Threatpost | The first stop for security news

Firewall Bug Under Active Attack Triggers CISA Warning

By Threatpost — August 23^rd 2022 at 13:19

CISA is warning that Palo Alto Networks’ PAN-OS is under active attack and needs to be patched ASAP.

Threatpost | The first stop for security news

Fake Reservation Links Prey on Weary Travelers

By Nate Nelson — August 22^nd 2022 at 13:59

Fake travel reservations are exacting more pain from the travel weary, already dealing with the misery of canceled flights and overbooked hotels.

Threatpost | The first stop for security news

iPhone Users Urged to Update to Patch 2 Zero-Days

By Elizabeth Montalbano — August 19^th 2022 at 15:25

Separate fixes to macOS and iOS patch respective flaws in the kernel and WebKit that can allow threat actors to take over devices and are under attack.

Threatpost | The first stop for security news

Google Patches Chrome’s Fifth Zero-Day of the Year

By Elizabeth Montalbano — August 18^th 2022 at 14:31

An insufficient validation input flaw, one of 11 patched in an update this week, could allow for arbitrary code execution and is under active attack.

Threatpost | The first stop for security news

Xiaomi Phone Bug Allowed Payment Forgery

By Nate Nelson — August 16^th 2022 at 12:26

Mobile transactions could’ve been disabled, created and signed by attackers.

Threatpost | The first stop for security news

Phishers Swim Around 2FA in Coinbase Account Heists

By Elizabeth Montalbano — August 8^th 2022 at 15:26

Attackers are spoofing the widely used cryptocurrency exchange to trick users into logging in so they can steal their credentials and eventually their funds.

Threatpost | The first stop for security news

Open Redirect Flaw Snags Amex, Snapchat User Data

By Elizabeth Montalbano — August 5^th 2022 at 13:17

Separate phishing campaigns targeting thousands of victims impersonate FedEx and Microsoft, among others, to trick victims.

Threatpost | The first stop for security news

Universities Put Email Users at Cyber Risk

By Elizabeth Montalbano — August 2^nd 2022 at 23:02

DMARC analysis by Proofpoint shows that institutions in the U.S. have among some of the poorest protections to prevent domain spoofing and lack protections to block fraudulent emails.

Threatpost | The first stop for security news

Securing Your Move to the Hybrid Cloud

By Infosec Contributor — August 1^st 2022 at 13:29

Infosec expert Rani Osnat lays out security challenges and offers hope for organizations migrating their IT stack to the private and public cloud environments.

Threatpost | The first stop for security news

Threat Actors Pivot Around Microsoft’s Macro-Blocking in Office

By Elizabeth Montalbano — July 28^th 2022 at 17:24

Cybercriminals turn to container files and other tactics to get around the company’s attempt to thwart a popular way to deliver malicious phishing payloads.

Threatpost | The first stop for security news

IoT Botnets Fuels DDoS Attacks – Are You Prepared?

By Sponsored Content — July 26^th 2022 at 12:38

The increased proliferation of IoT devices paved the way for the rise of IoT botnets that amplifies DDoS attacks today. This is a dangerous warning that the possibility of a sophisticated DDoS attack and a prolonged service outage will prevent businesses from growing.

Threatpost | The first stop for security news

Magecart Serves Up Card Skimmers on Restaurant-Ordering Systems

By Elizabeth Montalbano — July 20^th 2022 at 12:14

300 restaurants and at least 50,000 payment cards compromised by two separate campaigns against MenuDrive, Harbortouch and InTouchPOS services.

Threatpost | The first stop for security news

Authentication Risks Discovered in Okta Platform

By Nate Nelson — July 19^th 2022 at 15:33

Four newly discovered attack paths could lead to PII exposure, account takeover, even organizational data destruction.

Threatpost | The first stop for security news

Google Boots Multiple Malware-laced Android Apps from Marketplace

By Elizabeth Montalbano — July 18^th 2022 at 12:32

Google removed eight Android apps, with 3M cumulative downloads, from its marketplace for being infected with a Joker spyware variant.

Threatpost | The first stop for security news

Large-Scale Phishing Campaign Bypasses MFA

By Elizabeth Montalbano — July 13^th 2022 at 11:45

Attackers used adversary-in-the-middle attacks to steal passwords, hijack sign-in sessions and skip authentication and then use victim mailboxes to launch BEC attacks against other targets.

Threatpost | The first stop for security news

‘Callback’ Phishing Campaign Impersonates Security Firms

By Elizabeth Montalbano — July 12^th 2022 at 11:43

Victims instructed to make a phone call that will direct them to a link for downloading malware.

Threatpost | The first stop for security news

Google Patches Actively Exploited Chrome Bug

By Elizabeth Montalbano — July 5^th 2022 at 11:54

The heap buffer overflow issue in the browser’s WebRTC engine could allow attackers to execute arbitrary code.

Threatpost | The first stop for security news

Leaky Access Tokens Exposed Amazon Photos of Users

By Nate Nelson — June 29^th 2022 at 20:18

Hackers with Amazon users’ authentication tokens could’ve stolen or encrypted personal photos and documents.

Threatpost | The first stop for security news

Patchable and Preventable Security Issues Lead Causes of Q1 Attacks

By Sagar Tiwari — June 29^th 2022 at 13:00

Attacks against U.S. companies spike in Q1 2022 with patchable and preventable external vulnerabilities responsible for bulk of attacks.

Threatpost | The first stop for security news

Google Warns Spyware Being Deployed Against Android, iOS Users

By Elizabeth Montalbano — June 24^th 2022 at 11:02

The company is warning victims in Italy and Kazakhstan that they have been targeted by the malware from Italian firm RCS Labs.

Threatpost | The first stop for security news

Kazakh Govt. Used Spyware Against Protesters

By Nate Nelson — June 21^st 2022 at 12:48

Researchers have discovered that a Kazakhstan government entity deployed sophisticated Italian spyware within its borders.