Web Cache Deception Attack
2017-02-28
A few words about caching and reactions Websites often tend to use web cache functionality (for example over a CDN, a load balancer, or simply a reverse proxy). The purposeRead More →
The Necurs botnet is evolving, now includes a DDoS module
2017-02-28
The Necurs botnet is evolving and recently the experts at BitSight’s Anubis Labs discovered that it was improved to launch DDoS attacks. The Necurs botnet continues to evolve and recentlyRead More →
DNS attacks: How they try to direct you to fake pages
2017-02-27
DNS servers are essential to the normal functioning of the internet as we know and love it, but they tend to go unnoticed by most users. At least, that is, until someRead More →
Stolen EHR data is flooding criminal underground communities in the Deep Web
2017-02-27
EHR data are precious commodities in the cyber criminal underground because of the lack of cyber security of healthcare industry. Electronic health record databases are becoming the most precious commoditiesRead More →
Google Sends E2EMail Encrypted Email Code into Open Source
2017-02-27
Google wants everyone to be able to easily encrypt data. Google has always been good about sharing the wealth of information it has, including when it comes to donating itRead More →
New RaaS Portal Preparing to Spread Unlock26 Ransomware
2017-02-27
A new b -as-a-Service (RaaS) portal named Dot-Ransomware is behind the Unlock26 ransomware discovered this past week. First spotted two days ago, this ransomware operation is quite unique as itRead More →
Roberts Hawaii tour company hacked, credit card and personal info exposed
2017-02-27
The tour company Roberts Hawaii is warning its customers about a security breach that may affect people who purchased tours and other services on its website. Did you visit theRead More →
Vulnerability Deep Dive – Ichitaro Office Excel File Code Execution Vulnerability
2017-02-25
Vulnerabilities in word processing and office productivity suites are useful targets for exploitation by threat actors. Users frequently encounter file types used by these software suites in their day toRead More →
Database Ransom Attacks Have Now Hit MySQL Servers
2017-02-25
After the ransacking of MongoDB, ElasticSearch, Hadoop, and CouchDB servers, attackers are now hijacking hundreds of MySQL databases, deleting their content, and leaving a ransom note behind asking for aRead More →
iPhone Robbers Try to iPhish Victims
2017-02-25
In another strange tale from the kinetic-attack-meets-cyberattack department, earlier this week I heard from a loyal reader in Brazil whose wife was recently mugged by three robbers who nabbed her iPhone.Read More →
