Zero-Click Apple Zero-Day Uncovered in Pegasus Spy Attack
The phones of 36 journalists were infected by four APTs, possibly linked to Saudi Arabia or the UAE.
Source: Threadpost
Simplifying Proactive Defense With Threat Playbooks
FortiGuard Labs’ Derek Manky talks about how threat playbooks can equip defense teams with the tools they need to fight back against evolving attacker TTPs.
Source: Threadpost
Dark Web Pricing Skyrockets for Microsoft RDP Servers, Payment-Card Data
Underground marketplace pricing on RDP server access, compromised payment card data and DDoS-For-Hire services are surging.
Source: Threadpost
Critical Bugs in Dell Wyse Thin Clients Allow Code Execution, Client Takeovers
The bugs rate 10 out of 10 on the vulnerability-severity scale, thanks to the ease of exploitation.
Source: Threadpost
Hacker Dumps Crypto Wallet Customer Data; Active Attacks Follow
Customer data from a June attack against cryptocurrency wallet firm Ledger is now public and actively being used in attacks.
Source: Threadpost
Telemed Poll Uncovers Biggest Risks and Best Practices
What are the riskiest links in the virtual healthcare chain? Threatpost readers weigh in as part of an exclusive telemed poll.
Source: Threadpost
Cloud is King: 9 Software Security Trends to Watch in 2021
Researchers predict software security will continue to struggle to keep up with cloud and IoT in the new year.
Source: Threadpost
Sunburst’s C2 Secrets Reveal Second-Stage SolarWinds Victims
Examining the backdoor's DNS communications led researchers to find a government agency and a big U.S. telco that were flagged for further exploitation in the spy campaign.
Source: Threadpost
Microsoft Caught Up in SolarWinds Spy Effort, Joining Federal Agencies
The ongoing, growing campaign is “effectively an attack on the United States and its government and other critical institutions,” Microsoft warned.
Source: Threadpost
Cyberpunk 2077 Headaches Grow: New Spyware Found in Fake Android Download
Threat actors impersonate Google Play store in scam as Sony pulls the game off the PlayStation store due to myriad performance issues.
Source: Threadpost