Collaborate Disseminate
In what is becoming an increasingly common type of software supply chain attack, three more WordPress plug-ins that recently changed ownership got backdoored by their new owners. What’s worse is that the malicious code went undetected for months…. Continue reading Backdoors Found in Three More WordPress Plug-ins
Attackers have started to exploit a vulnerability patched this month in Android that enables the bundling of malware with Android application files (APKs) and evading antivirus products. The vulnerability, known as Janus and identified as CVE-2017-1315… Continue reading Attackers Exploit Android Application Package Flaw to Hide Malware
Security researchers believe that a recently discovered botnet of more than 250,000 routers was actually created by an amateur hacker with limited skills and not a sophisticated actor. The router malware started spreading in November and has been dubbe… Continue reading Script Kiddie Responsible for Large Satori Botnet
Security researchers believe that a recently discovered botnet of more than 250,000 routers was actually created by an amateur hacker with limited skills and not a sophisticated actor. The router malware started spreading in November and has been dubbe… Continue reading Script Kiddie Responsible for Large Satori Botnet
It seems the U.S. government’s ban on Kaspersky Lab products is having echoes in other countries. The Lithuanian government also wants the company’s products removed from computers that control critical infrastructure. At a meeting of the L… Continue reading Lithuania Bans Kaspersky Lab Products on Critical Systems
A WordPress plug-in called Captcha with more than 300,000 active installations contained a backdoor that allowed its maintainer to gain unauthorized administrative access to other people’s websites. The plug-in was apparently backdoored after its… Continue reading Yet Another WordPress Extension Changes Owner and Gets Backdoored
The U.S. government says it has evidence that North Korea was responsible for the WannaCry ransomware outbreak that infected around 300,000 computers around the world in May, disrupting operations across thousands of organizations. “After careful… Continue reading U.S. Officially Accuses North Korea for WannaCry Attack
Security researchers have come across new malware designed to infect specialized safety controllers used in industrial infrastructure, in what is believed to be a well-funded nation state attack. The malware framework was recovered by FireEye’s M… Continue reading New Triton Malware Framework Attacks Critical Infrastructure
Global internet traffic to IP addresses belonging to Google, Facebook, Microsoft, Apple and other high-profile tech companies was rerouted Tuesday through a little-known ISP in Russia. Researchers suspect the traffic was hijacked. The incident lasted f… Continue reading Global Traffic to High-Profile Sites Believed Hijacked
Global internet traffic to IP addresses belonging to Google, Facebook, Microsoft, Apple and other high-profile tech companies was rerouted Tuesday through a little-known ISP in Russia. Researchers suspect the traffic was hijacked. The incident lasted f… Continue reading Global Traffic to High-Profile Sites Believed Hijacked