New Loader Variant Behind Widespread Malware Attacks
Malware infection technique called TxHollower gets updated with stealthy features. Go to Source
Update: VLC Media Player Plagued By Unpatched Critical RCE Flaw
A patch does not yet exist for a critical buffer overflow vulnerability in VLC Media Player that could enable remote code execution. Go to Source
Popular File-Sharing Service WeTransfer Used in Malicious Spam Campaigns
WeTransfer is being used by hackers to circumvent email gateways looking to zap malicious links. Go to Source
ThreatList: Human Error is Behind One Quarter of Data Breaches
Meanwhile, remediation times are ballooning to a year or more in the case of malicious attacks, according to Ponemon Institute. Go to Source
Unique Monokle Android Spyware Self-Signs Certificates
Researchers have linked the surveillance tool to a Russian tech firm that has been sanctioned for interfering with the 2016 U.S. presidential election. Go to Source
Protecting Against Ransomware Attacks: A Checklist
In the second of a two part series discussing recent ransomware attacks against municipalities, Shawn Taylor with Forescout talks about how cities can protect themselves. Go to Source
Citrix Confirms Password-Spraying Heist of Reams of Internal IP
Security experts say the attack stemmed from weak cybersecurity controls. Go to Source
WordPress Plugin Flaws Exploited in Ongoing Malvertising Campaign
An ongoing malvertising campaign is exploiting WordPress plugin vulnerabilities to redirect website visitors to malicious pages. Go to Source
Malware-Loader ‘Brushaloader’ Grows More Menacing
Dropper malware become more popular as hackers turn to more quiet attack techniques to avoid detection. Go to Source
Popular Samsung, LG Android Phones Open to ‘Spearphone’ Eavesdropping
A Spearphone attacker can use the accelerometer in LG and Samsung phones to remotely eavesdrop on any audio that’s played on speakerphone, including calls, music and voice assistant responses. Go to Source