Cyber-Insurance Fuels Ransomware Payment Surge
Companies relying on their cyber-insurance policies to pay off ransomware criminals are being blamed for a recent uptick in ransomware attacks. Source: Threatpost.com
Continue ReadingAuthor: Lindsey O Donnell
Active Exploits Hit WordPress Sites Vulnerable to Thrive Themes Flaws
Thrive Themes has recently patched vulnerabilities in its WordPress plugins and legacy Themes – but attackers are targeting those who haven’t yet applied security updates. Source: Threatpost.com
Continue ReadingRansomware Attack Foils IoT Giant Sierra Wireless
The ransomware attack has impacted the IoT manufacturer’s production lines across multiple sites, and other internal operations. Source: Threatpost.com
Continue ReadingOffice 365 Cyberattack Lands Disgruntled IT Contractor in Jail
A former IT contractor is facing jailtime after a retaliatory hack into a company’s network and wiping the majority of its employees’ Microsoft Office 365 accounts. Source: Threatpost.com
Continue ReadingPodcast: Microsoft Exchange Server Attack Onslaught Continues
Derek Manky, Chief of Security Insights & Global Threat Alliances at Fortinet’s FortiGuard Labs, gives insight into the surge in attacks against vulnerable Microsoft Exchange servers over the last week. Source: Threatpost.com
Continue ReadingCISA Warns of Security Flaws in GE Power Management Devices
The flaws could allow an attacker to access sensitive information, reboot the UR, gain privileged access, or cause a denial-of-service condition. Source: Threatpost.com
Continue ReadingAdobe Fixes Critical ColdFusion Flaw in Emergency Update
Attackers can leverage the critical Adobe ColdFusion flaw to launch arbitrary code execution attacks. Source: Threatpost.com
Continue ReadingCritical F5 BIG-IP Flaw Now Under Active Attack
Researchers are reporting mass scanning for – and in-the-wild exploitation of – a critical-severity flaw in the F5 BIG-IP and BIG-IQ enterprise networking infrastructure. Source: Threatpost.com
Continue ReadingBogus Android Clubhouse App Drops Credential-Swiping Malware
The malicious app spreads the BlackRock malware, which steals credentials from 458 services – including Twitter, WhatsApp, Facebook and Amazon. Source: Threatpost.com
Continue ReadingTrojanized Xcode Project Slips MacOS Malware to Apple Developers
In a new campaign, threat actors are bundling macOS malware in trojanized Apple Xcode developer projects. Source: Threatpost.com
Continue Reading