QNAP High-Severity Flaws Plague NAS Systems
The high-severity cross-site scripting flaws could allow remote-code injection on QNAP NAS systems.
RansomExx Ransomware Gang Dumps Stolen Embraer Data: Report
The group published files stolen from the Brazilian aircraft manufacturer in a ransomware attack last month.
Researchers call for a determined path to cybersecurity
Despite our continuous research efforts to detect cyberattacks and enable defense, we often feel that we, as members of a global community, are failing to achieve an adequate level of cybersecurity. This is threatening the proper development and use of information technologies and digital assets, and as a consequence, most of society’s current and future…
Making Sense of the Security Sensor Landscape
Chris Calvert of Respond Software (now part of FireEye) outlines the challenges that reduce the efficacy of network security sensors.
High-Severity Chrome Bugs Allow Browser Hacks
Desktop versions of the browser received a total of eight fixes, half rated high-severity.
Novel Online Shopping Malware Hides in Social-Media Buttons
The skimmer steals credit-card data, using steganography to hide in plain sight in seemingly benign images.
VMware Rolls a Fix for Formerly Critical Zero-Day Bug
VMware has issued a full patch and revised the severity level of the NSA-reported vulnerability to “important.”
Vancouver Metro Disrupted by Egregor Ransomware
The attack, which prevented Translink users from using their metro cards or buying tickets at kiosks, is the second from the prolific threat group just this week.
The chronicles of Emotet
More than six years have passed since the banking Trojan Emotet was first detected. During this time it has repeatedly mutated, changed direction, acquired partners, picked up modules, and generally been the cause of high-profile incidents and multimillion-dollar losses. The malware is still in fine fettle, and remains one of the most potent cybersecurity threats…
Kmart Latest Victim of Egregor Ransomware – Report
The struggling retailer’s back-end services have been impacted, according to a report, just in time for the holidays.