The unpatched flaw would allow a bad actor to execute information-exfiltrating malware, backdoors, ransomware or any other kind of bad code he or she chose. Source: https://threatpost.com
This backdoor can be used for espionage and for dropping additional malware. Source: https://threatpost.com
The main purpose of Grobios malware is to help attacker establish a strong, persistent foothold in a victim’s system, in order to drop additional payloads later. Source: www.threatpost.com
Not just a miner, the malware also sets up a hidden default account with system administrator privileges, to be used for re-infection and further attacks. Source: https://threatpost.com
A freshly minted attack group dubbed Orangeworm has been uncovered, deploying a custom backdoor in mostly healthcare-related environments. It’s bent on laser-focused, comprehensive corporate espionage, with a noisy attack vector that shows that it’s unlikely to be related to nation-state actors. Researchers first found Orangeworm in the form of an interesting binary in 2016, and […] Source: https://threatpost.com
Google discovered a spyware app that uses nearly a dozen old vulnerabilities to root devices and steal sensitive data from social media applications. Source: www.threatpost.com
Two members of Avast’s threat intelligence team shared new information about the CCleaner backdoor attack. Source: https://threatpost.com
Google’s Project Zero released a proof-of-concept attack against a Wi-Fi firmware vulnerability in Broadcom chips that backdoors the iPhone 7. The flaw was patched in iOS 11. Source: www.threatpost.com
D-Link router model 850L has 10 vulnerabilities that could allow a hacker to gain remote access and control of device, according to researcher. Source: www.threatpost.com
Trivially exploitable vulnerabilities in several Arris home modems, routers and gateways distributed to consumers and small businesses through AT&T’s U-verse service have been discovered. Source: www.threatpost.com