MyPillow and Amerisleep Targeted in Magecart Group Attacks
In both breaches of MyPillow and Amerisleep, the customers whose payment information was potentially stolen were not informed. Source: www.threatpost.com
Hacks
Fin7 Ramps Up Campaigns With Two Fresh Malware Samples
Despite the 2018 crackdown on Fin7, the cybercrime group has been ramping up its efforts with two new malware samples and an attack panel. Source: https://threatpost.com
Podcast: The High-Risk Threats Behind the Norsk Hydro Cyberattack
Threatpost talks to Phil Neray with CyberX about Tuesday’s ransomware attack on aluminum producer Norsk Hydro, and how it compares to past manufacturing attacks like Triton, WannaCry and more. Source: www.threatpost.com
Norsk Hydro Calls Ransomware Attack ‘Severe’
When asked if the company plans to pay the ransom, its CFO said its main strategy is to use the backup data stored in the system. Source: https://threatpost.com
Fourth Major Credential Spill in a Month Hits DreamMarket
Gnosticplayers has released about 26 million records from what he said are breaches of six new companies. Source: www.threatpost.com
Privacy Regulations Needed for Next-Gen Cars
With wide deployment expected in the next decade, the driverless automobile landscape looks fraught – from road safety to data protection. Source: www.threatpost.com
Unpatched Fujitsu Wireless Keyboard Bug Allows Keystroke Injection
An unpatched high-severity vulnerability allows keystroke injections in Fujitsu wireless keyboards. Source: www.threatpost.com
Researcher Claims Iranian APT Behind 6TB Data Heist at Citrix
IRIDIUM is an APT that uses proprietary techniques to bypass two-factor authentication for critical applications, according to security firm Resecurity. Source: https://threatpost.com
Citrix Falls Prey to Password-Spraying Attack
International cybercriminals likely exploited weak passwords on an internal network, the FBI said. Source: https://threatpost.com
RSA Conference 2019: How to Defend Against an AI vs AI ‘Flash War’
Offensive cyber attack chains are accelerating rapidly thanks to a combination of artificial intelligence, machine learning and broadening threat landscape. Source: https://threatpost.com