Spearphishing Attack Spoofs Microsoft.com to Target 200M Office 365 Users
It remains unknown as to why Microsoft is allowing a spoof of their very own domain against their own email infrastructure.
‘Amnesia:33’ TCP/IP Flaws Affect Millions of IoT Devices
A new set of vulnerabilities has been discovered affecting millions of routers and IoT and OT devices from more than 150 vendors, new research warns.
NSA Warns: Patched VMware Bug Under Active Attack
Feds are warning that adversaries are exploiting a weeks-old bug in VMware’s Workspace One Access and VMware Identity Manager products.
Rana Android Malware Updates Allow WhatsApp, Telegram IM Snooping
The developers behind the Android malware have a new variant that spies on instant messages in WhatsApp, Telegram, Skype and more.
Europol Warns COVID-19 Vaccine Rollout Vulnerable to Fraud, Theft
With the promise of a widely available COVID-19 vaccine on the horizon, Europol, the European Union’s law-enforcement agency, has issued a warning about the rise of vaccine-related Dark Web activity. The agency joins a chorus of security professionals that have concerns about widespread attacks on the COVID-19 vaccine rollout. The warning comes after Europol discovered…
‘Free’ Cyberpunk 2077 Downloads Lead to Data Harvesting
The hotly anticipated game — featuring a digital Keanu Reeves as a major character — is being used as a lure for cyberattacks.
Insider Report: Healthcare Security Woes Balloon in COVID-Era
As hackers put a bullseye on healthcare, Threatpost spotlights how hospitals, researchers and patients have been affected and how the sector is bolstering their cyber defenses.
Chinese Breakthrough in Quantum Computing a Warning for Security Teams
China joins Google in claiming quantum supremacy with new technology, ratcheting up RSA decryption concerns.
Healthcare in Crisis: Diagnosing Cybersecurity Shortcomings in Unprecedented Times
In the early fog of the COVID-19 pandemic, cybersecurity took a back seat to keeping patients alive. Lost in the chaos was IT security.
QNAP High-Severity Flaws Plague NAS Systems
The high-severity cross-site scripting flaws could allow remote-code injection on QNAP NAS systems.