WordPress Websites Hit by a Barrage of Attacks
Attackers exploit the vulnerability of the Yuzo Related Posts plugin.Email automation service Mailgun has added a long list of companies that were victims
[...]
attacks
New 'HOPLIGHT' Malware Appears in Latest North Korean Attacks, Say DHS, FBI
Source: Dark Reading – Threat Intelligence – New ‘HOPLIGHT’ Malware Appears in Latest North Korean Attacks, Say DHS, FBI
[...]
Credential-Stuffing Attacks Behind 30 Billion Login Attempts in 2018
Using e-mail addresses and passwords from compromised sites, attackers most often targeted retail sites, video-streaming services, and entertainment companies, according to Akamai.
[...]
MikroTik RouterOS Vulnerability Allows let Attackers Perform DOS Attacks
A Serious vulnerability that discovered in MikroTik RouterOS allows attackers to perform DoS attack on the vulnerable router that cause the device to
[...]
ThreatList: Half of All Attacks Aim at Supply Chain
Attackers these days want to ‘own’ your entire system, including partners and suppliers.
Source: Threat Post – Web Security – ThreatList: Half
[...]
Lazarus Group Widens Tactics in Cryptocurrency Attacks
MacOS users, as well as Windows, are in the cross-hairs, especially those based in South Korea.
Source: Threat Post – Web Security
[...]
Bugs in Grandstream Gear Lay Open SMBs to Range of Attacks
Attackers can remotely compromise multiple network devices (IP PBX, conferencing gear and IP phones), installing malware and eavesdropping via video and audio functions.
[...]
MyPillow and Amerisleep Targeted in Magecart Group Attacks
In both breaches of MyPillow and Amerisleep, the customers whose payment information was potentially stolen were not informed.
Source: Threat Post – Web
[...]
Stealing Corporate Funds Still Top Goal of Messaging Attacks
Cybercriminals focus on collecting credentials, blackmailing users with fake sextortion scams, and convincing privileged employees to transfer cash. The latter still causes the
[...]
Threatlist: IMAP-Based Attacks Compromising Accounts at ‘Unprecedented Scale’
Attackers are increasingly targeting insecure legacy protocols, like IMAP, to avoid running into multi-factor authentication in password-spraying campaigns.
Source: Threat Post –
[...]