ThreatList: Amidst Data Breaches, Account Creation Fraud Soars in 2019
Cybercrooks are using bots to create synthetic digital identities, to carry out various types of fraud. Go to Source
Adobe Fixes Critical Flash Player Code Execution Flaws
Overall Adobe’s September security update addressed vulnerabilities in Flash Player and Application Manager. Go to Source
U.S. Manufacturer Most Recent Target of LokiBot Malspam Campaign
A large U.S. manufacturing company is the latest organization to be targeted with the LokiBot trojan – although this most recent campaign harbored some bizarre red flags. Go to Source
PsiXBot Adds PornModule, Google DNS Service to Its Arsenal
Porn-recording feature will likely be used for extortion. Go to Source
Stealth Falcon Targets Middle East with Windows BITS Feature
Cyberespionage attackers have ditched their PowerShell backdoor in favor of the Windows BITS ‘notification’ feature. Go to Source
Telnet Backdoor Opens More Than 1M IoT Radios to Hijack
Attackers can drop malware, add the device to a botnet or send their own audio streams to compromised devices. Go to Source
Wikipedia, World of Warcraft Downed By Weekend DDoS Attacks
Wikipedia and World of Warcraft Classic users reported global outages over the weekend in targeted – and connected – DDoS attacks. Go to Source
Critical Exim Flaw Opens Millions of Servers to Takeover
A critical vulnerability found in Exim servers could enable a remote, unauthenticated attacker to execute arbitrary code with root privileges. Go to Source
ThreatList: Police Use of Facial Recognition is Just Fine, Say Most Americans
A survey by Pew Research Center finds that Americans support use of facial recognition by law enforcement , but not by tech or advertising companies. Go to Source
China’s APT3 Pilfers Cyberweapons from the NSA
Large portions of APT3’s remote code-execution package were likely reverse-engineered from prior attack artifacts. Go to Source