Hacks

Threatpost 

Two Bugs in WordPress Tooltipy Plugin Patched

June 13, 2018 TH Author Bug, Cross Site Scripting, Cross-site request forgery, Featured, Hacks, plugin, tooltipy, Vulnerabilities, wordpress, XSS

The bugs include a reflected cross-site scripting glitch and a cross-site request forgery vulnerability. READ MORE HERE…

Read more

Threatpost 

Banco de Chile Wiper Attack Just a Cover for $10M SWIFT Heist

June 13, 2018 TH Author $10 million, buhtrap, chile, financial attack, Flashpoint, Hacks, heist, Malware, mbr killer, SWIFT, Wiper malware

The wiper malware affecting 9,000 workstations and 500 servers inside Chile’s largest financial institution turns out to have been a distraction. READ MORE HERE…

Read more

Threatpost 

Dixons Carphone Cyberattack Targets 5.9M Bank Cards

June 13, 2018 TH Author breach, cyber attack, Data, data breach, Dixons Carphone, GDPR, Hacks, payment card, retail, Vulnerabilities

Dixons Carphone said it discovered a massive cyberattack on its processing systems that targeted millions of payment cards and personal data records. READ MORE HERE…

Read more

Threatpost 

Android Devices With Misconfigured ADB, a Ripe Target for Cryptojacking Malware

June 12, 2018 TH Author ADB.Miner, ADB.Minor worm, Android Debug Bridge, Android OS, Hacks, IoT, Malware, Mirai, Misconfigured ADB, port 5555, Vulnerabilities, Web Security

Vendors have been shipping Android products with Android Debug Bridge enabled, making them attractive targets for hackers. READ MORE HERE…

Read more

Threatpost 

FBI’s BEC Crackdown Leads To 74 Arrests Globally

June 12, 2018 TH Author BEC, Business Email Compromise, cyber arrest, FBI, Government, Hacks, Nigerian scammer, scam, scammers, Web Security

The operation also resulted in the seizure of nearly $2.4 million and the recovery of about $14 million in fraudulent wire transfers, said the FBI. READ MORE HERE…

Read more

Threatpost 

Report: Chinese Hackers Siphon Off ‘Massive’ Amounts of Undersea Military Data

June 11, 2018 TH Author China, Critical Infrastructure, Cryptography, espionage, Featured, Government, Hackers, Hacks, military contractor, military secrets, navy, sea dragon, submarines, undersea

The stolen data included “secret plans to develop a supersonic anti-ship missile for use on U.S. submarines by 2020,” American officials said. READ MORE HERE…

Read more

Threatpost 

Lenovo Finally Patches Ancient BlueBorne Bugs in Tab and Yoga Tablets

June 8, 2018 TH Author Apple, blueborne, Google, Hacks, Lenovo, Lenovo Tab Essential, Microsoft, Mobile Security, patch, Tab Essential, TB-7304F, TB-7304I, TB-7304X, TB-7504F, TB-7504X TB-8704V, TB-8704X, TB-X304F, TB-X304L, TB-X304N, TB-X704A, TB-X704F, TB-X704L, TB-X704V, TB3-X70F, TB3-X70I, TB3-X70L, TB3-X70N, Vulnerabilities, Yoga Tab, YT-X703F, YT-X703L

Lenovo patches several popular tablet models to protect against BlueBorne vulnerabilities first identified in September 2017. READ MORE HERE…

Read more

Threatpost 

Browser Side-Channel Flaw De-Anonymizes Facebook Data

June 1, 2018 TH Author css3, de-anonymization, Facebook, Facebook Data, Hacks, mix-blend-mode, pixels, Privacy, side-channel, Vulnerabilities, Vulnerability, Web Security

An attacker can pick up the profile picture, username and the “likes” of unsuspecting visitors who find themselves landing on a malicious website. READ MORE HERE…

Read more

Threatpost 

Ticketfly, Major Concert Venues Still Offline After Hack

June 1, 2018 TH Author cyber attack, Cyber breach, cyber ransom, Hacks, Ticketfly cyber attack, Web Security

A cyber-attack has brought the websites of both ticket distribution service Ticketfly – and the major venues it services – offline on Thursday. READ MORE HERE…

Read more

Threatpost 

Bug In Git Opens Developer Systems Up to Attack

May 30, 2018 TH Author CVE-2018-11233, CVE-2018-11235, git, github, GitLab, Hacks, Microsoft VSTS, Visual Studio Team Services, Vulnerabilities, Web Security

A serious vulnerability was patched by developers behind Git that closes the door on a flaw that could lead to arbitrary code execution on a developer’s system. READ MORE HERE…

Read more