Web Security

Threatpost 

Sneaky Web Tracking Technique Under Heavy Scrutiny by GDPR

June 21, 2018 TH Author browser fingerprinting, Cookies, Data Privacy, EFF, ePrivacy Directive, fingerprinting, GDPR, Privacy, Web Security

Don’t expect tracking methods such as browser fingerprinting to disappear anytime soon, even with GDPR, warns the EFF. READ MORE HERE…

Read more

Threatpost 

Financial Services Sector Rife with Hidden Tunnels

June 21, 2018 TH Author attack technique, data exfiltration, Equifax breach, financial services, Hacks, hidden tunnels, uptick, Vulnerabilities, Web Security

Attackers use the approach to look like legitimate traffic and hide data exfiltration in plain sight. READ MORE HERE…

Read more

Threatpost 

Mylobot Botnet Emerges with Rare Level of Complexity

June 20, 2018 TH Author botnet, complexity, dark web, evasion techniques, Malware, mylobot, Web Security

A new botnet from the Dark Web displays a never-before-seen level of complexity in terms of the sheer breadth of its various tools. READ MORE HERE…

Read more

Threatpost 

Malicious Docker Containers Earn Cryptomining Criminals $90K

June 13, 2018 TH Author Cloud Security, Crypto Miners, cryptojacking, Docker Hub, github, Hacks, Kubernetes, Malicious Docker Containers, Malware, Monero, Web Security

Researchers said over a dozen malicious docker images available on Docker Hub allowed hackers to earn $90,000 in cryptojacking profits. READ MORE HERE…

Read more

Threatpost 

June Patch Tuesday: Microsoft Issues Fixes for DNS, Cortana

June 12, 2018 TH Author Cortana, DNS, june 2018, Microsoft, patch tuesday, Vulnerabilities, Web Security

One of the most serious issues is a critical remote code execution vulnerability in the Windows DNS, which could allow an attacker to take full control of the targeted machine. READ MORE HERE…

Read more

Threatpost 

Android Devices With Misconfigured ADB, a Ripe Target for Cryptojacking Malware

June 12, 2018 TH Author ADB.Miner, ADB.Minor worm, Android Debug Bridge, Android OS, Hacks, IoT, Malware, Mirai, Misconfigured ADB, port 5555, Vulnerabilities, Web Security

Vendors have been shipping Android products with Android Debug Bridge enabled, making them attractive targets for hackers. READ MORE HERE…

Read more

Threatpost 

FBI’s BEC Crackdown Leads To 74 Arrests Globally

June 12, 2018 TH Author BEC, Business Email Compromise, cyber arrest, FBI, Government, Hacks, Nigerian scammer, scam, scammers, Web Security

The operation also resulted in the seizure of nearly $2.4 million and the recovery of about $14 million in fraudulent wire transfers, said the FBI. READ MORE HERE…

Read more

Threatpost 

Researchers Warn of Microsoft Zero-Day RCE Bug

June 1, 2018 TH Author arbitrary code, Exploit, JScript, Microsoft, Microsoft vulnerability, Vulnerabilities, Web Security, Windows, zdi

A Microsoft Windows vulnerability enables remote attackers to execute arbitrary code – and there’s no patch yet. READ MORE HERE…

Read more

Threatpost 

Browser Side-Channel Flaw De-Anonymizes Facebook Data

June 1, 2018 TH Author css3, de-anonymization, Facebook, Facebook Data, Hacks, mix-blend-mode, pixels, Privacy, side-channel, Vulnerabilities, Vulnerability, Web Security

An attacker can pick up the profile picture, username and the “likes” of unsuspecting visitors who find themselves landing on a malicious website. READ MORE HERE…

Read more

Threatpost 

Public Google Groups Leaking Sensitive Data at Thousands of Orgs

June 1, 2018 TH Author Cloud Security, exposed data, google groups, misconfiguration, Privacy, public settings, sensitive information, Web Security

The exposed information includes accounts payable and invoice data, customer support emails, password-recovery mails, links to employee manuals, staffing schedules and other internal resources. READ MORE HERE…

Read more