You are here:-Vulnerabilities | Alerts | Solutions

Vulnerabilities | Alerts | Solutions

Ticketfly, Major Concert Venues Still Offline After Hack | Threatpost

By | 2018-06-02T13:44:39+00:00 June 1st, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Ticketfly and several major venues’ services are still offline Friday morning as they struggle to recover from a major hack that have brought down their websites and disrupted several public on-sale concert tickets. Ticket distribution service Ticketfly said in a statement that it has launched an ongoing investigation into the incident and has yet

Comments Off on Ticketfly, Major Concert Venues Still Offline After Hack | Threatpost

ICANN Launches GDPR Lawsuit to Clarify the Future of WHOIS | Threatpost

By | 2018-06-01T15:33:58+00:00 May 31st, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The WHOIS internet domain directory is at the center of a GDPR-related lawsuit that should clarify at least one of the many unknowns when it comes to achieving compliance with the data-privacy regulation. The suit was filed last week by ICANN, the nonprofit body responsible for administering the assignment of a large portion

Comments Off on ICANN Launches GDPR Lawsuit to Clarify the Future of WHOIS | Threatpost

Nocturnal Stealer Lets Low-Skilled Cybercrooks Harvest Sensitive Info | Threatpost

By | 2018-06-01T13:59:45+00:00 May 31st, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The Nocturnal Stealer malware has crept into the Dark Web like a thief in the night, offering criminals a lucrative payday for a small price — and little effort. It’s a commodity malware, debuting on an underground forum in March for the low price of $25. It steals things, including 28 different kinds

Comments Off on Nocturnal Stealer Lets Low-Skilled Cybercrooks Harvest Sensitive Info | Threatpost

Huawei Patches Four Server Bugs Rated High Severity | Threatpost

By | 2018-06-01T06:23:45+00:00 May 31st, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Huawei Technologies warned customers of four vulnerabilities rated high that impact 20 of its server models. Patches are available for each of the bugs that range from an authentication bypass vulnerability, privilege escalation vulnerability and two JavaScript Object Notation (JSON) injection vulnerabilities. The China-based technology firm also announced on Wednesday a DoS vulnerability

Comments Off on Huawei Patches Four Server Bugs Rated High Severity | Threatpost

Podcast: How Cities Can Be Security Smart | Threatpost

By | 2018-06-01T12:31:16+00:00 May 31st, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

by Lindsey O'Donnell May 31, 2018 , 1:44 pm The smart city industry is projected to be a 400 billion dollar market by 2020, as municipals look at real-world applications for transportation, waste management, and law enforcement. But with that growth comes privacy issues and security risks, Tenable CTO Renaud Deraison told Threatpost’s

Comments Off on Podcast: How Cities Can Be Security Smart | Threatpost

Bug In Git Opens Developer Systems Up to Attack | Threatpost

By | 2018-05-31T07:42:57+00:00 May 30th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Git repository hosting services GitHub, GitLab and Microsoft VSTS each patched a serious vulnerability on Tuesday that could lead to arbitrary code execution when a developer uses a malicious repository. Developers behind the open-source development Git tool pushed out Git 2.17.1, addressing two bugs (CVE-2018-11233 and CVE-2018-11235). “These are tricky vulnerabilities that will

Comments Off on Bug In Git Opens Developer Systems Up to Attack | Threatpost

Botnet Operators Team Up To Leverage IcedID, Trickbot Trojans | Threatpost

By | 2018-05-31T06:13:08+00:00 May 30th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The botnet operators behind two infamous banking trojans have banded together to gouge victims of cash in a tricky collaborative scheme. Flashpoint analysts, who highlighted the collaboration in a Wednesday report, said that the operators behind the  IcedID and TrickBot trojans appear to be targeting banking victims in a dual threat — and

Comments Off on Botnet Operators Team Up To Leverage IcedID, Trickbot Trojans | Threatpost

Yahoo! Hacker Sentenced; Coke Opens Up a Can of Data Breach | Threatpost

By | 2018-05-31T12:42:53+00:00 May 30th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Fortune 500 breaches seem to be a theme this week. As the Yahoo attacker responsible for the company’s 500 million-account data breach has been sentenced, Coca-Cola disclosed an insider stole the information of 8,000 employees. A Canadian man who pleaded guilty last year to a “hacking-for-hire” spear-phishing operation of Yahoo employees was sentenced

Comments Off on Yahoo! Hacker Sentenced; Coke Opens Up a Can of Data Breach | Threatpost

Hidden Cobra Strikes Again with Custom RAT, SMB Malware | Threatpost

By | 2018-05-31T12:11:43+00:00 May 30th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The feds are warning that the North Korean APT group known as Hidden Cobra is mounting active attacks on U.S. businesses (and others globally), including organizations in the media, aerospace, financial and critical infrastructure sectors. According to a United States Computer Emergency Readiness Team (US-CERT) bulletin released Tuesday, the state-sponsored group is using

Comments Off on Hidden Cobra Strikes Again with Custom RAT, SMB Malware | Threatpost

Fraudsters Claim To Hack Two Canadian Banks | Threatpost

By | 2018-05-30T06:30:50+00:00 May 29th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Two Canadian banks have reported that they may be targets of a hack, after bad actors claimed that they electronically accessed personal and account information. On Monday, both Bank of Montreal and Simplii Financial (the banking subsidiary of the Canadian Imperial Bank of Commerce) announced that “fraudsters” contacted them over the weekend claiming they

Comments Off on Fraudsters Claim To Hack Two Canadian Banks | Threatpost