Threat intelligence

January 19, 2021
Published by Derek B. Johnson at January 19, 2021
Categories

7 vulnerabilities in popular DNS forwarding software open door to range of attacks

Researchers at JSOF have discovered distinct spoofing and buffer overflow vulnerabilities associated with DNSMasq, used in networking devices to cache and forward Domain Name System requests.

The post 7 vulnerabilities in popular DNS forwarding software open door to range of attacks appeared first on SC Media.

Do you like it?0
Read more
January 14, 2021
Published by Steve Zurier at January 14, 2021
Categories

Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities

Google’s Project Zero this week introduced a six-part series that offers an analysis of four zero-day vulnerabilities on Windows and Chrome, and known-day Android exploits it found during the team’s extensive research last year.

The post Google: Attacker ‘likely’ had access to Android zero-day vulnerabilities appeared first on SC Media.

Do you like it?0
Read more
January 11, 2021
Published by Steve Zurier at January 11, 2021
Categories

Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group

While researchers may want to invest time and energy towards attributing the latest high-profile attack to a particular adversary, more productive is the ability to see similarities in the underlying techniques employed in the attack were to prior attacks.

The post Researchers see links between SolarWinds Sunburst malware and Russian Turla APT group appeared first on SC Media.

Do you like it?0
Read more
January 5, 2021
Published by Steve Zurier at January 5, 2021
Categories

Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux

A new remote access trojan (RAT) lures cryptocurrency users to download trojanized apps by promoting the apps in dedicated online forums and on social media.

The post Thousands infected by trojan that targets cryptocurrency users on Windows, Mac and Linux appeared first on SC Media.

Do you like it?0
Read more
December 31, 2020
Published by Steve Zurier at December 31, 2020
Categories

Financial services industry hit with tens of millions of attacks per day

The report found that the bad threat actors primarily used common attack paths, such as SQL injection, local file inclusion and cross-site scripting.

The post Financial services industry hit with tens of millions of attacks per day appeared first on SC Media.

Do you like it?0
Read more
December 30, 2020
Published by Joe Uchill at December 30, 2020
Categories

A new year, a new administration: Doors open in 2021 for public-private cooperation

While much is speculative, a few aspects of how the government’s information security interactions with the private sector have begun to crystalize.

The post A new year, a new administration: Doors open in 2021 for public-private cooperation appeared first on SC Media.

Do you like it?0
Read more
December 29, 2020
Published by SC Staff at December 29, 2020
Categories

2021 threat predictions: Bad actors that honed their craft with COVID are ready to go big

Cyber experts expect more sophisticated attacks to come – with ransomware and phishing continuing at a steady, but more advanced clip, and emerging threats tied to deepfakes and 5G beginning to show impact.

The post 2021 threat predictions: Bad actors that honed their craft with COVID are ready to go big appeared first on SC Media.

Do you like it?0
Read more
December 24, 2020
Published by Steve Zurier at December 24, 2020
Categories

DDoS attacks hit Citrix Application Delivery Controllers, hindering customer performance

The attacker or bots can overwhelm the Citrix ADC Datagram Transport Layer Security (DTLS) network throughput, potentially leading to outbound bandwidth exhaustion.

The post DDoS attacks hit Citrix Application Delivery Controllers, hindering customer performance appeared first on SC Media.

Do you like it?0
Read more