Archives for April, 2020
The "PerSwaysion" attackers have leveraged a plethora of Microsoft services to compromise at least 150 executives in a highly targeted phishing campaign.
Researchers say the bugs are easy to exploit and will likely be weaponized within a day.
Lessons from Facebook and Google show how to safely scale your environment for security.
Researchers warn that the EventBot Android malware, which targets over 200 financial apps, could be the "next big mobile malware."
The team behind the ransomware, first spotted in late 2014 and typically targeting Russian victims, apologized to victims in a post on GitHub.
The flaws in LearnPress, LearnDash and LifterLMS could have allowed unauthenticated students to change their grades, cheat on tests and gain teacher privileges.
Cisco's IOS XE software for SD-WAN routers has a high-severity insufficient input validation flaw.
Automated attacks on Remote Desktop Protocol accounts are aimed at taking over corporate desktops and infiltrating networks.
Overall bot activity on the web has soared, with a 26 percent growth rate -- attacks on applications, APIs and mobile sites are all on the rise.
A GitLab path traversal flaw could allow attackers to read arbitrary files and remotely execute code.