Exploit for Recent Flash Zero-Day Added to Fallout Exploit Kit

Fri, 18 Jan 2019 20:30:07 +0000

An updated version of the Fallout exploit kit recently emerged with an exploit for a recent Flash zero-day included in its arsenal, Malwarebytes Labs security researchers warn. read more

Hackers Actively Scanning for ThinkPHP Vulnerability, Akamai Says

Fri, 18 Jan 2019 19:22:39 +0000

There is widespread scanning for a recently disclosed remote code execution vulnerability in the ThinkPHP framework, Akamai reveals.  read more

Xbash Malware Uninstalls Cloud Security Products

Fri, 18 Jan 2019 18:00:52 +0000

Recent samples of the destructive Xbash Linux malware can uninstall cloud security protection products from infected servers, Palo Alto Networks reports.  read more

Marco Rubio Proposes New Federal Data Privacy Bill

Fri, 18 Jan 2019 17:43:11 +0000

U.S. Senator Marco Rubio (R-Fla.) introduced a bill on Wednesday designed to provide privacy legislation for the entire nation -- that is, federal law. It is based on the Privacy Act of 1974, which was introduced post-Watergate to protect people from government storage and retrieval of personal data. read more

Barracuda Adds Incident Response to Email Security Offering

Fri, 18 Jan 2019 17:15:12 +0000

Barracuda Networks this week announced automated incident response capabilities are now available for customers using its Total Email Protection solution.  read more

PCI SSC Releases New Security Standards for Payment Software

Fri, 18 Jan 2019 16:38:53 +0000

The Payment Card Industry Security Standards Council (PCI SSC) this week announced new security standards for the design, development and maintenance of payment software. read more

Microsoft Launches Azure DevOps Bug Bounty Program

Fri, 18 Jan 2019 15:07:41 +0000

read more

Rate of Cybersecurity Venture Funding Not Sustainable, Investors Say

Fri, 18 Jan 2019 14:16:34 +0000

Venture capital firm Strategic Cyber Ventures (SCV) considers itself a part of the overall security industry. "First and foremost we are cyber operators," it states on its website. "We advance cybersecurity through expert investment in synergistic teams and technology solving the world's security problems." read more

Impact of U.S. Government Shutdown on Cybersecurity: Feedback Friday

Fri, 18 Jan 2019 13:53:14 +0000

The failure of President Donald Trump and the Democratic Party to reach an agreement over funding for the controversial Mexico border wall has led to the longest government shutdown in US history. read more

Facebook Closes Hundreds of 'Inauthentic' Russia-Linked Pages

Fri, 18 Jan 2019 08:49:56 +0000

Facebook announced Thursday that it has removed more than 500 pages, groups and accounts originating in Russia for engaging in what the social network called "coordinated inauthentic behavior." read more

Bug in Twitter Android App Exposed Protected Tweets

Fri, 18 Jan 2019 07:01:41 +0000

Twitter revealed on Thursday that users of its Android application may have had their supposedly protected tweets made public due to a bug. read more

Portuguese Hacker Linked to 'Football Leaks' Held in Hungary

Fri, 18 Jan 2019 06:07:09 +0000

A Portuguese hacker said by his lawyers to have played a pivotal role in the Football Leaks whistleblower website was fighting extradition from Hungary to Portugal on Thursday on charges of extortion. Rui Pinto, 30, was arrested on Wednesday. read more

Ongoing Attacks Hit West African Financial Institutions Since Mid-2017

Thu, 17 Jan 2019 18:40:19 +0000

Cyber-attacks that have been ongoing since at least mid-2017 hit financial institutions in West Africa, Symantec security researchers report. read more

New Magecart Group Targets French Ad Agency

Thu, 17 Jan 2019 18:26:19 +0000

A new threat actor operating under the “Magecart” umbrella landed a malicious skimmer on hundreds of websites through a supply chain attack, security firms reveal. read more

773 Million Records Amassed in Massive Data Breach Collection

Thu, 17 Jan 2019 18:01:00 +0000

A newly discovered set of compromised login details contains roughly 773 million email addresses, Australian web security expert Troy Hunt reveals. read more

Misconfigured Server Leaks Oklahoma Department of Securities Data

Thu, 17 Jan 2019 17:02:33 +0000

A storage server configured for public access was found to expose terabytes of data belonging to the Oklahoma Department of Securities, UpGuard reveals. read more

Serious Flaws Found in ControlByWeb Industrial Weather Station

Thu, 17 Jan 2019 16:45:37 +0000

Researchers have discovered two potentially serious vulnerabilities in an industrial-grade weather station made by ControlByWeb, a company that specializes in products that allow organizations to remotely monitor and control electrical devices. read more

ERP Security Firm Onapsis Acquires Competitor Virtual Forge

Thu, 17 Jan 2019 15:27:43 +0000

Onapsis, a company specializing in cybersecurity and compliance solutions for enterprise resource planning (ERP) products, on Wednesday announced that it has entered a definitive agreement to acquire competitor Virtual Forge. read more

Flaw in Reservation System Impacts Many Airlines

Thu, 17 Jan 2019 13:34:24 +0000

A vulnerability discovered in a reservation system used by hundreds of airlines around the world could expose the details of millions of their customers, researchers warned this week. read more