Monday, August 20, 2018
           (757) 873-6707                     Monday - Friday, 9 am - 5:30pm
Threatpost RSA Conference 2018 Preview Threatpost's Tom Spring and Lindsey O'Donnell talk about the top security trends that they are watching out for at the 2018 RSA Conference this week in San Francisco.
Calls For Regulation Build After Facebook Privacy Fallout Political actors and privacy activists are calling for more regulations on data privacy after Facebook's data security scandal.
New ‘Early Bird’ Code Injection Technique Helps APT33 Evade Detection Researchers have identified what they are calling an Early Bird code injection technique used by the Iranian group APT33 to burrow the TurnedUp malware inside infected systems while evading anti-malware tools.
AMD Rolls Out Spectre Fixes AMD notified users about new available Spectre CPU firmware and Windows 10 patches.

Latest News

Darkhotel Exploits Microsoft Zero-Day VBScript Flaw

The recently-patched flaw could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user.

GandCrab’s Rotten EGGs Hatch Ransomware in South Korea

This could mark yet another reinvention for the VenusLocker group, which has mostly been focused on cryptomining this year.

Philips Vulnerability Exposes Sensitive Cardiac Patient Information

The unpatched flaw would allow a bad actor to execute information-exfiltrating malware, backdoors, ransomware or any other kind of bad code he or she chose.

Unique Malspam Campaign Uses MS Publisher to Drop a RAT on Banks

A new email campaign includes a Microsoft Office Publisher file with malicious URLs leading to the FlawedAmmyy RAT.

Severe PHP Exploit Threatens WordPress Sites with Remote Code Execution

The issue impacts several content management systems, including Typo3 and WordPress, as well as widely-used PDF generation library TCPDF.

AT&T Faces $224M Legal Challenge Over SIM-Jacking Rings

Cryptocurrency angel investor Michael Terpin seeks damages for \\"gross negligence\\" by the carrier, alleging it turned a blind eye to store employees' malicious activities.

ThreatList: Almost Half of the World’s Top Websites Deemed ‘Risky’

An analysis of the world's most-visited websites shows that vulnerable software, too much active content and large amounts of code execution open visitors to a raft of potential dangers.

ATM Heists Only Set to Accelerate After $13M Break-In

The Cosmos Bank incident is only the latest, not the last, thanks to lagging security practices.

Highly Flexible Marap Malware Enters the Financial Scene

A new downloader, which has been spotted in an array of recent email campaigns, uses anti-analysis techniques and calls in a system fingerprinting module.

New Trickbot Variant Touts Stealthy Code-Injection Trick

Trickbot is back, this time with a stealthy code injection trick.