Bug-Bounty Awards Spike 26% in 2020
The most-rewarded flaw is XSS, which is among those that are relatively cheap for organizations to identify. Source: Threatpost.com Bug-Bounty Awards Spike 26% in 2020
Continue ReadingAuthor: Elizabeth Montalbano
Trump Campaign Website Defaced by Cryptocurrency Scam
Hackers claim to have access to classified information linking the president to the origin of the coronavirus and criminal collusion with foreign actors. Source: Threatpost.com Trump Campaign Website Defaced by Cryptocurrency Scam
Continue ReadingRansomware Takes Down Network of French IT Giant
Sopra Steria hit with cyber attack that reportedly encrypted parts of their network on Oct. 20 but has remained mostly mum on details. Source: Threatpost.com Ransomware Takes Down Network of French IT Giant
Continue ReadingGoogle Patches Actively-Exploited Zero-Day Bug in Chrome Browser
The memory-corruption vulnerability exists in the browser’s FreeType font rendering library. Source: Threatpost.com Google Patches Actively-Exploited Zero-Day Bug in Chrome Browser
Continue ReadingGoogle’s Waze Can Allow Hackers to Identify and Track Users
The company already patched an API flaw that allowed a security researcher to use the app to find the real identity of drivers using it. Source: Threatpost.com Google’s Waze Can Allow Hackers to Identify and Track Users
Continue ReadingTikTok Launches Bug Bounty Program Amid Security Snafus
The move is a distinct change in direction for the app, which has been criticized and even banned for its security practices. Source: Threatpost.com TikTok Launches Bug Bounty Program Amid Security Snafus
Continue ReadingCarnival Corp. Ransomware Attack Affected Three Cruise Lines
Hackers accessed personal information of guests, employees and crew for Carnival Cruise, Holland America and Seabourn as well as casino operations. Source: Threatpost.com Carnival Corp. Ransomware Attack Affected Three Cruise Lines
Continue ReadingCybercriminals Steal Nearly 1TB of Data from Miami-Based International Tech Firm
Databases of sensitive, financial and personally identifiable info and documents from Intcomex were leaked on Russian-language hacker forum after a ransomware attack. Source: Threatpost.com Cybercriminals Steal Nearly 1TB of Data from Miami-Based International Tech Firm
Continue ReadingOffice 365: A Favorite for Cyberattack Persistence
Bad actors are leveraging legitimate services and tools within Microsoft’s productivity suite to launch cyberattacks on COVID-19 stay-at-home workers, new research finds. Source: Threatpost.com Office 365: A Favorite for Cyberattack Persistence
Continue ReadingWormable Apple iCloud Bug Allows Automatic Photo Theft
Ethical hackers so far have earned nearly $300K in payouts from the Apple bug-bounty program for discovering 55 bugs, 11 of them critical, during a three-month hack. Source: Threatpost.com Wormable Apple iCloud Bug Allows Automatic Photo Theft
Continue Reading