Financial Services Sector Rife with Hidden Tunnels
Attackers use the approach to look like legitimate traffic and hide data exfiltration in plain sight. READ MORE HERE…
Hacks
New Phishing Scam Reels in Netflix Users to TLS-Certified Sites
Researchers are warning of a new Netflix phishing scam that leads to sites with valid TLS certificates. READ MORE HERE…
APT15 Pokes Its Head Out With Upgraded MirageFox RAT
This is the first evidence of the China-linked threat actor’s activity since hacked the U.K. government and military in 2017 (which wasn’t made public until 2018). READ MORE HERE…
Olympic Destroyer Returns to Target Biochemical Labs
The threat actors appear to be in a reconnaissance phase, which could be a prelude to a larger cyber-sabotage attack meant to destroy and paralyze infrastructure. READ MORE HERE…
“Unbreakable” Smart Lock Tapplock Issues Critical Security Patch
Researchers were able to discover a way to hack the device in less than an hour. READ MORE HERE…
macOS QuickLook Feature Leaks Data Despite Encrypted Drive
Researchers demonstrate how an encrypted macOS hard drive can still leak unprotected data via the operating system’s Finder and QuickLook feature. READ MORE HERE…
Axis Cameras Riddled With Vulnerabilities Enabling “Full Control”
The IP cameras have a slew of bugs allowing bad actors to control them, add them to a botnet, or render them useless. READ MORE HERE…
Vermont Librarian Wins Small-Claims Suit Against Equifax
In a David-and-Goliath moment, the 49-year-old librarian has won satisfaction in the wake of its head-spinningly massive 2017 data breach. READ MORE HERE…
U.S. Intelligence Cautions World Cup Travelers on Mobile Use
World Cup travelers should leave their mobile phones, laptops and tablets behind. READ MORE HERE…
Malicious Docker Containers Earn Cryptomining Criminals $90K
Researchers said over a dozen malicious docker images available on Docker Hub allowed hackers to earn $90,000 in cryptojacking profits. READ MORE HERE…