You are here:-Tag:Darkmatters

Vermont Librarian Wins Small-Claims Suit Against Equifax | Threatpost

By | 2018-06-16T20:25:19+00:00 June 15th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

In a David-and-Goliath moment, a 49-year-old librarian has won damages against credit giant Equifax, in the wake of its head-spinningly massive 2017 data breach. It’s a small but significant victory: a small claims court awarded $600 to Jessamyn West, native of the small town of Randolph in Orange County, Vermont. West told Threatpost

WannaCry Kill Switch Hero Faces New Charges, But Code Evals Say Little | Threatpost

By | 2018-06-16T22:54:55+00:00 June 15th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

A fresh FBI charge against Marcus Hutchins has led to the Kronos banking trojan and the UPAS Kit backdoor being linked in the news over the past week. However, a fresh analysis this week shows that, at least on a code level, the similarities (and differences) between the two are far from conclusive.

New Banking Trojan Can Launch Overlay Attacks on Latest Android Versions | Threatpost

By | 2018-06-16T21:25:01+00:00 June 15th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Researchers have discovered a new Android banking trojan that holds striking similarities to the infamous Lokibot – but packed with new tricky features, most notably its ability to implement an overlay attack on Android 7 and 8. Researchers at ThreatFabric, who discovered the trojan, said MysteryBot was running on the same C&C server

Apple Removes iPhone USB Access Feature, Blocking Out Hackers, Law Enforcement | Threatpost

By | 2018-06-15T20:05:55+00:00 June 14th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Apple said an upcoming iOS software update will remove the infamous iPhone USB access feature, blocking out both hackers – and law enforcement – from accessing a locked phones’ data via the device port. Apple confirmed that new upcoming default settings will disable the iPhone’s Lightning port, its charging and data port, an hour

U.S. Intelligence Cautions World Cup Travelers on Mobile Use | Threatpost

By | 2018-06-15T10:24:55+00:00 June 14th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The 2018 FIFA World Cup is kicking off in Russia today, with at least 1 million visitors expected to travel to Moscow alone to take in the world’s biggest sporting event in person. But the event will feature more than just breathtaking goals and soccer superstars: According to researchers and at least one

Podcast: The Growing Social Media Threat Landscape | Threatpost

By | 2018-06-14T20:59:18+00:00 June 14th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Facebook’s Cambridge Analytica scandal in March was just the tip of the social-media iceberg, as malware, hacks and basic privacy concerns continue to increase on social-media platforms. Threatpost’s Lindsey O’Donnell talks with Zack Allen, ZeroFOX’s manager of threat operations, about the threats presented by the broader social-media landscape and the growing issue of malicious

Malicious Docker Containers Earn Cryptomining Criminals $90K | Threatpost

By | 2018-06-14T19:55:55+00:00 June 13th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

UPDATE Seventeen malicious Docker containers earned cryptomining criminals $90,000 in 30 days in what could be a harbinger of things to come. The figure may seem tame compared to some of the larger paydays that cryptojackers have earned. But, researchers at Kromtech Security Center warn containers are shaping up to be the next

Microsoft Reveals Which Bugs It Won’t Patch | Threatpost

By | 2018-06-14T17:00:54+00:00 June 13th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Microsoft has put out initial clarification around which bugs it will rapidly patch, and which ones must wait for a new product release – and which ones it won’t address at all. In a draft document posted online on Tuesday, the software giant laid out the criteria that the Microsoft Security Response Center

Two Bugs in WordPress Tooltipy Plugin Patched | Threatpost

By | 2018-06-14T15:31:53+00:00 June 13th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

WordPress has issued fixes for two bugs rated “medium” in its tooltips plugin, including one that can allow bad actors to do anything an administrative user would be able to do on a WordPress site. The Tooltipy plugin allows users to automatically create responsive “tooltip” boxes for technical keywords on webpages – allowing

Banco de Chile Wiper Attack Just a Cover for $10M SWIFT Heist | Threatpost

By | 2018-06-14T19:27:06+00:00 June 13th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

A cyberattack against Chile’s largest financial institution last month, which reportedly destroyed 9,000 workstations and 500 servers, was actually cover for a larger plot to compromise endpoints handling transactions on the SWIFT network. When the dust settled on the attacks, investigators said $10 million was stolen from Banco de Chile and funneled off to an account