Apache Tomcat Exploit Poised to Pounce, Stealing Files
Researchers said that a working exploit for CVE-2020-1938 leaked on GitHub makes is a snap to compromise webservers. Continue reading Apache Tomcat Exploit Poised to Pounce, Stealing Files
Tag Archives: compromise
Virus Bulletin 2019: VoIP Espionage Campaign Hits U.S. Utilities Supplier
An attacker whose motives are unclear compromised an Asterisk server in a highly targeted campaign. Continue reading Virus Bulletin 2019: VoIP Espionage Campaign Hits U.S. Utilities Supplier
State Farm Falls Victim to Credential-Stuffing Attack
The insurance giant serves at least 83 million U.S. households. Continue reading State Farm Falls Victim to Credential-Stuffing Attack
Malicious JavaScript injected into WordPress sites using the latest plugin vulnerability
WordPress is by far the most popular content management system (CMS) and, because of its wide usage, it is also popular among cybercriminals. Most of the WordPress sites that have been compromised are the result of attackers exploiting vulnerable … Continue reading Malicious JavaScript injected into WordPress sites using the latest plugin vulnerability
Alert Service Compromised to Send Out Spam Message
An unknown individual compromised an alert service and abused their access to send out a spam message to some of the service’s customers. The Queenland Early Warning Network (EWN) alert service disclosed first in a Facebook post and later on its … Continue reading Alert Service Compromised to Send Out Spam Message
Supermicro concludes ‘Big Hack’ investigation, says no tampering
Executives at Super Micro Computer (Supermicro) contended Tuesday that their company did not fall victim to a major supply chain compromise described in a Bloomberg Businessweek story in October. CEO Charles Liang and senior vice presidents David Weigand and Raju Penumatcha wrote in a letter to customers that a “thorough investigation” by a third-party firm concluded that malicious hardware had not been planted on Supermicro devices. “Recent reports in the media wrongly alleged that bad actors had inserted a malicious chip or other hardware on our products during our manufacturing process,” the letter reads. “After thorough examination and a range of functional tests, the investigations firm found absolutely no evidence of malicious hardware on our motherboards.” The Bloomberg story alleged Chinese operatives embedded rice grain-sized chips onto to motherboards that Supermicro supplied to major technology companies like Apple and Amazon Web Services. The report was immediately met with strong denials from Supermicro […]
The post Supermicro concludes ‘Big Hack’ investigation, says no tampering appeared first on CyberScoop.
Continue reading Supermicro concludes ‘Big Hack’ investigation, says no tampering
Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
It’s that time of year again! The most glorious of shopping seasons has arrived, and users have commenced their annual tradition of flooding e-stores in search of the best deals that their money can buy. Threat actors, keen to take advantage… Continue reading Black Friday & Cyber Monday Deals: Phishing and Site Skimmers
Reddit Breach Stems from SMS Two-Factor Authentication Breakdown
A hacker has compromised Reddit’s systems and was able to make away with email addresses and account credentials. Continue reading Reddit Breach Stems from SMS Two-Factor Authentication Breakdown
Linux distro hacked on GitHub, “all code considered compromised”
Gentoo Linux has been hacked, with “all code considered compromised” on GitHub – fortunately, the master repository is safe. Continue reading Linux distro hacked on GitHub, “all code considered compromised”
Red Hen website suffers SEO spam compromise
A website belonging to an eatery currently making waves in the news has been compromised with SEO spam. We take a look at what’s happened, and explain what the hackers are up to.
Categories:
Cybercrime
Hacking
Tags: blackhatcompromisehackedSEOS… Continue reading Red Hen website suffers SEO spam compromise