Skip to main content

Security News

Filter by:

Is Your Browser Extension a Botnet Backdoor?

A company that rents out access to more than 10 million Web browsers so that clients can hide their true Internet addresses has built its network by paying browser extension makers to quietly include its code in their creations. This story examines the lopsided economics of extension development, ...
Krebs on Security 2 Mar 2021 181 Views

Malware Loader Abuses Google SEO to Expand Payload Delivery

Gootloader has expanded its payloads beyond the Gootkit malware family, using Google SEO poisoning to gain traction.
Threatpost 2 Mar 2021 120 Views

Accellion FTA Zero-Day Attacks Show Ties to Clop Ransomware, FIN11

The threat actors stole data and used Clop's leaks site to demand money in an extortion scheme, though no ransomware was deployed.
Threatpost 23 Feb 2021 272 Views

Brave browser leaks onion addresses in DNS traffic

The Tor mode included with the Brave web browser allows users to access .onion dark web domains inside Brave private browsing windows without having to install Tor as a separate software package.
ZDNet 22 Feb 2021 19452 Views

New Malware Found On 30,000 Macs Has Security Pros Stumped

Packet Storm 22 Feb 2021 17860 Views

Pan-Asian retail giant Dairy Farm suffers REvil ransomware attack

Massive pan-Asian retail chain operator Dairy Farm Group was attacked this month by the REvil ransomware operation. The attackers claim to have demanded a $30 million ransom.
Bleeping Computer 28 Jan 2021 728 Views

World’s Most Dangerous Malware Emotet Disrupted Through Global Action

Law enforcement and judicial authorities worldwide have this week disrupted one of most significant botnets of the past decade: EMOTET. Investigators have now taken control of its infrastructure in an international coordinated action. 
Europol 28 Jan 2021 660 Views

SonicWall firewall maker hacked using zero-day in its VPN device

Security hardware manufacturer SonicWall has issued an urgent security notice about threat actors exploiting a zero-day vulnerability in their VPN products to perform attacks on their internal systems.
Bleeping Computer 25 Jan 2021 705 Views

Apple Kills MacOS Feature Allowing Apps to Bypass Firewalls

Security researchers lambasted the controversial macOS Big Sur feature for exposing users' sensitive data.
Threatpost 16 Jan 2021 786 Views

Ubiquiti: Change Your Password, Enable 2FA

Ubiquiti, a major vendor of cloud-enabled Internet of Things (IoT) devices such as routers, network video recorders, security cameras and access control systems, is urging customers to change their passwords and enable multi-factor authentication. The company says an incident...
Krebs on Security 12 Jan 2021 822 Views