New Kaiji Botnet Targets IoT, Linux Devices
The botnet uses SSH brute-force attacks to infect devices and uses a custom implant written in the Go Language.
Google Android RCE Bug Allows Attacker Full Device Access
The vulnerability is one of 39 affecting various aspects of the mobile OS that the company fixed in a security update this week.
Airplane Hack Exposes Weaknesses of Alert and Avoidance Systems
Researchers warn commercial airplane systems can be spoofed impacting flight safety of nearby aircraft.
Hackers Exploit Critical Flaw in Ghost Platform with Cryptojacking Attack
Hackers targeted Ghost on Sunday, in a cryptocurrency mining attack that caused widespread outages.
Oracle: Unpatched Versions of WebLogic App Server Under Active Attack
CVE-2020-2883 was patched in Oracle’s April 2020 Critical Patch Update – but proof of concept exploit code was published shortly after.
TrickBot Attack Exploits COVID-19 Fears with DocuSign-Themed Ploy
Threat actors are spreading the tricky trojan through fake messages in another opportunistic COVID-19-related campaign, said IBM X-Force.
Microsoft Sway Abused in Office 365 Phishing Attack
The “PerSwaysion” attackers have leveraged a plethora of Microsoft services to compromise at least 150 executives in a highly targeted phishing campaign.