Today, Talos is publishing a glimpse into the most prevalent threats we’ve observed between Mar 20 and Mar 27. As with previous roundups, this post isn’t meant to be an in-depth analysis. Instead, this post will summarize the threats we’ve observed by highlighting key behavioral characteristics, indicators of compromise, and discussing how our customers are […]
The post Threat Roundup for March 20 to March 27 appeared first on Cisco Blogs.
Multiple vulnerabilities exist in LILIN CCTV cameras that have attracted the attention of hackers. The zero-day bugs in LILIN CCTV
Zero-Day Vulnerabilities In LILIN CCTV Cameras Under Active Exploit – Patch Now! on Latest Hacking News.
The vulnerability can be exploited to reveal limited traffic data including a device’s IP address.
CVE-2020-10245, a heap-based buffer overflow that rates 10 out of 10 in severity, exists in the CODESYS web server and takes little skill to exploit.
Proton Technologies, the company behind the privacy-focused ProtonMail and ProtonVPN services, this week disclosed the existence of a vulnerability in Apple’s iOS mobile operating system that prevents VPN applications from encrypting all traffic.
read …
The malware, the work of a new APT called TwoSail Junk, allows deep surveillance and total control over iOS devices.
A recently observed campaign is attempting to infect the iPhones of users in Hong Kong with an iOS backdoor that allows attackers to take over devices, Trend Micro reports.
read more
Threatpost Senior Editor Tara Seals is joined by Russ Mohr, engineer and Apple evangelist at MobileIron along with Jerry Ray, COO at SecureAge, for a discussion about the now postponed Tokyo Games and its use of 5G and the myriad of security concerns J…
Microsoft recently issued an alert for all Windows users regarding a serious vulnerability under attack. This zero-day vulnerability primarily threatens
Microsoft Alerts Users Of Zero-Day RCE Vulnerability In Windows 7 Under Active Exploit on Latest Ha…
Apple’s security update included a slew of vulnerabilities in various components of iOS, macOS and Safari – the most severe of which could enable remote code execution.