Threat Post

Android Spyware Variant Snoops on WhatsApp, Telegram Messages

Threat Post - 1 hour 29 min ago
The Android malware comes from threat group APT-C-23, also known as Two-Tailed Scorpion and Desert Scorpion.
Categories: Threat Post

Facebook Small Business Grants Spark Identity-Theft Scam

Threat Post - 4 hours 17 min ago
The cybercrooks spread the COVID-19 relief scam via Telegram and WhatsApp, and ultimately harvest account credentials and even pics of IDs.
Categories: Threat Post

Microsoft Exchange Servers Still Open to Actively Exploited Flaw

Threat Post - 6 hours 10 min ago
Despite Microsoft issuing patches almost eight months ago, 61 percent of Exchange servers are still vulnerable.
Categories: Threat Post

Why Web Browser Padlocks Shouldn’t Be Trusted

Threat Post - Tue, 09/29/2020 - 7:34pm
Popular ‘safe browsing’ padlocks are now passe as a majority of bad guys also use them.
Categories: Threat Post

Zerologon Attacks Against Microsoft DCs Snowball in a Week

Threat Post - Tue, 09/29/2020 - 2:13pm
The attempted compromises, which could allow full control over Active Directory identity services, are flying thick and fast just a week after active exploits of CVE-2020-1472 were first flagged.
Categories: Threat Post

The Network Perimeter: This Time, It’s Personal

Threat Post - Tue, 09/29/2020 - 1:16pm
Botnets and IoT devices are forming a perfect storm for IT staff wrestling with WFH employee security.
Categories: Threat Post

Las Vegas Students’ Personal Data Leaked, Post-Ransomware Attack

Threat Post - Tue, 09/29/2020 - 11:33am
A researcher said he discovered an open data cache with names, grades, birthdates and more, after the Clark County School District refused to pay the ransom.
Categories: Threat Post

Telehealth Poll: How Risky Are Remote Doctor Visits?

Threat Post - Tue, 09/29/2020 - 8:00am
Threatpost's latest poll probes telehealth security risks and asks for IT cures.
Categories: Threat Post

Windows 7 ‘Upgrade’ Emails Steal Outlook Credentials

Threat Post - Mon, 09/28/2020 - 3:56pm
Researchers warn of emails pretending to help business employees upgrade to Windows 10 - and then stealing their Outlook emails and passwords.
Categories: Threat Post

Mac, Linux Users Now Targeted by FinSpy Variants

Threat Post - Mon, 09/28/2020 - 3:09pm
FinSpy has returned in new campaigns targeting dissident organizations in Egypt - and researchers uncovered new samples of the spyware targeting macOS and Linux users.
Categories: Threat Post

Universal Health Services Ransomware Attack Impacts Hospitals Nationwide

Threat Post - Mon, 09/28/2020 - 1:32pm
The Ryuk ransomware is suspected to be the culprit.
Categories: Threat Post

Joker Trojans Flood the Android Ecosystem

Threat Post - Mon, 09/28/2020 - 11:21am
September saw dozens of Joker malware variants hitting Google Play and third-party app stores.
Categories: Threat Post

Twitter Warns Developers of API Bug That Exposed App Keys, Tokens

Threat Post - Mon, 09/28/2020 - 11:15am
Twitter has fixed a caching issue that could have exposed developers' API keys and tokens.
Categories: Threat Post

Bug Bounty FAQ: Top Questions, Expert Answers

Threat Post - Sat, 09/26/2020 - 6:01am
Four leading voices in the bug bounty community answer frequently asked questions from bounty hunters, companies and curious cybersecurity professionals.
Categories: Threat Post

FortiGate VPN Default Config Allows MitM Attacks

Threat Post - Fri, 09/25/2020 - 5:10pm
The client's default configuration for SSL-VPN has a certificate issue, researchers said.
Categories: Threat Post

Industrial Cyberattacks Get Rarer but More Complex

Threat Post - Fri, 09/25/2020 - 4:17pm
The first half of 2020 saw decreases in attacks on most ICS sectors, but oil/gas firms and building automation saw upticks.
Categories: Threat Post

Ring’s Flying In-Home Camera Drone Escalates Privacy Worries

Threat Post - Fri, 09/25/2020 - 2:41pm
Privacy fears are blasting off after Amazon's Ring division unveiled the new Always Home Cam, a smart home security camera drone.
Categories: Threat Post

Microsoft Kills 18 Azure Accounts Tied to Nation-State Attacks

Threat Post - Fri, 09/25/2020 - 11:26am
An APT group has started heavily relying on cloud services like Azure Active Directory and OneDrive, as well as open-source tools, to obfuscate its attacks.
Categories: Threat Post

Feds Hit with Successful Cyberattack, Data Stolen

Threat Post - Thu, 09/24/2020 - 4:47pm
The attack featured a unique, multistage malware and a likely PulseSecure VPN exploit.
Categories: Threat Post

Cisco Patch-Palooza Tackles 29 High-Severity Bugs

Threat Post - Thu, 09/24/2020 - 4:21pm
Patches and workaround fixes address flaws on networking hardware running Cisco IOS XE software.
Categories: Threat Post