Pair of Cisco Bugs, One Unpatched, Affect Millions of Devices
The two high-severity bugs impact a wide array of enterprise, military and government networks. Go to Source
Twitter Leaks Apple iOS Users’ Location Data to Ad Partner
A Twitter glitch “inadvertently” leaked iOS users’ location data to an unnamed partner. Go to Source
ScarCruft APT Adds Bluetooth Harvester to its Malware Bag of Tricks
In its latest observed campaign, there were also overlaps in victimology with the DarkHotel APT. Go to Source
ThreatList: Top 5 Most Dangerous Attachment Types
From ZIP attachments spreading Gandcrab, to DOC files distributing Trickbot, researchers tracked five widescale spam campaigns in 2019 that have made use of malicious attachments. Go to Source
FIN7 Linked to Escalating Active Exploits for Microsoft SharePoint Bug
Using a bug patched in March, the attacks are starting to ramp up worldwide. Go to Source
News Wrap: Facebook Regulation, Verizon DBIR, Hidden Airbnb Cameras
From a creepy Airbnb incident to Verizon’s Data Breach Investigations Report, Threatpost editors break down the top privacy and security stories for the week ended May 10. Go to Source
The WannaCry Security Legacy and What’s to Come
The WannaCry attack proved pivotal, changing the way organizations go about securing their environments. Go to Source
Nvidia Warns Windows Gamers on GPU Driver Flaws
Nvidia has patched three vulnerabilities in its Windows GPU display driver that could enable information disclosure, denial of service and privilege escalation. Go to Source
ThreatList: Nigerian Cybercrime Surged 54 Percent in 2018
Nigerian scam groups launched even more attacks in 2018 – and used more complex types of malware to reach more victims. Go to Source
‘Unhackable’ Biometric USB Offers Up Passwords in Plain Text
A simple Wireshark analysis was enough to subvert the gadget, which uses iris identification to protect the drive. Go to Source