Information Security newsfeed from around the world in English and French. Find it all in one place… here.
Hackers masquerade as security researchers to befriend analysts and eventually infect fully patched systems at multiple firms with a malicious backdoor. Source: Threatpost.com
Continue ReadingThe ShinyHunters hacking group offer a raft of information, from location and contact info to dating preferences and bodily descriptions, as a free download. Source: Threatpost.com
Continue ReadingThe high-severity security vulnerability (CVE-2021-1257) allows cross-site request forgery (CSRF) attacks. Source: Threatpost.com
Continue ReadingThe new tools on Chrome and Edge will make it easier for browser users to discover – and change – compromised passwords. Source: Threatpost.com
Continue ReadingThe “KindleDrip” attack would have allowed attackers to siphon money from unsuspecting victims. Source: Threatpost.com
Continue ReadingA former ADT employee pleads guilty of accessing customers’ cameras so he could spy on them. Source: Threatpost.com
Continue ReadingThe CursedGrabber malware has infiltrated the open-source software code repository. Source: Threatpost.com
Continue ReadingResearchers warn that attackers are collecting reconnaissance for future business email compromise attacks using Google Forms. Source: Threatpost.com
Continue ReadingA phishing campaign spoofs Xerox notifications to lure victims into clicking on malicious HTML attachments. Source: Threatpost.com
Continue ReadingThe attack vector was not the Orion platform but rather an email-protection application for Microsoft 365. Source: Threatpost.com
Continue Reading