A Small VPS Provider Registered in the United Arab Emirates Has Been Providing Services to Pawn Storm Attackers and Other Cybercriminal Operations
A Small VPS Provider Registered in the United Arab Emirates Has Been Providing Services to Pawn Storm Attackers and Other Cybercriminal Operations
Malicious actors have abused PowerShell and Google Docs to deliver a Trojan known as Laziok, FireEye reported on Thursday.
Ransomware’s extortion-based business model, currently the latest major trend in the cybercrime industry, is marking a major change in the purpose and outcome of malware attacks and has become a major threat to consumers and enterprises alike.
UPDATED. A researcher received $10,000 from Facebook after uncovering a serious vulnerability and what appeared to be a malicious web shell left behind by hackers on one of the social media giant’s servers. Facebook has clarified that the web shell was actually uploaded by another researcher analyzing the same flaws and noted that user data was never at risk.
Distributed denial of service (DDoS) attacks observed in the first quarter of 2016 grew more advanced and more sophisticated, Imperva’s Global DDoS Threat Landscape Q1 2016 reveals.
Adobe released an update on Thursday for the Analytics AppMeasurement for Flash library to address a DOM-based cross-site scripting (XSS) vulnerability rated “important.”
The AppMeasurement for Flash library allows users to collect video viewing activity and forward the data to Adobe’s data collection servers, where it can be used via Marketing Cloud services.
The Federal Bureau of Investigation paid hackers more than $1 million to break into the iPhone used by one of the San Bernardino attackers, director James Comey said Thursday.
Asked at the Aspen Security Forum in London how much the US agency paid for help to get into the phone, Comey replied, "A lot."
State-sponsored threat actors in Asia have been leveraging a new technique to deliver remote access Trojans (RATs) without being detected by security products.