ADT Tech Hacks Home-Security Cameras to Spy on Women
A former ADT employee pleads guilty of accessing customers’ cameras so he could spy on them.
Hacks
Threat Actors Can Exploit Windows RDP Servers to Amplify DDoS Attacks
Netscout researchers identify more than 14,000 existing servers that can be abused by ‘the general attack population’ to flood organizations’ networks with traffic.
Einstein Healthcare Network Announces August Breach
Einstein is in violation of the the HHS 60-day breach notification rule, but unlikely to face penalty.
SQL Server Malware Tied to Iranian Software Firm, Researchers Allege
Researchers have traced the origins of a campaign – infecting SQL servers to mine cryptocurrency – back to an Iranian software firm.
Google Forms Set Baseline For Widespread BEC Attacks
Researchers warn that attackers are collecting reconnaissance for future business email compromise attacks using Google Forms.
Google Searches Expose Stolen Corporate Credentials
A phishing campaign spoofs Xerox notifications to lure victims into clicking on malicious HTML attachments.
Malwarebytes Hit by SolarWinds Attackers
The attack vector was not the Orion platform but rather an email-protection application for Microsoft 365.
Investment Scammers Prey on Dating App Users, Interpol Warns
Users of dating apps – like Tinder, Match and Bumble – should be on the lookout for investment-fraud scammers.
Rob Joyce to Take Over as NSA Cybersecurity Director
Joyce will replace Anne Neuberger, who is now deputy national security advisor for the incoming Biden administration.
Attackers Steal E-Mails, Info from OpenWrt Forum
Users of the Linux-based open-source firmware—which include developers from commercial router companies–may be targeted by phishing campaigns, administrators warn.