DoorDash Data Breach Impacts Personal Data of Almost 5M Users
Accessed information includes delivery addresses, license numbers, names, phone numbers and more. Go to Source
Rash of Exploits Targets Critical vBulletin RCE Bug
After someone dropped a zero-day exploit on Securelist this week, the platform rushed out a fix — time to apply it. Go to Source
5G and IoT: How to Approach the Security Implications
Experts from Nokia, iboss and Sectigo talk 5G mobile security for internet of things (IoT) devices in this webinar YouTube video (transcript included). Go to Source
Cisco Patches 13 High-Severity Router and Switch Bugs
One Cisco bug impacting its 800 and 1000 series routers had a CVSS severity score of 9.9. Go to Source
Phish Uses Google’s URL Decoding to Swim Past Defenses
Percentage-based URL encoding plus Google domain trickery is helping malicious emails to evade filters. Go to Source
Magecart Group Targets Routers Behind Public Wi-Fi Networks
Magecart Group 5 has been spotted testing and preparing code to be injected onto commercial routers – potentially opening up guests connecting to Wi-Fi networks to payment data theft. Go to Source
‘Narrator’ Windows Utility Trojanized to Gain Full System Control
An active APT campaign aimed at tech companies is underway, which also uses a legitimate NVIDIA graphics function. Go to Source
Unpatched Bug Under Active Attack Threatens WordPress Sites with XSS
The issue in the Rich Reviews plugin is being actively exploited. Go to Source
Cybercrooks Target U.S. Veterans with Fake Hiring Website
A known threat actor, Tortoiseshell, is targeting U.S. military veterans with a fake veteran hiring website that hosts malware. Go to Source
What You Need to Know About Next Gen EDR
EDR is still recognized as quite efficient against many of the advanced threats security professionals encounter, but today’s threatscape demands Next-Gen EDR solutions. Go to Source