Cybersecurity News
Advertising Plugin for WordPress Threatens Full Site Takeovers
Thousands of vulnerable websites need to apply the patch to avoid RCE.
08 July 2020
US Charges Kazakhstani Citizen With Hacking Into More Than 300 Orgs
The accused man, and members of his cybercriminal group, allegedly made at least $1.5 million hacking into companies and selling access to systems over the past three years.08 July 2020
How Advanced Attackers Take Aim at Office 365
Researchers discuss how adversaries use components of Office 365 that are poorly understood and not closely monitored.08 July 2020
Fresh Options for Fighting Fraud in Financial Services
Fraud prevention requires a consumer-centric, data sharing approach.08 July 2020
Google open-sources Tsunami vulnerability scanner
Google says Tsunami is an extensible network scanner for detecting high-severity vulnerabilities with as little false-positives as possible.08 July 2020
Notorious Hacker ‘Fxmsp’ Outed After Widespread Access-Dealing
The Kazakh native made headlines last year for hacking McAfee, Symantec and Trend Micro; but the Feds say he's also behind a widespread backdoor operation spanning six continents.
08 July 2020
Microsoft Seizes Malicious Domains Used in Mass Office 365 Attacks
The phishing campaign targeted Office 365 accounts in 62 countries, using business-related reports and the coronavirus pandemic as lures.
08 July 2020
Why Cybersecurity's Silence Matters to Black Lives
The industry is missing an opportunity to educate the public about bad actors who capitalize off of protest, voting rights education and police brutality petitions through social engineering and phishing attacks.08 July 2020
A Most Personal Threat: Implantable Devices in Secure Spaces
Do implantable medical devices pose a threat to secure communication facilities? A Virginia Tech researcher says they do, and the problem is growing.08 July 2020
15 Billion Credentials Currently Up for Grabs on Hacker Forums
Unprecedented amounts of data for accessing bank accounts and streaming services are being flogged on the dark web.
08 July 2020
Civil rights auditors slam Facebook stance on Trump, voter suppression
Facebook has admitted there is still a “long way to go” to quell recent criticism of civil rights issue handling.08 July 2020
Fxmsp hacker indicted by feds for selling backdoor access to hundreds of companies
Backdoors into government networks and corporations were allegedly sold to other criminal enterprises.08 July 2020
Citrix patches 11 critical bugs
Citrix patches 11 critical bugs By William Knowles @c4i Senior Editor InfoSec News July 8, 2020 In a breath of fresh air for this week, software vendor Citrix released patches for 11 […]08 July 2020
Mozilla suspends Firefox Send service while it addresses malware abuse
Mozilla has temporarily suspended the Firefox Send file-sharing service while it adds a Report Abuse mechanism.07 July 2020
EDP Renewables Confirms Ransomware Attack
Its North American branch was notified of the attack because intruders reportedly gained access to 'at least some information' stored in its systems.07 July 2020
BEC Hotshot with Opulent Social Media Presence to Face U.S. Charges
The Nigerian native has been extradited from Dubai after a string of over-the-top Instagram posts.
07 July 2020
Keeper Threat Group Rakes in $7M from Hundreds of Compromised E-Commerce Sites
Researchers warn that Keeper, using Magecart code, will launch increasingly sophisticated attacks against online merchants worldwide in the coming months.
07 July 2020
Treasury Releases Fraud and Money Mule ID Tips
A new advisory from FinCEN helps financial institutions spot illicit activities and actors.07 July 2020
Free decryptor available for ThiefQuest ransomware victims
ThiefQuest (EvilQuest) ransomware victims can now recover their encrypted files for free, without needing to pay the ransom demand.07 July 2020
Microsoft Seizes Domains Used in COVID-19-Themed Attacks
Court grants company's bid to shut down infrastructure used in recent campaigns against Office 365 users.07 July 2020