July 29, 2019 Weekly Security News Roundup: US Company Selling Fully Working BlueKeep Exploit 3 min read - Last week in security news, a U.S. company announced that its penetration tool had incorporated a fully working exploit for the BlueKeep vulnerability.
July 24, 2019 Attack Campaign Targets Exposed Elasticsearch Servers With DDoS Botnet 2 min read - Researchers spotted an attack campaign that is seeking out publicly exposed Elasticsearch databases and servers to deliver a DDoS botnet.
July 23, 2019 Phishers Use Fake Office 365 Alerts to Compromise Admin Accounts 2 min read - Phishers are launching campaigns that leverage fake Office 365 alerts to compromise administrator accounts.
July 22, 2019 MegaCortex Ransomware Uses Aggressive Ransom Notes to Coerce Payments 2 min read - Researchers analyzed a sample of the MegaCortex ransomware family that used an aggressive ransom note to bully victims into meeting their demands.
July 22, 2019 Fake FaceApp Infects Users With MobiDash Malware 2 min read - Amid warnings about the security risks of the "FaceApp Challege," a new threat has emerged: MobiDash malware piggybacking on fake FaceApp installs.
July 22, 2019 Weekly Security News Roundup: Vulnerability Exposed Instagram Attacks to Hijacking 3 min read - Last week in security news, a researcher uncovered a critical vulnerability that allowed attackers to hijack any Instagram account within 10 minutes.
July 17, 2019 SWEED Threat Actor Uses Typosquatting, UAC Bypasses to Distribute Agent Tesla < 1 min read - Researchers observed a threat actor known as SWEED using typosquatting and UAC bypassing techniques to distribute Agent Tesla and other malware.
July 17, 2019 UK Government Urges Organizations to Defend Against DNS Hijacking 2 min read - The U.K. National Cyber Security Centre (NCSC) published an alert urging organizations to implement measures to mitigate against DNS hijacking.
July 16, 2019 Telegram, WhatsApp Vulnerability Exposes Media Files to Tampering 2 min read - Symantec discovered a Telegram and WhatsApp vulnerability that could enable digital attackers to tamper with media files.
July 15, 2019 Digital Attackers Now Using 16Shop Phishing Kit to Target Amazon Users < 1 min read - Digital attackers are now abusing the 16Shop phishing kit to target Amazon users for the purpose of stealing access to their accounts.