Cisco Systems’ WebEx conferencing platform has a critical vulnerability inside its recording function, which creates possibilities for remote code execution scenarios. The bug can be exploited if attackers are able to convince users to open a file … [Read more...] about Cisco Systems Webex Flaws Allows Remote Users To Execute Code
Hacking
Authorities Close Down Webstressor.org
‘Operation Power Off’, law enforcement efforts in the U.S., U.K., the Netherlands and elsewhere, have taken down the DDoS-for-hire webstresser.org (previously webstresser.co) website. At its takedown, there were apparently 136,000 registered users … [Read more...] about Authorities Close Down Webstressor.org
Drupal Release Patches for Drupalgeddon2 Vulnerability
Drupal has just issued its third flaw fix in a month, supplementing its previous patch for Drupalgeddon 2 with an unscheduled security update. After releasing a patch for a critical vulnerability in late March, Drupal is now having to do it all over … [Read more...] about Drupal Release Patches for Drupalgeddon2 Vulnerability
Hackers Modify Code in AOL Advertising Platform
Trend Micro researchers recently found that hackers had gained entry to, and then modified code, in AOL’s advertising platform to mine Monero cryptocurrency. 500 other websites are also thought to be infected with the same CoinHive cryptocurrency … [Read more...] about Hackers Modify Code in AOL Advertising Platform
Hacker who Stole a Billion Dollars via Carbanak and Cobalt Malware Arrested
The leader of a cybercriminal gang who spearheaded the Carbanak and Cobalt malware attacks that targeted over 100 financial institutions worldwide has been arrested in Alicante, Spain. The Spanish National Police worked in partnership with Europol, … [Read more...] about Hacker who Stole a Billion Dollars via Carbanak and Cobalt Malware Arrested
Russian Dragonfly Intruding on US Infrastructure
The Department of Homeland Security (DHS) and the FBI warned earlier this month that the “Dragonfly” hackers linked to the Russian government are engaged in a “multi-stage intrusion campaign” targeting critical U.S. infrastructure, including the … [Read more...] about Russian Dragonfly Intruding on US Infrastructure
880,000 Orbitz Customers Hit by Attack
Orbitz, the travel booking platform, said this week that its platform was likely hacked during certain times in 2016 and 2017, potentially affecting 880,0000 customers who made bookings on the site during that period. "We deeply regret the … [Read more...] about 880,000 Orbitz Customers Hit by Attack
Slingshot Targets Latvian-made Routers for Undercover Reconnaisance
Earlier this month, Kaspersky Lab researchers disclosed malware code-named Slingshot so stealthy it was able to stay hidden for six years despite having infected at least 100 computers globally. The campaign specifically targeted breached … [Read more...] about Slingshot Targets Latvian-made Routers for Undercover Reconnaisance
North Korea Uses Zero-Day Exploit to Target Governments
A group of hackers from North Korea dubbed APT37 (Reaper) have recently expanded their operations in scope and sophistication, according to cybersecurity firm FireEye. This follows their recent use of an Adobe Flash Zero-Day exploit, which FireEye … [Read more...] about North Korea Uses Zero-Day Exploit to Target Governments
U.S. Administration Levies Sanctions on Russia for Cyber Attacks
On Thursday, the U.S. stepped up sanctions on Russian intelligence for its attempt to interfere in the U.S. 2016 elections, and accused Russia of coordinating a far-reaching cyber-assault on its energy, nuclear, water and “critical manufacturing” … [Read more...] about U.S. Administration Levies Sanctions on Russia for Cyber Attacks