December 6, 2018 Taking Action to Secure Our IBM Cloud Kubernetes Service Against Recent Kubernetes Security Vulnerabilities 2 min read - IBM Cloud Kubernetes Service is affected by recent vulnerabilities that could allow unauthorized access to Kubernetes and/or trusted user privilege escalation. Here's how to mitigate the risk.
December 6, 2018 KingMiner Maxes Out Windows Server CPUs in Widespread Cryptomining Campaign 2 min read - Researchers detected a cryptomining campaign brute-forcing IIS/SQL Microsoft servers using 100 percent of victims' compute resources.
December 5, 2018 Threat Actors Use Malspam Campaign to Target Italian Users With sLoad Downloader 2 min read - Security researchers identified a malspam campaign targeting Italian users with a variant of the sLoad downloader.
December 5, 2018 Fake Voice Apps Emerge in Google Play Store 2 min read - Researchers spotted a new set of fake voice apps in the Google Play Store and suggested that the activity may signal the beginning of a new mobile botnet.
December 4, 2018 Thanksgiving Spam Campaign Use Obfuscation to Deliver Emotet Banking Trojan < 1 min read - Bad actors recently launched a Thanksgiving-themed spam campaign that used obfuscation to deliver the Emotet banking Trojan.
December 3, 2018 FakeSpy And XLoader Mobile Malware May Come From Yanbian Gang 2 min read - Security researchers revealed that two mobile malware threats, Xloader and FakeSpy, may have been developed and launched by the same cybercriminal group.
December 3, 2018 Marriott Data Breach Impacts Personal Information of up to 500 Million Guests 2 min read - The Marriott data breach could impact the personal information of approximately 500 million guests, including payment card data for about 327 million customers.
November 30, 2018 Brand New Bag? TrickBot Malware Adds POS Data Collection Module 2 min read - Security researchers observed TrickBot malware that utilizes a new capability: point-of-sale (POS) data collection.
November 29, 2018 OceanLotus Watering Hole Campaign Compromises 21 High-Profile Southeast Asian Websites 2 min read - A watering hole campaign that has been active in Southeast Asia since September has compromised at least 21 websites, including government and media domains.
November 29, 2018 Sofacy Group Targets Government Organizations With New Cannon Trojan 2 min read - The Sofacy group recently targeted several government organizations around the world with the new Cannon Trojan.