Security News
A pox on your servers: dormant vulnerability patched after 15 years
Admins scramble to patch HTTP proxy header flaw, Httpoxy, that leaks data via PHP, Go and Python scripts running in a CGI environment.
About SC Media
Your search for dormant returned 101 results
Security News
DA: San Bernardino shooter could have introduced ‘dormant cyber pathogen’
The iPhone 5c belonging to one of the San Bernardino shooters could possibly have been "used as a weapon to introduce a 'dormant cyber pathogen'" into the county's infrastructure.
Security News
Payment processor used by government hit by ‘Cuba’ ransomware gang
The Cuba ransomware gang launched assaults in February on a payment processor widely used by many state and municipal agencies across the United States to manage utility bills and driver’s license data.
Perspectives, SolarWinds hack
SolarWinds: A devastating lesson in third-party vendor vulnerabilities
Chances are, we’re far from fully seeing the fallout from the SolarWinds incident. But to understand why SolarWinds was attacked, we have to first identify what makes it attractive to bad actors.
Malware, Security News
Bandook malware targets ‘unusually wide variety’ of industries, regions
Security researchers are warning that the once-dormant Bandook malware family is back and could possibly be part of a broader operation selling offensive hacking tools to governments and cybercriminal groups.
Featured, Privacy & Compliance, Security News, Vulnerabilities, Web Services Security, E-Commerce Security, Website/Web Server Security
Accidental Airbnb account takeover linked to recycled phone numbers
As it turns out, websites and apps have experienced this commonplace problem for years, and companies could find themselves in violation of data security standards if users' information were to be exposed.
Cybercrime, Data Breach, Featured, Ransomware, Security News
Carnival left to right the ship after breaches threaten travelers’ trust
Regardless of whether or not the incidents are connected, the latest attack will carry ramifications, exacerbated by the combined effects of previous incidents.
Perspectives
Colleges reopen amid COVID-19 by bolstering security strategies
Colleges and universities around the country face a daunting conundrum as the pandemic continues to make planning an impossible task. There’s no consensus on how to reopen, and each school must create its own rules, all subject to change by the minute. The fall semester will start soon and decisions on how to return are…
Ransomware, Security News
PonyFinal deployed in human-operated ransomware attacks
Microsoft told organizations Wednesday to focus less on the payload of Java-based ransomware PonyFinal and instead key “more on how it’s delivered” via human-operated ransomware attacks. “PonyFinal is at the tail end of protracted human-operated ransomware campaigns that are known to stay dormant and wait for the most opportune time to deploy the payload,” Microsoft…
Ransomware, Security News
Shade ransomware gang gives up keys, apologizes to victims
The malicious actors behind Shade ransomware made an unusual announcement on GitHub, not only publishing all 750,000 decryptor keys for the malware but apologizing for their criminal actions. “We are the team which created a trojan-encryptor mostly known as Shade, Troldesh or Encoder.858. In fact, we stopped its distribution in the end of 2019.” the…
Next post in Ransomware
