15 Sep 2020

Magecart Attack Impacts More Than 10K Online Shoppers

One of the largest known Magecart campaigns in history occurred over the weekend, impacting nearly 2,000 e-commerce sites. The attacks may have been a result of Magecart operators leveraging a zero-day exploit, however, the exact technicalities of the attack remain unknown. The campaign has affected tens of thousands of customers,

Read More
15 Sep 2020

Researchers, Companies Slam Mobile Voting Firm Voatz for ‘Bad Faith’ Attacks

Over 70 different security research firms and independent researchers came together to write a letter detailing issues with Voatz, a mobile voting firm. The researchers claim that the company misrepresented its security practices to the US Supreme Court. The case could expand the Computer Fraud and Abuse Act to include

Read More
14 Sep 2020

US Court Documents Published in Ransomware Attack

Threat actors who targeted the Fourth Judicial District Court of Louisiana successfully have published alleged stolen court documents on an online forum. The hackers used a ransomware variant known as Conti in the attack, which occurred earlier this year after Conti was spotted in the wild in December of 2019.

Read More
14 Sep 2020

WordPress Plugin Flaw Allows Attackers to Forge Emails

More than 100,000 WordPress sites are subject to a critical flaw that lies in a plugin service called Email Subscribers and Newsletters by Icegram. The plugin is a high-severity flaw that allows websites to send out emails and newsletters to subscribers securely and efficiently, however, it is now being exploited

Read More
11 Sep 2020

Cyber-Risks Explode With Move to Telehealth Services

According to new research published by Dark Owl and SecurityScorecard, the increasingly rapid development of technology enabling the delivery of virtual health services has created more risks for both healthcare organizations and patients. The mass adoption of telehealth over the past few months due to the COVID-19 pandemic has had

Read More
10 Sep 2020

IRS Wants to Be Able to Trace ‘Untraceable’ Digital Currencies

The Treasury Department reportedly is investigating potential ways to trace currency that is known as untraceable, seeking to expand its visibility into cryptocurrency transactions. These transactions enable anonymity and allow for more privacy between the parties involved than most other blockchain-based exchanges. Cryptocurrency is transmitted virtually through a decentralized digital

Read More
10 Sep 2020

Vulnerabilities discovered in PAN-OS, which powers Palo Alto Networks’ firewalls

Researchers recently discovered vulnerabilities in PAN-OS, which is used to power all of Palo Alto Network’s firewalls, therefore representing a significant risk to the community. Palo Alto has remediated the vulnerability in operating systems 8.1 or later, which can allow attackers to gain access to sensitive data and access the

Read More
10 Sep 2020

Chinese cyber power is neck-and-neck with US, Harvard research finds

Although the process of measuring cyber power is complex and multi-faceted, the US has typically ranked ahead of China, the UK, Iran, North Korea, and Russia in terms of its capabilities and strength in cyberspace. However, a newly released study from the Belfer Center at Harvard University has revealed that

Read More
09 Sep 2020

Kabul bomb targets VP, kills 10 civilians

In Kabul, Afghanistan, a targeted attack against the country’s first vice president was misfired, killing 10 people and wounding at least 31 others, including several of the VP’s bodyguards. The vice president suffered minor injuries but fared well overall. No groups have claimed responsibility for the attack and the Taliban

Read More
09 Sep 2020

Researchers Uncover 89 Zero-Days in CMS Platforms

Popular content management system (CMS) platforms may be vulnerable to a plethora of cyber threats, according to security researchers. Recently, a team at Comparitech investigated the recent surge in web defacement attacks, eventually leading to the discovery of 89 zero-day vulnerabilities in CMS platforms. In July 2019, there were roughly

Read More