Axis Cameras Riddled With Vulnerabilities Enabling “Full Control”
The IP cameras have a slew of bugs allowing bad actors to control them, add them to a botnet, or render them useless. Go to Source
New Phishing Scam Reels in Netflix Users to TLS-Certified Sites
Researchers are warning of a new Netflix phishing scam that leads to sites with valid TLS certificates. Go to Source
Mylobot Botnet Emerges with Rare Level of Complexity
A new botnet from the Dark Web displays a never-before-seen level of complexity in terms of the sheer breadth of its various tools. Go to Source
“Unbreakable” Smart Lock Tapplock Issues Critical Security Patch
Researchers were able to discover a way to hack the device in less than an hour. Go to Source
Google Home, Chromecast Leak Location Information
The devices don’t require authentication for connections received on a local network; and, HTTP is used to configure or control embedded devices. Go to Source
macOS QuickLook Feature Leaks Data Despite Encrypted Drive
Researchers demonstrate how an encrypted macOS hard drive can still leak unprotected data via the operating system’s Finder and QuickLook feature. Go to Source
22K Open, Vulnerable Containers Found Exposed on the Net
Attackers can remotely access the infrastructure to install, remove or encrypt any application that the affected companies are running in the cloud. Go to Source
Olympic Destroyer Returns to Target Biochemical Labs
The threat actors appear to be in a reconnaissance phase, which could be a prelude to a larger cyber-sabotage attack meant to destroy and paralyze infrastructure. Go to Source
Vermont Librarian Wins Small-Claims Suit Against Equifax
In a David-and-Goliath moment, the 49-year-old librarian has won satisfaction in the wake of its head-spinningly massive 2017 data breach. Go to Source
WannaCry Kill Switch Hero Faces New Charges, But Code Evals Say Little
The Feds say Marcus Hutchins is behind both the UPAS Kit backdoor and the Kronos banking trojan. Go to Source