Web Security Archives | CW Enterprises

Articles targeted at Web App Security, hacks, guides, how to’s and the latest vulnerabilities.

Unique Malspam Campaign Uses MS Publisher to Drop a RAT on Banks

17th August 2018Lindsey O Donnell

A new email campaign includes a Microsoft Office Publisher file with malicious URLs leading to the FlawedAmmyy RAT. Source: Threat Post – [...]

ThreatList: Almost Half of the World’s Top Websites Deemed ‘Risky’

17th August 2018Tara Seals

An analysis of the world’s most-visited websites shows that vulnerable software, too much active content and large amounts of code execution open visitors [...]

Highly Flexible Marap Malware Enters the Financial Scene

16th August 2018Lindsey O Donnell

A new downloader, which has been spotted in an array of recent email campaigns, uses anti-analysis techniques and calls in a system fingerprinting [...]

Google Expands Bug-Bounty Program to Battle Abuse Methods

16th August 2018Lindsey O Donnell

The program focuses on potential abuse methods across Google’s product-specific channels like Google+, Youtube, Gmail and Blogger. Source: Threat Post – Web [...]

Google Chrome Bug Opens Access to Private Facebook Information

16th August 2018Tara Seals

The method could be used to deduce the age, sex, likes or the location history of a user – essentially, the attacker can [...]

Microsoft Cortana Flaw Allows Web Browsing on Locked PCs

15th August 2018Lindsey O Donnell

The tricky Cortana flaw, CVE-2018-8253, was addressed by Microsoft during Patch Tuesday. Source: Threat Post – Web Security – Microsoft Cortana Flaw [...]

Office 365 Phishing Campaign Hides Malicious URLs in SharePoint Files

15th August 2018Lindsey O Donnell

Researchers say the “PhishPoint” tactic has already impacted 10 percent of Office 365 users globally. Source: Threat Post – Web Security – [...]

ThreatList: Financial-Themed Phishing Hooks Targets in Q2

15th August 2018Tara Seals

In addition to traditional phishing, fraudulent cryptocurrency offers pose a rising trend. Source: Threat Post – Web Security – ThreatList: Financial-Themed Phishing [...]

Patch Tuesday: Microsoft Addresses Two Zero-Days in 60-Flaw Roundup

14th August 2018Lindsey O Donnell

Microsoft rolled out 60 patches for its Patch Tuesday release, impacting 19 critical flaws and 39 important flaws. Source: Threat Post – [...]

Victims Lose Access to Thousands of Photos as Instagram Hack Spreads

14th August 2018Tara Seals

In a probable quest to build a botnet, someone is hacking Instagram accounts, deleting handles, avatars and personal details, and linking them to [...]