Security News

Filter by:

FBI Clears ProxyLogon Web Shells from Hundreds of Orgs

In a veritable cyber-SWAT action, the Feds remotely removed the infections without warning businesses beforehand.
Threatpost 15 Apr 2021 582 Views

Ransomware Attack Creates Cheese Shortages in Netherlands

Not a Gouda situation: An attack on a logistics firm is suspected to be related to Microsoft Exchange server flaw.
Threatpost 15 Apr 2021 754 Views

Critical security alert: If you haven't patched this old VPN vulnerability, assume your network is compromised

Hundreds of organisations that haven't applied a Fortinet VPN security update released in 2019 should assume that cyber criminals are trying to take advantage, NCSC warns.
ZDNet 13 Apr 2021 606 Views

IcedID Circulates Via Web Forms, Google URLs

Attackers are filling out and submitting web-based "contact us" forms, thus evading email spam filters.
Threatpost 13 Apr 2021 501 Views

Sitting comfortably? Then it's probably time to patch, as critical flaw uncovered in npm's netmask package

Are you local? Catastrophically local? The widely used npm library netmask has a networking vulnerability arising from how it parses IP addresses with a leading zero, leaving an estimated 278 million projects at risk.…
The Register 30 Mar 2021 33477 Views

PHP Infiltrated with Backdoor Malware

The server for the web-application scripting language was compromised on Sunday.
Threatpost 29 Mar 2021 625 Views

Watch Out! That Android System Update May Contain A Powerful Spyware

Researchers have discovered a new information-stealing trojan, which targets Android devices with an onslaught of data-exfiltration capabilities — from collecting browser searches to recording audio and phone calls. While malware on Android has previously taken the guise of copycat apps, which go under...
The Hacker News 27 Mar 2021 32604 Views

Exchange Cyberattacks Escalate as Microsoft Rolls One-Click Fix

Public proof-of-concept (PoC) exploits for ProxyLogon could be fanning a feeding frenzy of attacks even as patching makes progress.
Threatpost 17 Mar 2021 528 Views

Latest Mirai Variant Targets SonicWall, D-Link and IoT Devices

A new Mirai variant is targeting known flaws in D-Link, Netgear and SonicWall devices, as well as newly-discovered flaws in unknown IoT devices.
Threatpost 17 Mar 2021 795 Views

Is Your Browser Extension a Botnet Backdoor?

A company that rents out access to more than 10 million Web browsers so that clients can hide their true Internet addresses has built its network by paying browser extension makers to quietly include its code in their creations. This story examines the lopsided economics of extension development, ...
Krebs on Security 2 Mar 2021 645 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY