Threat Post

Electric Vehicle Charging Stations Open to IoT Attacks

Threat Post - Fri, 12/14/2018 - 4:41pm
Flaws could allow an attacker to stop or start a home charging station, or even change the current in order to start a fire.
Categories: Threat Post

WordPress 5.0 Patched to Fix Serious Bugs

Threat Post - Fri, 12/14/2018 - 1:16pm
One bug accidentally allowed Google to index user passwords.
Categories: Threat Post

Facebook Flaw Exposes Private Photos for 6.8M Users

Threat Post - Fri, 12/14/2018 - 11:44am
The bug allowed 1,500 apps built by 876 developers to view users' unposted "draft" photos.
Categories: Threat Post

Logitech Keystroke Injection Flaw Went Unaddressed for Months

Threat Post - Fri, 12/14/2018 - 10:55am
The flaw allows a remote attacker to gain full access over a machine.
Categories: Threat Post

Save the Children Federation Duped in $1M Scam

Threat Post - Fri, 12/14/2018 - 10:38am
A business email compromise campaign cost the Save the Children Federation $1 million.
Categories: Threat Post

Bomb Threat Bitcoin Demands Cause Disruption, Evacuations

Threat Post - Thu, 12/13/2018 - 5:14pm
An email campaign is demanding large sums of money in return for not blowing up schools, banks and businesses.
Categories: Threat Post

Grammarly Launches Public Bug Bounty Program

Threat Post - Thu, 12/13/2018 - 1:31pm
The online spell check platform is taking its private bounty program public in hopes of outing more threats.
Categories: Threat Post

Secure Critical Infrastructure Top of Mind for U.S.

Threat Post - Thu, 12/13/2018 - 12:52pm
Attacks targeting critical infrastructure system are ramping up - and defense has become a top priority for the U.S. government.
Categories: Threat Post

Google Beefs Up Android Key Security for Mobile Apps

Threat Post - Thu, 12/13/2018 - 12:49pm
Changes to how data is encrypted can help developers ward off data leakage and exfiltration.
Categories: Threat Post

Shamoon Reappears, Poised for a New Wiper Attack

Threat Post - Thu, 12/13/2018 - 8:18am
One of the most destructive malware families ever seen is back, and researchers think its authors are gearing up to again take aim at the Middle East.
Categories: Threat Post

Android Trojan Targets PayPal Users

Threat Post - Wed, 12/12/2018 - 4:21pm
The trojan purports to be a battery optimization app - and then steals up to 1,000 euro from victims' PayPal accounts.
Categories: Threat Post

ThreatList: Holiday Spam, the Perfect Seasonal Gift for Criminals

Threat Post - Wed, 12/12/2018 - 12:26pm
Consumers are much more likely to fall for spam during the season of giving.
Categories: Threat Post

Operation Sharpshooter Takes Aim at Global Critical Assets

Threat Post - Wed, 12/12/2018 - 10:22am
Operation Sharpshooter uses a new implant to target mainly English-speaking nuclear, defense, energy and financial companies.
Categories: Threat Post

Super Micro Says Its Gear Wasn’t Bugged By Chinese Spies

Threat Post - Wed, 12/12/2018 - 10:17am
The news comes amid reports that a Chinese intelligence-gathering effort was behind the massive Marriott hotel data breach.
Categories: Threat Post

Supply Chain Security: Managing a Complex Risk Profile

Threat Post - Wed, 12/12/2018 - 8:36am
Experts sound off on how companies can work with their third-party suppliers and partners to secure the end-to-end supply chain.
Categories: Threat Post

Facebook Fined $11.3M for Privacy Violations

Threat Post - Tue, 12/11/2018 - 5:19pm
Italy's regulator found the social giant guilty of misleading consumers as to what it does with their data.
Categories: Threat Post

Zero-Day Bug Fixed by Microsoft in December Patch Tuesday

Threat Post - Tue, 12/11/2018 - 5:02pm
Microsoft patches nine critical bugs as part of December Patch Tuesday roundup.
Categories: Threat Post

Data Privacy Issues Trigger Soul Searching in Tech Industry

Threat Post - Tue, 12/11/2018 - 1:51pm
Consumers are growing angry when it comes to data misuse - but the real change will need to come from the tech industry's culture when it comes to privacy.
Categories: Threat Post

Cobalt Group Pushes Revamped ThreadKit Malware

Threat Post - Tue, 12/11/2018 - 1:40pm
Threat actors have updated their malware to include a macro-based delivery framework.
Categories: Threat Post

Adobe December 2018 Security Update Fixes Reader, Acrobat

Threat Post - Tue, 12/11/2018 - 12:42pm
The update includes a raft of critical code-execution problems.
Categories: Threat Post