Building automation products from American Auto-Matrix are affected by a couple of high-severity vulnerabilities that allow remote hackers to compromise the affected system, ICS-CERT warned on Thursday.
read more
Tofsee Malware Distribution Switched From Exploit Kit to Spam
The RIG exploit kit recently stopped distributing Tofsee and cybercriminals have decided to use the botnet’s own spamming capabilities to deliver the malware, Cisco’s Talos team reported on Thursday.
read more
Zerodium Boosts Bounty for iOS Exploit to $1.5 Million
ZERODIUM, a leading zero-day exploit broker, has published its revised bounty figures for the amount it will pay for new zero-days. The highest figure is reserved for iOS – now up to $1.5 million for "fully functional/reliable exploits meeting ZERODIUM's requirements". It was 'only' $500,000 in September 2015.
read more
Dridex Banking Trojan Adopts Improved Encryption
The infamous Dridex banking Trojan has adopted new tactics and more advanced encryption and obfuscation to better avoid detection and to hinder security analysis, researchers warn.
read more
“Vendetta Brothers” Are After Your Payment Card Data
If you live in the United States or one of several Nordic countries, your payment card data might be of interest to a duo of cybercriminals that FireEye refers to as the “Vendetta Brothers.”
read more
Firms Spend Big Money on Flaws They Could Fix in Development
Companies are spending millions on bug bounty programs whose goal is to identify vulnerabilities, but it might be more efficient to take a proactive approach and focus on identifying flaws in the development phase.
read more
Upcoming Webcast: Three Critical Metrics for Measuring Your Security Effectiveness
Live Webinar – Oct. 6 at 1PM ET
read more
Syrian Electronic Army Member Pleads Guilty to Hacking, Extortion
A member of the Syrian Electronic Army hacker group arrested earlier this year in Germany has pleaded guilty to hacking and extortion charges before a judge in the Eastern District of Virginia.
read more
Vulnerabilities, Backdoors Found in D-Link Mobile Hotspot
Vulnerabilities, Backdoor Found in D-Link DWR-932B LTE Router
read more
Russian Hackers Target Journalists Investigating MH17 Crash
Two Russia-linked threat groups have been targeting citizen journalists investigating Moscow’s involvement in the downing of Malaysia Airlines flight MH17 in July 2014 as it was crossing Ukraine.
read more
