Experts Bemoan Shortcomings with IoT Security Bill
The infosec community say California’s IoT security bill is “nice,” but doesn’t hit on the important issues. Go to Source
Magecart Group Pinned in Recent British Airways Breach
The Magecart Group has been blamed for the British Airways breach that compromised 380k payment cards. Go to Source
PowerShell Obfuscation Ups the Ante on Antivirus
The development fits a trend that sees threat actors turning to well-known, commodity malware, overcoming its easy detection with ever-better obfuscation methods. Go to Source
Apple Yet to Patch Safari Browser Address Bar Spoofing Flaw
A flaw in Safari – that allows an attacker to spoof websites and trick victims into handing over their credentials – has yet to be patched. Go to Source
Osiris Banking Trojan Displays Modern Malware Innovation
Osiris’ fundamental makeup positions it in the fore of malware trends, despite being based on old source code that’s been knocking around for years. Go to Source
Threatlist: Email Attacks Surge, Targeting Execs
Overall, the number of email fraud attacks per targeted company rose 25 percent from the previous quarter (to 35 on average) and 85 percent from the year-ago quarter. Go to Source
Microsoft Patches Three Actively Exploited Bugs as Part of Patch Tuesday
Microsoft’s September Patch Tuesday release tackles three vulnerabilities actively being exploited in the wild. Go to Source
Bad Actors Sizing Up Systems Via Lightweight Recon Malware
These stealthy downloaders initially infect systems and then only install additional malware on systems of interest. Go to Source
Millions of Records Exposed in Veeam Misconfigured Server
Exposed data included names, emails addresses and IP addresses. Go to Source
Adobe Patches Six Critical Flaws in ColdFusion
Adobe issued fixes for versions of its ColdFusion web development platform – including six critical flaws. Go to Source