Threat Post
Electric Vehicle Charging Stations Open to IoT Attacks
Flaws could allow an attacker to stop or start a home charging station, or even change the current in order to start a fire.
Categories: Threat Post
WordPress 5.0 Patched to Fix Serious Bugs
One bug accidentally allowed Google to index user passwords.
Categories: Threat Post
Facebook Flaw Exposes Private Photos for 6.8M Users
The bug allowed 1,500 apps built by 876 developers to view users' unposted "draft" photos.
Categories: Threat Post
Logitech Keystroke Injection Flaw Went Unaddressed for Months
The flaw allows a remote attacker to gain full access over a machine.
Categories: Threat Post
Save the Children Federation Duped in $1M Scam
A business email compromise campaign cost the Save the Children Federation $1 million.
Categories: Threat Post
Bomb Threat Bitcoin Demands Cause Disruption, Evacuations
An email campaign is demanding large sums of money in return for not blowing up schools, banks and businesses.
Categories: Threat Post
Grammarly Launches Public Bug Bounty Program
The online spell check platform is taking its private bounty program public in hopes of outing more threats.
Categories: Threat Post
Secure Critical Infrastructure Top of Mind for U.S.
Attacks targeting critical infrastructure system are ramping up - and defense has become a top priority for the U.S. government.
Categories: Threat Post
Google Beefs Up Android Key Security for Mobile Apps
Changes to how data is encrypted can help developers ward off data leakage and exfiltration.
Categories: Threat Post
Shamoon Reappears, Poised for a New Wiper Attack
One of the most destructive malware families ever seen is back, and researchers think its authors are gearing up to again take aim at the Middle East.
Categories: Threat Post
Android Trojan Targets PayPal Users
The trojan purports to be a battery optimization app - and then steals up to 1,000 euro from victims' PayPal accounts.
Categories: Threat Post
ThreatList: Holiday Spam, the Perfect Seasonal Gift for Criminals
Consumers are much more likely to fall for spam during the season of giving.
Categories: Threat Post
Operation Sharpshooter Takes Aim at Global Critical Assets
Operation Sharpshooter uses a new implant to target mainly English-speaking nuclear, defense, energy and financial companies.
Categories: Threat Post
Super Micro Says Its Gear Wasn’t Bugged By Chinese Spies
The news comes amid reports that a Chinese intelligence-gathering effort was behind the massive Marriott hotel data breach.
Categories: Threat Post
Supply Chain Security: Managing a Complex Risk Profile
Experts sound off on how companies can work with their third-party suppliers and partners to secure the end-to-end supply chain.
Categories: Threat Post
Facebook Fined $11.3M for Privacy Violations
Italy's regulator found the social giant guilty of misleading consumers as to what it does with their data.
Categories: Threat Post
Zero-Day Bug Fixed by Microsoft in December Patch Tuesday
Microsoft patches nine critical bugs as part of December Patch Tuesday roundup.
Categories: Threat Post
Data Privacy Issues Trigger Soul Searching in Tech Industry
Consumers are growing angry when it comes to data misuse - but the real change will need to come from the tech industry's culture when it comes to privacy.
Categories: Threat Post
Cobalt Group Pushes Revamped ThreadKit Malware
Threat actors have updated their malware to include a macro-based delivery framework.
Categories: Threat Post
Adobe December 2018 Security Update Fixes Reader, Acrobat
The update includes a raft of critical code-execution problems.
Categories: Threat Post