Threatpost for B2B

Syndicate content
The First Stop For Security News
Updated: 23 hours 36 min ago

Miniduke APT Campaign Returns with New Targets, Hacking Tools

Thu, 07/03/2014 - 13:00
The Miniduke APT campaign is back in business with new tools to steal data from new targets in an assortment of countries from all over the globe.

Brazilian Payment Fraud Campaign Targets Boletos, Steals Millions

Thu, 07/03/2014 - 10:04
A fraud ring targeting Brazil's Boleto payment method has pulled off hundreds of thousands of bogus transactions valued at $3.75 billion.

Cisco Patches Hardcoded SSH Key Vulnerability in UCM

Thu, 07/03/2014 - 09:52
The Cisco Unified Communications Domain Manager contains a default private SSH key that could allow an attacker to run arbitrary code on vulnerable installations. The bug is about as serious as they come, giving remote, unauthenticated attackers access to affected machines with the rights of a root user.

FireEye Uncovers Android Remote Access Malware

Wed, 07/02/2014 - 16:26
A new piece of Android malware leaks data, steals banking credentials, hijacks bank accounts, and serves as a remote access tool.

Critical Vulnerability in WordPress Plugin Could Allow Site Takeover

Wed, 07/02/2014 - 11:51
Wordpress users that have the MailPoet newsletter plugin installed are being cautioned to upgrade immediately.

Microsoft Says ‘Technical Error’ Led to Legitimate No-IP Customers Losing Service

Wed, 07/02/2014 - 09:59
Microsoft admits that it made a technical mistake as part of its No-IP.com malware operation takedown, errors that resulted in legitimate customers of the site losing service.

EFF Sues NSA, ODNI Over Zero-Day Disclosure Processes

Wed, 07/02/2014 - 08:00
The EFF filed a FOIA lawsuit against the NSA and ODNI looking for more information on the government's use and disclosure of zero-day vulnerabilities.