Top

Category: Threats & Malware

Threats and Malware


Threats & Malware, Vulnerabilities

Microsoft detects 77,000 active web shells on a daily basis

February 5, 2020

Via: Security Affairs

According to a report published by Microsoft, the company detects an average of 77,000 active web shells, spreading across 46,000 infected servers, on a daily base. A web shell is a code, often written in typical web development programming languages […]


Malware, Threats & Malware

Australian Shipping Giant Toll Hit by Ransomware

February 4, 2020

Via: Security Week

Owned by Japan Post, Toll has over 40,000 employees and claims to have a global logistics network that spans across 1,200 locations in more than 50 countries. The company said it discovered a piece of ransomware on its systems on […]


Hacker, Threats & Malware

Hackers abused Twitter API to match usernames to phone numbers

February 4, 2020

Via: Security Affairs

On December 24, 2019 the company discovered that its API were exploited by a large network of fake accounts to match Twitter usernames to phone numbers. The company immediately suspended the involved accounts. “On December 24, 2019 we became aware […]


Mobile, Mobile security, Threats & Malware

Apple proposes simple security upgrade for SMS 2FA codes

February 3, 2020

Via: Naked Security

Apple engineers think they’ve come up with a simple way to make SMS two-factor authentication (2FA) one-time codes less susceptible to phishing attacks: agree a common text format so their use can be automated without the need for risky user […]


Threats & Malware, Vulnerabilities

80% of successful breaches are from zero-day exploits

January 31, 2020

Via: Help Net Security

Organizations are not making progress in reducing their endpoint security risk, especially against new and unknown threats, a Ponemon Institute study reveals. 68% IT security professionals say their company experienced one or more endpoint attacks that compromised data assets or […]


Threats & Malware, Vulnerabilities

Devices Still Vulnerable to DMA Attacks Despite Protections

January 30, 2020

Via: Security Week

DMA is designed to allow hardware components or peripheral devices to directly access system memory, independently of the operating system and the CPU. The feature, however, can be abused for malicious purposes by an attacker who has gained access to […]


Hacker, Threats & Malware

Leaked confidential report states United Nations has been hacked

January 30, 2020

Via: Security Affairs

An internal confidential report from the United Nations that was leaked to The New Humanitarian revealed that dozens of servers of the organization were “compromised” at offices in Geneva and Vienna. One of the offices that were hit by a […]


Threats & Malware, Vulnerabilities

Over 200K WordPress sites potentially exposed to hack due to Code Snippets flaw

January 30, 2020

Via: Security Affairs

A high severity cross-site request forgery (CSRF) bug, tracked as CVE-2020-8417, in Code Snippets plugin could be exploited by attackers to take over WordPress sites running vulnerable versions of the Code Snippets plugin. The plugin allows users to execute code […]


Mobile, Mobile security, Threats & Malware, Vulnerabilities

Apple Patches Tens of Vulnerabilities in iOS, macOS Catalina

January 29, 2020

Via: Security Week

A total of 23 vulnerabilities were addressed in iOS 13.3.1 and iPadOS 13.3.1, now rolling out for iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later, and iPod touch 7th generation. The flaws impact components […]


Data loss, Threats & Malware

Facial recognition firm sued for scraping 3 billion faceprints

January 28, 2020

Via: Naked Security

New York facial recognition startup Clearview AI – which has amassed a huge database of more than three billion images scraped from employment sites, news sites, educational sites, and social networks including Facebook, YouTube, Twitter, Instagram and Venmo – is […]