Web Security Archives | Page 3 of 175

Articles targeted at Web App Security, hacks, guides, how to’s and the latest vulnerabilities.

Cisco Warns of Critical Auth-Bypass Security Flaw

25th February 2021Lindsey O Donnell

Cisco also stomped out a critical security flaw affecting its Nexus 3000 Series Switches and Cisco Nexus 9000 Series Switches. Source: Threat [...]

Tax Season Ushers in Quickbooks Data-Theft Spike

24th February 2021Becky Bracken

Quickbooks malware targets tax data for attackers to sell and use in phishing scams. Source: Threat Post – Web Security – Tax [...]

Mozilla Patches Bugs in Firefox, Now Blocks Cross-Site Cookie Tracking

24th February 2021Lindsey O Donnell

Mozilla said its Total Cookie Protection feature in Firefox 86 prevents invasive, cross-site cookie tracking. Source: Threat Post – Web Security – [...]

Microsoft Lures Populate Half of Credential-Swiping Phishing Emails

24th February 2021Lindsey O Donnell

As more organizations migrate to Office 365, cybercriminals are using Outlook, Teams and other Microsoft-themed phishing lures to swipe user credentials. Source: [...]

Daycare Webcam Service Exposes 12,000 User Accounts

23rd February 2021Becky Bracken

NurseryCam suspends service across 40 daycare centers until a security fix is in place. Source: Threat Post – Web Security – Daycare [...]

10K Microsoft Email Users Hit in FedEx Phishing Attack

23rd February 2021Lindsey O Donnell

Microsoft users are receiving emails pretending to be from mail couriers FedEx and DHL Express – but that really steal their credentials. [...]

TDoS Attacks Take Aim at Emergency First-Responder Services

22nd February 2021Tara Seals

The FBI has warned that telephony denial-of-service attacks are taking aim at emergency dispatch centers, which could make it impossible to call for [...]

Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11

22nd February 2021Tara Seals

The threat actors stole data and used Clop’s leaks site to demand money in an extortion scheme, though no ransomware was deployed. [...]

Malformed URL Prefix Phishing Attacks Spike 6,000%

19th February 2021Becky Bracken

Sneaky attackers are flipping backslashes in phishing email URLs to evade protections, researchers said. Source: Threat Post – Web Security – Malformed [...]

Credential-Stuffing Attack Targets Regional Internet Registry

19th February 2021Lindsey O Donnell

RIPE NCC, the regional Internet registry for Europe, West Asia, and the former Soviet Union, said attackers attempted a credential-stuffing attack against its [...]