30 years in prison
- #GroupIB is a platinum sponsor @Gartner_inc Security & Risk Management Summit (Dubai, UAE, 22-23 October 2018) Visit us at Stand
- "World-renowned cybersecurity unit #GroupIB is prepping to release its annual report on trends in hi-tech cybercrime...Group-IB expects the number of
- Authorities seize properties of creators of “Infamous” cheat code, for GTA V
POLITICS
- Chinese Hackers Use 'Datper' Trojan in Recent Campaign
- GreyEnergy
- US Voter Leak Hits Tea Party Organization
- Secret Comment Crew Code Spotted in New Attack
- LuminosityLink RAT author sentenced to 30 years in prison
- Attackers behind Operation Oceansalt reuse code from Chinese Comment Crew
- Latest Hacking News Podcast
DATA BREACH & DATA LOSS
- 35 Million Records Of US Voters Data For Sale On The Dark Web
- Thousands of Neoflam Clients Had Their Data Leaked After Buying Frying Pans
- Tracking Tick Through Recent Campaigns Targeting East Asia
- Cyber Espionage Campaign Reuses Code from China's APT1
- The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
- Tumblr Privacy Bug Could Have Exposed Sensitive Account Data
- Apple to US users: Here's how you can now see what personal data we hold on you
- Open source web hosting software compromised with DDoS malware
- Anthem Settles with OCR for $16M for 2015 Data Breach
- Card Factory Exposed Customers Photos Publicly Due To A Website Flaw
- Hackers can use legitimate #AdminTools to compromise networks. Learn more about "living off the land" attacks from expert Michael Cobb
- Tumblr patches bug that could have exposed user data
- 12.5 Million Email Archives Exposed - Why would #cybercriminals go to a #darkweb market and pay for access when they
- #NetSpectre exploits leak data remotely via side-channel attacks. Learn how to use #ThreatModeling to stop speculative execution from expert Ed
- Tracking Tick Through Recent Campaigns Targeting East Asia
- McAfee researchers uncover ‘significant’ espionage campaign
- Apple to US users: Here's how you can now see what personal data we hold on you
- Tumblr Fixes Security Bug that Leaked Private Account Info
- Tumblr fixed a #vulnerability that could have exposed sensitive account #data, including usernames/passwords and individual IP addresses.
But the company
- The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
- VestaCP compromised in a new supply-chain attack
- VestaCP compromised in a new supply-chain attack
- Anthem to pay record £12M for 2015 data breach
- Around 600 Computers of Anne Arundel County Public Library have been Exposed to Emotet Virus
- In the wake of numerous high-profile data breaches and privacy incidents, consumers are more aware and concerned than ever about
- Senate inquiry recommends locking down My Health Record by default
- Tumblr Vulnerability Exposed User Account Information
- The Equifax Hack Uploaded Files the Right Way
- Bug Trio Affecting Eight D-Link Models Leads to Full Compromise
- SEO pollution campaign affects web searches related to EU midterm elections
DENIAL-OF-SERVICE
- Open source web hosting software compromised with DDoS malware
- Who and Why Make DDoS Attacks on The Site of Colleges and Universities ?
- A10 Networks provides cloud, Internet and gaming providers with 1 RU DDoS defense appliance
MALVERTISING
Nil
PHISHING
- The libssh “login with no password” bug – what you need to know [VIDEO]
WEB DEFACEMENT
Nil
BOTNET
- After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
- How does the resurgent VPNFilter botnet target victims?
RANSOMWARE
- 7 best practices for negotiating ransomware payments
CRYPTOMINING & CRYPTOCURRENCIES
- Fake Adobe Flash update hides cryptocurrency malware
- Crooks are attempting to spread their cryptojacking malware to unsuspecting victims by disguising it as an update for Flash.
The malicious
- Top 10 Blockchain Development Companies
- Crypto Mining Malware Runs on iPhone
- Cryptocurrency Miners Hiding As Flash Updates
- Cryptomining Malware Attacks On iPhones Grew By 400%
- Hacking Attacks On Cryptocurrency Exchanges Resulted in a Loss of $882 Million
- RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
- RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
- LuminosityLink spyware mastermind gets 30 months in the clink, forfeits $725k in Bitcoin
- Researcher Livestreams 51% Attack on Altcoin Blockchain
- Cryptojacking: A hidden cost for your company
- Report: Cryptocurrency Exchanges Lost $882 Million to Hackers
MALWARE
- Fake Adobe Flash update hides cryptocurrency malware
- After an attempted comeback by the Russian built #VPNFilter #botnet, home #networkdevices are at risk. Learn how this #malware targets
- Open source web hosting software compromised with DDoS malware
- LuminosityLink Spyware Mastermind Gets 30 Months In The Clink
- Crooks are attempting to spread their cryptojacking malware to unsuspecting victims by disguising it as an update for Flash.
