Rene Millman

Hackers subvert MacOS Gatekeeper security to infect systems with malware

Hackers subvert MacOS Gatekeeper security to infect systems with malware

Apple was alerted about the MacOS Gatekeeper security flaw on 22 February, but the issue was not fixed despite promising action within 90 days, says researcher

US launches cyber-attack on Iranian weapons systems

US launches cyber-attack on Iranian weapons systems

Iranian military computer systems were struck in a cyber-attack by the US government in response to shooting down of a US drone. Should private sector also hack back if targetted in counter-response?

Waterbug APT group hacked another APT to carry out attacks

Waterbug APT group hacked another APT to carry out attacks

Hackers used leaked NSA tools and hijacked another hacking group's infrastructure to attack government organisations in the Middle East and beyond

Netflix spots and patches Linux kernel vulnerabilities

Netflix spots and patches Linux kernel vulnerabilities

The flaws could allow hackers to trigger a kernel panic in systems and throw them offline

Houdini trojan hits banking customers with keylogger

Houdini trojan hits banking customers with keylogger

Security researchers have discovered a variant of the Houdini malware in campaigns against financial institutions and their customers.

Chrome extension critical flaw could enable XSS attacks

Chrome extension critical flaw could enable XSS attacks

Critical vulnerability in Evernote Web Clipper for Chrome enables hackers to access to a victim's sensitive information; it directly impacts 3rd party services and is not limited to a person's Evernote account.

Microsoft NTLM vulnerabilities let attackers run remote code & authenticate on any Windows machine

Microsoft NTLM vulnerabilities let attackers run remote code & authenticate on any Windows machine

Three flaws in Microsoft NTLM proprietary authentication protocol could let attackers run remote code & authenticate on any Windows machine. NTLM difficult to eliminate so still poses a significant risk.

New Mirai variant targets new devices for botnet including SD-WAN

New Mirai variant targets new devices for botnet including SD-WAN

Malware looks for SD-WAN equipment, smart home controllers and wireless presentation devices

GoldBrute botnet trying to bruteforce access to millions of RDP servers

GoldBrute botnet trying to bruteforce access to millions of RDP servers

Worldwide attacks on RDP servers are happening now. A security researcher has discovered a botnet that has attempted to bruteforce access to over 1.5 million RDP servers around the world.

Carbanak still active, latest cyber-bank heist took months to carry out

Carbanak still active, latest cyber-bank heist took months to carry out

Despite arrest being made, the Carbanak cyber-criminal group appears to be in action, according to a new report published by Bitdefender, reporting an attempted takeover of an entire ATM network.