‘Dark Herring’ Billing Malware Swims onto 105M Android Devices

The mobile malware heisted hundreds of millions of dollars from unsuspecting users, thanks to 470 different well-crafted malicious app in Google Play. Nearly 500 malicious apps lurking on the Google…

Linux Bug in All Major Distros: ‘An Attacker’s Dream Come True’

The 12-year-old flaw in the sudo-like polkit’s pkexec tool, found in all major Linux distributions, is likely to be exploited in the wild within days. Every major Linux distribution has…

How a Cyber Criminal Justice System Resolves Disputes

Security Intelligence – Security Intelligence – How a Cyber Criminal Justice System Resolves Disputes The darknet community uses its own underground justice system to solve disputes that arise between one…

Linux Servers at Risk of RCE Due to Critical CWP Bugs

The two flaws in Control Web Panel – a popular web hosting management software used by 200K+ servers – allow code execution as root on Linux servers. Researchers have discovered…

Real Big Phish: Mobile Phishing & Managing User Fallibility

Phishing is more successful than ever. Daniel Spicer, CSO of Ivanti, discusses emerging trends in phishing, and using zero-trust security to patch the human vulnerabilities underpinning the spike. According to…

WordPress Bugs Exploded in 2021, Most Exploitable

Record-number WordPress plugin vulnerabilities are wicked exploitable even with low CVSS scores, leaving security teams blind to their risk. Last year brought forth much more than a Ben Affleck-Jennifer Lopez…

3.7M FlexBooker Records Dumped on Hacker Forum

Attackers are trading millions of records from a trio of pre-holiday breaches on an online forum. A threat group that identifies itself as Uawrongteam is dumping data stolen from FlexBooker…

FBI Email Account Abused to Send Out Warnings of Fake Cyberattacks

Security Intelligence – Security Intelligence – FBI Email Account Abused to Send Out Warnings of Fake Cyberattacks Someone used an FBI email account to send out messages warning recipients of…

K-12 Cybersecurity Act Signed Into Law

Security Intelligence – Security Intelligence – K-12 Cybersecurity Act Signed Into Law Present Joe Biden signed the K-12 Cybersecurity Act into law, which lays out four objectives with the goal…

E-Commerce Fraud Up 178% Ahead of Holiday Shopping

Security Intelligence – Security Intelligence – E-Commerce Fraud Up 178% Ahead of Holiday Shopping The number of malicious shopping-related websites increased 178% ahead of the 2021 holiday shopping season, according…