Less than 24 hours after Joomla released patches for a couple of critical account creation vulnerabilities, researchers noticed that malicious actors had already started exploiting the flaws in the wild.
read more
Network Visibility: See Mo’ Evil
Acrid gasoline fumes filled the rundown barn as a chainsaw revved too close for comfort. Hot breath brushed my ear with a taunting echo, “I want your pretty hair. I want your pretty hair.” I couldn’t see a thing, but perhaps that’s because my face was burrowed too far into the back of my husband’s neck as I clung to him like a crazed spider monkey. “R-u-n!!!”
read more
AtomBombing: The Windows Vulnerability that Cannot be Patched
Researchers have discovered a code-injection vulnerability in the Windows operating system that cannot, because of the nature of the operating system, be patched. It could be used to bypass current malware protection solutions in place.
read more
Mirai Botnet Infects Devices in 164 Countries
Mirai, the infamous botnet used in the recent massive distributed denial of service (DDoS) attacks against Brian Krebs’ blog and Dyn’s DNS infrastructure, has ensnared Internet of Things (IoT) devices in 164 countries, researchers say.
read more
Australian Red Cross Leaks Blood Donor Data
The Australian Red Cross Blood Service apologised on Friday to donors after one of its third-party service providers inadvertently made accessible a backup database containing the personal details of 550,000 individuals.
read more
How to Intelligently Share Cyber Threat Intelligence
A lot has been written on the importance of information sharing in the cybersecurity community. There is seemingly an ISAC for every industry these days. We’re talking the talk, and on the surface it looks like some organizations are starting to walk the walk. But in reality, we’re still just scratching the surface when it comes to sharing cyber threat information, let alone sharing intelligence that is useful and practical.
read more
EU Regulators Raise Concerns over Yahoo and WhatsApp
European data protection regulators have written to both WhatsApp and Yahoo. With Yahoo concerns center around the breach and theft of 500 million user accounts, and sharing content with the US government. The WhatsApp concern is over sharing EU personal data with US Facebook. In both cases the issues will be discussed in November.
read more
Ukrainian Group Claims Hack of Putin Advisor’s Email
A hacker group calling itself “Cyber Hunta” leaked over 2,000 emails allegedly stolen from the account of Vladislav Yuryevich Surkov, adviser to Russian President Vladimir Putin.
read more
Teen Arrested for Cyberattack on 911 Emergency System
An 18-year-old teen from Arizona was arrested this week after one of his iOS exploits caused serious disruption to 911 emergency systems.
read more
U.S. Indicts 61 in Indian Call Center Scam
The Department of Justice this week accused a total of 61 individuals and entities for their presumed involvement in a call center scam targeting tens of thousands of individuals in the United States.
read more
