TangleBot Malware Reaches Deep into Android Device Functions
The mobile baddie grants itself access to almost everything, enabling spying, data-harvesting, stalking and fraud attacks, among others. Source: Threatpost.com
Continue ReadingAuthor: Tara Seals
Critical Cisco Bugs Allow Code Execution on Wireless, SD-WAN
Unauthenticated cyberattackers can also wreak havoc on networking device configurations. Source: Threatpost.com
Continue ReadingFamousSparrow APT Wings in to Spy on Hotels, Governments
A custom “SparrowDoor” backdoor has allowed the attackers to collect data from targets around the globe. Source: Threatpost.com
Continue ReadingNetgear SOHO Security Bug Allows RCE, Corporate Attacks
The issue lies in a parental-control function that’s always enabled by default, even if users don’t configure for child security. Source: Threatpost.com
Continue ReadingUnpatched Apple Zero-Day in macOS Finder Allows Code Execution
All a user needs to do is click on an email attachment, and boom – the code is silently executed without the victim knowing. It affects Big Sur and prior versions of macOS. Source: Threatpost.com
Continue ReadingEpik Confirms Hack, Gigabytes of Data on Offer
“Time to find out who in your family secretly ran … [a] QAnon hellhole,” said attackers who affiliated themselves with the hacktivist collective Anonymous, noting that Epik had laughable security. Source: Threatpost.com
Continue ReadingEuropol Breaks Open Extensive Mafia Cybercrime Ring
Organized crime ring thrived on violence, intimidation and $12 million in online fraud profits. Source: Threatpost.com
Continue ReadingAT&T Phone-Unlocking Malware Ring Costs Carrier $200M
With the help of malicious insiders, a fraudster was able to install malware and remotely divorce iPhones and other handsets from the carrier’s U.S. network — all the way from Pakistan. Source: Threatpost.com
Continue ReadingAirline Credential-Theft Takes Off in Widening Campaign
A spyware effort bent on stealing cookies and logins is being driven by unsophisticated attackers cashing in on the initial-access-broker boom. Source: Threatpost.com
Continue ReadingZLoader’s Back, Abusing Google AdWords, Disabling Windows Defender
The well-known banking trojan retools for stealth with a whole new attack routine, including using ads for Microsoft TeamViewer and Zoom to lure victims in. Source: Threatpost.com
Continue Reading