IPsec VPN Connections with 20 Year Old Protocol Weakness Break By Researchers
A new Bleichenbacher oracle cryptographic attack has been set loose on the world, using a 20-year-old protocol flaw to compromise the Internet Key Exchange (IKE) Read More
Trends
ThreatList: Almost Half of the World’s Top Websites Deemed ‘Risky’
Nearly half of the world’s most popular websites are risky places to visit, according to a fresh analysis of top Alexa sites. Vulnerable code, the Read More
AT&T Faces $224M Legal Challenge Over SIM-Jacking Rings
Cryptocurrency investor and Dogecoin founder Michael Terpin has filed a $223.8 million lawsuit against AT&T, alleging the mobile phone giant turned a blind eye to Read More
Only ATM Heists Set to Accelerate After $13M Break-In
Mere days after the Feds warned banks about an impending ATM cash heist, hackers managed to siphon $13 million from the Pune, India-based Cosmos Bank Read More
ThreatList: Financial-Themed Phishing Lures Sink Hooks into Targets in Q2
The financial sector continued to be a main target of phishing attacks in the second quarter. Kaspersky Lab’s Spam and Phishing in Q2 2018 report Read More
Open MQTT Servers Raise Physical Threats in Smart Homes
Tens of thousands of consumer-grade Internet of Things (IoT) servers have been found wide-open on the internet, allowing cybercriminals to potentially compromise homeowners’ physical security. Read More
BlackIoT Botnet: Can Water Heaters, Washers Bring Down the Power Grid?
We live in a world where washing machines text us when a load of laundry is finished and refrigerators can email grocery lists; but for Read More
Office 365 Phishing Campaign Hides Malicious URLs in SharePoint Files
Researchers have detected a new phishing campaign that mainly targets Office 365 customers to harvest their credentials. The campaign, dubbed “PhishPoint,” is spread to victims Read More
Highly Flexible Marap Malware Enters the Financial Scene
A newly discovered downloader malware has been discovered as part of a new campaign primarily targeting financial institutions. Researchers at Proofpoint said today that the Read More
Google Expands Bug Bounty Program to Battle Abuse Methods
Google is now offering rewards for newly-discovered techniques that bad actors could use to bypass its systems protecting against abuse, fraud and spam. The company Read More