Threat intelligence

January 19, 2021

7 vulnerabilities in popular DNS forwarding software open door to range of attacks

Researchers at JSOF have discovered distinct spoofing and buffer overflow vulnerabilities associated with DNSMasq, used in networking devices to cache and forward Domain Name System requests.

The post 7 vulnerabilities in popular DNS forwarding software open door to range of attacks appeared first on SC Media.

January 14, 2021

Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities

Google’s Project Zero this week introduced a six-part series that offers an analysis of four zero-day vulnerabilities on Windows and Chrome, and known-day Android exploits it found during the team’s extensive research last year.

The post Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities appeared first on SC Media.

January 11, 2021

Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group

While researchers may want to invest time and energy towards attributing the latest high-profile attack to a particular adversary, more productive is the ability to see similarities in the underlying techniques employed in the attack were to prior attacks.

The post Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group appeared first on SC Media.

January 5, 2021

Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux

A new remote access trojan (RAT) lures cryptocurrency users to download trojanized apps by promoting the apps in dedicated online forums and on social media.

The post Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux appeared first on SC Media.

December 31, 2020

Financial services industry hit with tens of millions of attacks per day

The report found that the bad threat actors primarily used common attack paths, such as SQL injection, local file inclusion and cross-site scripting.

The post Financial services industry hit with tens of millions of attacks per day appeared first on SC Media.

December 30, 2020

A new year, a new administration: Doors open in 2021 for public-private cooperation

While much is speculative, a few aspects of how the government’s information security interactions with the private sector have begun to crystalize.

The post A new year, a new administration: Doors open in 2021 for public-private cooperation appeared first on SC Media.

December 29, 2020

2021 threat predictions: Bad actors that honed their craft with COVID are ready to go big

Cyber experts expect more sophisticated attacks to come – with ransomware and phishing continuing at a steady, but more advanced clip, and emerging threats tied to deepfakes and 5G beginning to show impact.

The post 2021 threat predictions: Bad actors that honed their craft with COVID are ready to go big appeared first on SC Media.

December 24, 2020

DDoS attacks hit Citrix Application Delivery Controllers, hindering customer performance

The attacker or bots can overwhelm the Citrix ADC Datagram Transport Layer Security (DTLS) network throughput, potentially leading to outbound bandwidth exhaustion.

The post DDoS attacks hit Citrix Application Delivery Controllers, hindering customer performance appeared first on SC Media.