Threat Post

Subscribe to Threat Post feed
The First Stop For Security News
Updated: 27 min 20 sec ago

What’s Making Your Company a Ransomware Sitting Duck

Fri, 06/18/2021 - 11:35am
What's the low-hanging fruit for ransomware attackers? What steps could help to fend them off, and what’s stopping organizations from implementing those steps?
Categories: Threat Post

Carnival Cruise Cyber-Torpedoed by Cyberattack

Fri, 06/18/2021 - 11:18am
This is the fourth time in a bit over a year that Carnival’s admitted to breaches, with two of them being ransomware attacks.
Categories: Threat Post

Insider Versus Outsider: Navigating Top Data Loss Threats

Fri, 06/18/2021 - 9:39am
Troy Gill, manager of security research at Zix, discusses the most common ways sensitive data is scooped up by nefarious sorts.
Categories: Threat Post

‘Oddball’ Malware Blocks Access to Pirated Software

Fri, 06/18/2021 - 8:34am
Rather than steal credentials or hold data for ransom, a recent campaign observed by Sophos prevents people from visiting sites that offer illegal downloads.
Categories: Threat Post

Faux ‘DarkSide’ Gang Takes Aim at Global Energy, Food Sectors

Fri, 06/18/2021 - 7:56am
A DarkSide doppelganger mounts a fraud campaign aimed at extorting nearly $4 million from each target.
Categories: Threat Post

Clop Raid: A Big Win in the War on Ransomware?

Thu, 06/17/2021 - 4:46pm
Cops arrest six, seize cars and cash in splashy raid, and experts are applauding.
Categories: Threat Post

Cisco Smart Switches Riddled with Severe Security Holes

Thu, 06/17/2021 - 3:30pm
The intro-level networking gear for SMBs could allow remote attacks designed to steal information, drop malware and disrupt operations.
Categories: Threat Post

Geek Squad Vishing Attack Bypasses Email Security to Hit 25K Mailboxes

Thu, 06/17/2021 - 1:06pm
An email campaign asking victims to call a bogus number to suspend supposedly fraudulent subscriptions got right past Microsoft's native email controls.
Categories: Threat Post

CVS Health Records for 1.1 Billion Customers Exposed

Thu, 06/17/2021 - 12:47pm
A vendor exposed the records, which were accessible with no password or other authentication, likely because of a cloud-storage misconfiguration.
Categories: Threat Post

Threat Actors Use Google Docs to Host Phishing Attacks

Thu, 06/17/2021 - 9:00am
Exploit in the widely used document service leveraged to send malicious links that appear legitimate but actually steal victims credentials.
Categories: Threat Post

Hiccup in Akamai’s DDoS Mitigation Service Triggers Massive String of Outages

Thu, 06/17/2021 - 8:50am
An hour-long outage hit airlines, banks and the Hong Kong Stock exchange. It's thought to have been caused by a DDoS mitigation service.
Categories: Threat Post

IKEA Fined $1.2M for Elaborate ‘Spying System’

Wed, 06/16/2021 - 2:38pm
A French court fined the furniture giant for illegal surveillance on 400 customers and staff.
Categories: Threat Post

Ransomware Poll: 80% of Victims Don’t Pay Up

Wed, 06/16/2021 - 2:01pm
Meanwhile, in a separate survey, 80 percent of organizations that paid the ransom said they were hit by a second attack.
Categories: Threat Post

Takeaways from the Colonial Pipeline Ransomware Attack

Wed, 06/16/2021 - 12:39pm
Hank Schless, senior manager of security solutions at Lookout, notes basic steps that organizations can take to protect themselves as ransomware gangs get smarter.
Categories: Threat Post

Euros-Driven Football Fever Nets Dumb Passwords

Wed, 06/16/2021 - 11:50am
The top easy-to-crack, football-inspired password in a database of 1 billion unique, clear-text, breached passwords? You probably guessed it: "Football."
Categories: Threat Post

5 Tips to Prevent and Mitigate Ransomware Attacks

Wed, 06/16/2021 - 9:00am
Ransomware attacks are increasing in frequency, and the repercussions are growing more severe than ever. Here are 5 ways to prevent your company from becoming the next headline.
Categories: Threat Post

Avaddon Ransomware Gang Evaporates Amid Global Crackdowns  

Wed, 06/16/2021 - 8:04am
Ransomware group releases decryptors for nearly 3,000 victims, forfeiting millions in payouts.    
Categories: Threat Post

Researchers: Booming Cyber-Underground Market for Initial-Access Brokers

Wed, 06/16/2021 - 7:51am
Ransomware gangs are increasingly buying their way into corporate networks, purchasing access from 'vendors' that have previously installed backdoors on targets.
Categories: Threat Post

Peloton Bike+ Bug Gives Hackers Complete Control

Wed, 06/16/2021 - 7:19am
An attacker with initial physical access (say, at a gym) could gain root entry to the interactive tablet, making for a bevy of remote attack scenarios.
Categories: Threat Post

Millions of Connected Cameras Open to Eavesdropping

Tue, 06/15/2021 - 4:51pm
A supply-chain component lays open camera feeds to remote attackers thanks to a critical security vulnerability.
Categories: Threat Post