U.S. DoD Weapons Programs Lack ‘Key’ Cybersecurity Measures
The lack of cybersecurity requirements in weapons contracts from the Department of Defense opens the door for dangerous cyberattacks.
Source: Threat Post
[...]
Web Security
Articles targeted at Web App Security, hacks, guides, how to’s and the latest vulnerabilities.
WordPress Injection Anchors Widespread Malware Campaign
Website admins should patch all plugins, WordPress itself and back-end servers as soon as possible.
Source: Threat Post – Web Security –
[...]
Massive Supply-Chain Cyberattack Breaches Several Airlines
The cyberattack on SITA, a nearly ubiquitous airline service provider, has compromised frequent-flyer data across many carriers.
Source: Threat Post – Web
[...]
D-Link, IoT Devices Under Attack By Tor-Based Gafgyt Variant
A new variant of the Gafgyt botnet – that’s actively targeting vulnerable D-Link and Internet of Things devices – is the first variant
[...]
Microsoft, FireEye Unmask More Malware Linked to SolarWinds Attackers
Researchers with Microsoft and FireEye found three new malware families, which they said are used by the threat group behind the SolarWinds attack.
[...]
Cyberattackers Target Top Russian Cybercrime Forums
Elite Russian forums for cybercriminals have been hacked in a string of breaches, leaving hackers edgy and worried about law enforcement.
[...]
CISA Orders Federal Agencies to Patch Exchange Servers
Espionage attacks exploiting the just-patched remote code-execution security bugs in Microsoft Exchange servers are quickly spreading.
Source: Threat Post – Web Security
[...]
COVID-19 Vaccine Spear-Phishing Attacks Jump 26 Percent
Cybercriminals are using the COVID-19 vaccine to steal Microsoft credentials, infect systems with malware and bilk victims out of hundreds of dollars.
[...]
Google Patches Actively-Exploited Flaw in Chrome Browser
A flaw (CVE-2021-21166) in the Audio component of Google Chrome is fixed in a new update being pushed out to Windows, Mac and
[...]
Malaysia Air Downplays Frequent-Flyer Program Data Breach
A third-party IT provider exposed valuable airline data that experts say could be a goldmine for cybercriminals.
Source: Threat Post – Web
[...]