The malicious
- Crypto Mining Malware Runs on iPhone
- GPlayed Trojan - .Net Playing with Google Market
- Cryptomining Malware Attacks On iPhones Grew By 400%
- RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
- RAT author jailed for 30 months, ordered to hand over $725k worth of Bitcoin
- LuminosityLink spyware mastermind gets 30 months in the clink, forfeits $725k in Bitcoin
- The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
- XBash Malware Security Advisory
- The author of the LuminosityLink RAT sentenced to 30 Months in Prison
- Stegware: How is #malware using #steganography techniques to avoid detection?
- Around 600 Computers of Anne Arundel County Public Library have been Exposed to Emotet Virus
- In order to distribute the attack payload, the code needs to be downloaded onto the PLCs & safety controllers.
This
EXPLOIT
Nil
VULNERABILITY
- GitHub now warns devs about bugs that led to Equifax breach
- Flaws in telepresence robots allow hackers access to pictures, video feeds
- Branch.io Flaws may have affected as many as 685 million individuals
- Critical Remote Code Execution Vulnerabilities Patched by Drupal
- Code Execution Vulnerability Patched in Library Used by VLC, Other Media Players
- Flaws Open Telepresence Robots to Prying Eyes
- [SingCERT] Alert on Multiple Security Vulnerabilities in Oracle's Enterprise Products
- The #NetSpectre vulnerability could enable a slow leak of data remotely via side channels. Expert Michael Cobb of @thehairyITdog explains
- A newly disclosed #libSSH vulnerability could allow an attacker #AdminAccess to a server with little effort. By @MT_Heller
- Drupal addresses multiple critical flaws with latest release
- Tumblr Privacy Bug Could Have Exposed Sensitive Account Data
- CVE-2018-8460: Exposing a Double Free in Internet Explorer for Code Execution
- Wapiti – The Black Box Vulnerability Scanner for Web Applications
- Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer code execution vulnerability
- The libssh “login with no password” bug – what you need to know [VIDEO]
- Card Factory Exposed Customers Photos Publicly Due To A Website Flaw
- How Shodan helps identify ICS cybersecurity vulnerabilities
- Oracle extends its thanks to Qihoo 360 for fixing the vulnerabilities of Weblogic
- Tumblr patches bug that could have exposed user data
- [SingCERT] Alert on Linksys E Series Routers Vulnerabilities (CVE-2018-3953, CVE-2018-3954, and CVE-2018-3955)
- Apache Access Vulnerability Could Affect Thousands of Applications
- Last year, D-Link flubbed a router bug-fix, so it's back with total pwnage
- Party like it's 1989... SVGA code bug haunts VMware's house, lets guests flee to host OS
- Oracle Patches 301 Vulnerabilities in October Update
- Tumblr Fixes Security Bug that Leaked Private Account Info
- Ruby 2.4.5 released: 40 bug fixes
- Tumblr fixed a #vulnerability that could have exposed sensitive account #data, including usernames/passwords and individual IP addresses.
But the company
- The #TLBleed vulnerability uses @Intel's HTT chip feature to leak data. Learn about how hackers could use #malware to launch
- New libSSH vulnerability gives root access to servers
- A 4-year-old #libSSH vulnerability can allow attackers to easily log in to servers with full administrative control, but it is
- The implications of the NetSpectre vulnerability
- #Shodan can be a helpful tool for security professionals to locate #ICSsecurity vulnerabilities. Expert Ernie Hayden explains how Shodan works
- Oracle security updates contains 45 critical-rated vulnerability
- A #libSSH vulnerability that went undisclosed for almost five years could allow an attacker easy #AdminAccess to servers, @0xAmit said
- Vulnerability Spotlight: Live Networks LIVE555 streaming media RTSPServer code execution vulnerability
- Chaining three critical vulnerabilities allows takeover of D-Link routers
- Tumblr Fixes Critical Security Bug That Exposes User Account Details
- Tumblr Vulnerability Exposed User Account Information
- Bug Trio Affecting Eight D-Link Models Leads to Full Compromise
