Separ Malware Plucks Hundreds of Companies’ Credentials in Ongoing Phish
An ongoing phishing campaign is targeting hundreds of businesses to steal their email and browser credentials using a simply – but effective – malware. Go to Source
Apple’s Shazam App Boots Facebook Ads and Other Third-Party SDKs
The music-recognition app that Apple bought for $400 million is removing Facebook Ads, DoubleClick, Facebook Analytics and more. Go to Source
Password Manager Firms Blast Back at ‘Leaky Password’ Revelations
1Password, Dashlane, KeePass and LastPass each downplay what researchers say is a flaw in how the utilities manage memory. Go to Source
GitHub Increases Rewards, Scope For Bug-Bounty Program
GitHub is offering unlimited rewards for critical vulnerabilities – and has added “safe harbor” terms to its bug bounty program. Go to Source
Microsoft to Kill Updates for Legacy OS Using SHA-1
Windows 7 and Windows Server 2008 users are being asked to upgrade their encryption support. Go to Source
ThreatList: APT Adversaries Up the Ante on Speed, Target Telecom
Russia-linked actors need just 18 minutes to go from compromise to lateral movement. Go to Source
New GandCrab Decryptor Unlocks Files of Updated Ransomware
This is the third update to the prolific GandCrab malware within the past year. Go to Source
ATM Jackpotting Malware Hones Its Heist Tools
The WinPot malware takes its cues from slot machines. Go to Source
When Cyberattacks Pack a Physical Punch
Physical security goes hand in hand with cyberdefense. What happens when – as we see all too often – the physical side is overlooked? Go to Source
Ultra-Sneaky Phishing Scam Swipes Facebook Credentials
Researchers warn that the phishing campaign looks “deceptively realistic.” Go to Source