Cisco Smart Switches Riddled with Severe Security Holes
The intro-level networking gear for SMBs could allow remote attacks designed to steal information, drop malware and disrupt operations. Source: Threatpost.com
Continue ReadingAuthor: Tara Seals
Geek Squad Vishing Attack Bypasses Email Security to Hit 25K Mailboxes
An email campaign asking victims to call a bogus number to suspend supposedly fraudulent subscriptions got right past Microsoft’s native email controls. Source: Threatpost.com
Continue ReadingRansomware Poll: 80% of Victims Don’t Pay Up
Meanwhile, in a separate survey, 80 percent of organizations that paid the ransom said they were hit by a second attack. Source: Threatpost.com
Continue ReadingPeloton Bike+ Bug Gives Hackers Complete Control
An attacker with initial physical access (say, at a gym) could gain root entry to the interactive tablet, making for a bevy of remote attack scenarios. Source: Threatpost.com
Continue ReadingMillions of Connected Cameras Open to Eavesdropping
A supply-chain component lays open camera feeds to remote attackers thanks to a critical security vulnerability. Source: Threatpost.com
Continue ReadingMicrosoft Disrupts Large-Scale, Cloud-Based BEC Campaign
Varied cloud infrastructure was used to phish email credentials, monitor for and forward finance-related messages and automate operations. Source: Threatpost.com
Continue ReadingMoobot Milks Tenda Router Bugs for Propagation
An analysis of the campaign revealed Cyberium, an active Mirai-variant malware hosting site. Source: Threatpost.com
Continue ReadingUnpatched Bugs Found Lurking in Provisioning Platform Used with Cisco UC
A trio of security flaws open the door to remote-code execution and a malware tsunami. Source: Threatpost.com
Continue ReadingCyberpunk 2077 Hacked Data Circulating Online
CD Projekt Red confirmed that employee and game-related data appears to be floating around the cyber-underground, four months after a hack on the Witcher and Cyberpunk 2077 developer. Source: Threatpost.com
Continue Reading‘Fancy Lazarus’ Cyberattackers Ramp up Ransom DDoS Efforts
The group, known for masquerading as various APT groups, is back with a spate of attacks on U.S. companies. Source: Threatpost.com
Continue Reading