Collaborate Disseminate
Millions of IDs, charge cards, loyalty cards, gift cards, medical marijuana ID cards and personal information was left exposed to the open internet. Continue reading 44M Digital Wallet Items Exposed in Key Ring Cloud Misconfig
Like NotPetya, it overwrites the master boot record to render computers “trashed.” Continue reading Wiper Malware Called “Coronavirus” Spreads Among Windows Victims
A second vulnerability could be used to prevent access to almost all of a site’s existing content, by simply redirecting visitors. Continue reading Critical WordPress Plugin Bug Can Lock Admins Out of Websites
About 10 compromised websites employ a multi-stage, targeted effort to fingerprint and compromise victims. Continue reading Watering-Holes Target Asian Ethnic Victims with Flash Update Decoy
The second breach in less than 24 months stemmed from employee account compromises. Continue reading Millions of Guests Impacted in Marriott Data Breach, Again
Phishing and zero-days continue to be a core part of the APT arsenal. Continue reading Nation-State Attacks Drop in Latest Google Analysis
The malware is back after three years, looking to cash in on interest in government relief efforts around coronavirus. Continue reading Zeus Sphinx Banking Trojan Arises Amid COVID-19
CVE-2020-10245, a heap-based buffer overflow that rates 10 out of 10 in severity, exists in the CODESYS web server and takes little skill to exploit. Continue reading Critical CODESYS Bug Allows Remote Code Execution
The malware, the work of a new APT called TwoSail Junk, allows deep surveillance and total control over iOS devices. Continue reading Emerging APT Mounts Mass iPhone Surveillance Campaign
Threatpost Senior Editor Tara Seals is joined by Russ Mohr, engineer and Apple evangelist at MobileIron along with Jerry Ray, COO at SecureAge, for a discussion about the now postponed Tokyo Games and its use of 5G and the myriad of security concerns J… Continue reading Tokyo Olympics Postponed, But 5G Security Lessons Shine