Android Forums resets passwords after hack
2017-03-24
Only 2.5 per cent of userbase affected. Add Android Forums to the growing list of web properties that have suffered a security breach. One in 40 members of the forumRead More →
WikiLeaks’ Dark Matter documents reveal CIA hacks for Macs and iPhones
2017-03-24
It’s only a couple of weeks since WikiLeaks unleashed the first batch of its Vault 7 CIA documents, revealing the agency’s spying and hacking capabilities. Now the organization has releasedRead More →
SAP Infrastructure Could Be Used to Deploy Ransomware on Enterprise Networks
2017-03-23
A remote code execution flaw in the SAP Windows client opens the door for ransomware attacks targeting enterprises that rely on various SAP products to manage and keep track ofRead More →
eBay Asks Users to Downgrade Security
2017-03-23
Last week, KrebsOnSecurity received an email from eBay. The company wanted me to switch from using a hardware key fob when logging into eBay to receiving a one-time code sentRead More →
Word Document Spreads Macro Malware Targeting Both Windows and macOS
2017-03-23
After last month security researchers discovered the first-ever Word document spreading macro malware on macOS, last week, researchers from Fortinet spotted a Word document that contained macro scripts that distributedRead More →
Malvertising Campaign on Adult Sites Spreads Ramnit Trojan
2017-03-23
Security researchers from Malwarebytes have discovered a new malvertising campaign targeting visitors of several adult websites, spreading the Ramnit trojan and focusing on users from Canada and the UK. AccordingRead More →
Most Industrial Control Systems Get Infected with Malware by Accident
2017-03-23
The vast majority of malware incidents that take place at industrial facilities around the world are just accidental infections, albeit a very small number of targeted attacks have also beenRead More →
LastPass Bugs Allow Malicious Websites to Steal Passwords
2017-03-22
LastPass says it patched one of two separate bugs that affected its Chrome and Firefox browser extensions, which if exploited, would have allowed a third-party to extract passwords from usersRead More →
New Metasploit RFTransceiver extension allows testing IoT sevices
2017-03-22
Metasploit RFTransceiver extension implements the Hardware Bridge API that will allow organizations to test wireless devices operating outside 802.11 spec. Recently we reported the news of the availability of a newRead More →
Chinese Crooks Use Fake Cellular Telephony Towers to Spread Android Malware
2017-03-22
Malware authors in China are using fake base transceiver stations (BTSs), which is equipment usually installed on cellular telephone towers, to send spoofed SMS messages that contain links to AndroidRead More →
