North Korea on Sunday blasted Seoul's accusation that Pyongyang had launched a series of cyber attacks targeting South Korean government officials, calling the allegation a "bullshit" fabrication.
read more
Hackers Pillage DDoS Protection Firm Staminus
Hackers Leak Customer Data From DDoS Protection Firm Staminus
Distributed denial of service (DDoS) protection company Staminus was breached last week, when attackers managed to steal sensitive information from its database and publish it online.
read more
Typos Thwart $1 Billion Bangladesh Account Hack Attempt
Hackers who allegedly infiltrated the Bangladesh central bank were attempting to steal almost $1 billion from an account it held with the Federal Reserve Bank of New York, but typos thwarted the full heist, officials said Friday.
read more
Patch for Serious Two-Year-Old Java Flaw Bypassed
Researchers discovered that a patch released more than two years ago by Oracle for a serious Java sandbox escape vulnerability can be easily bypassed.
read more
DROWN Vulnerability Still Unpatched by Most Cloud Services
A high severity vulnerability revealed last week that affects HTTPS and other services that rely on SSL and TLS has not been patched by most affected cloud services, according to a recent scan.
read more
Changing Cybersecurity Outcomes with Intelligence
Our modern world is strewn with cyber breaches, a proliferation of dangers, regional crises, political unrest, and dangerous threat actors – all at play against a backdrop of an over reliance on the Internet which was never designed to be the backbone of a global economy.
read more
Serious Flaws Patched in Cisco Modems, Gateways
Cisco released software updates this week to patch several high severity vulnerabilities in the company’s cable modems, residential gateways and security appliances.
A couple of serious flaws in Cisco’s residential gateways were reported by Kyle Lovett, and Chris Watts of Tech Analysis.
read more
“Libotr” Library Flaw Exposes Popular IM Apps
A researcher at security firm X41 D-Sec uncovered a serious vulnerability in the “libotr” library that can be exploited for denial-of-service (DoS) attacks and remote code execution.
read more
Three High Severity DoS Flaws Patched in BIND
The Internet Systems Consortium (ISC) this week released updates for the DNS software BIND to address three high severity denial-of-service (DoS) vulnerabilities.
read more
Dridex Botnet Spreading Locky Ransomware Via JavaScript Attachments
The Dridex botnet operators have recently changed the delivery mechanism in their spam campaigns, as well as the payload, to deliver the Locky ransomware, researchers at Trustwave warn.
read more