Feds Reveal Hidden Cobra’s Trove of Espionage Tools
The APT’s new cyber-attack tools are laid bare on three-year anniversary of WannaCry.
REvil Ransomware Attack Hits A-List Celeb Law Firm
Cybercriminals used the REvil ransomware to attack a law firm used by the likes of Lady Gaga, Drake and Madonna. Now, they’re threatening to leak the 756 gigabytes of stolen data.
Microsoft Addresses 111 Bugs for May Patch Tuesday
Important-rated EoP flaws make up the bulk of the CVEs; SharePoint continues its critical run with four worrying bugs.
WordPress Page Builder Plugin Bugs Threaten 1 Million Sites with Full Takeover
Severe CSRF to XSS bugs open the door to code execution and complete website compromise.
Adobe Kills 16 Critical Flaws in Acrobat and Reader, Digital Negative SDK
Adobe patched 36 flaws, including critical vulnerabilities in Acrobat and Reader and its DNG Software Development Kit.
Chatbooks Confirms Breach After ‘Shiny Hunters’ Sell Data
Photo print service Chatbooks has disclosed a data breach after customers’ emails, passwords and more were listed for sale on underground forums.
Anubis Malware Upgrade Logs When Victims Look at Their Screens
Threat actors are cooking up new features for the sophisticated banking trojan that targets Google Android apps and devices.
Astaroth’s New Evasion Tactics Make It ‘Painful to Analyze’
The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.
Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.
Millions of Thunderbolt-Equipped Devices Open to ‘ThunderSpy’ Attack
If an attacker can get his hands on a Thunderbolt-equipped device for five minutes, he can launch a new data-stealing attack called “Thunderspy.”