Cybersecurity News & Analysis | SC Media | Info Security News

News

The many faces of Magecart: Report profiles groups behind card-skimming threat

By

Magecart, the e-commerce payment card-skimming threat that has recently victimized Ticketmaster, British Airways, Newegg and other notable companies, is primarily comprised of six major active cybercriminal groups, according to a new joint research report. All of these groups use a version the same skimmer toolset, but they rely on different strategies and in some cases have…

Researchers demo how machine learning can be used to track Gh0st RAT variants

By

Trend Micro researchers are proposing machine learning as a new way to combat threat actors using techniques including polymorphism, encryption, and obfuscation and other tactics to disguise their attacks. Researchers tested the theory by observing cluster network flows from Gh0st RAT variants in an effort to better spot network anomalies and intrusions and found that…

Microsoft’s Patch Tuesday addresses Zero Day vulnerabilities

By

Microsoft’s Patch Tuesday rollout covered 62 items, 12 rated critical, including patches for a pair of Zero Day vulnerabilities. Among the most worrisome issues addressed with this round of updates is CVE-2018-8589, a Won32k elevation of privilege flaw, that has been spotted in the wild affecting Windows 7, Server 2008 and Server 2008 R2. “This…

Trump may oust Nielsen at DHS

By

President Trump may soon give the boot to Department of Homeland Security (DHS) Secretary Kirstjen Nielsen, lauded on her nomination for her cybersecurity experience. Nielsen, who has been long-rumored to be unhappy in her role, has faced criticism from the president over a number of issues, including enforcement of the administration’s immigration policy and Trump…

Facebook reportedly fixes search bug that could have threatened user privacy

By

Facebook earlier this year reportedly patched a vulnerability in its search page that could have allowed enterprising attackers to perform reconnaissance on certain users. In a company blog post today, Imperva security researcher Ron Masas wrote that Facebook fixed the issue shortly after he discovered the flaw back in May. Masas reportedly noticed that Facebook’s…

Bitcoin scammers impersonate Elon Musk, hack Target’s Twitter account

By

Scammers impersonating Elon Musk managed to hack the verified Twitter accounts of Target and several others in a cryptocurrency fraud scheme promising huge Bitcoin giveaways Tuesday morning. Hackers were briefly able to get ahold of the Target Twitter page for about a half hour when they used the big-box retailer’s account to promote “the biggest crypto-giveaway…

Adobe Patch Tuesday updates for Flash Player, Reader, Acrobat and PhotoShop

By

Adobe’s November Patch Tuesday security updates cover an important patch for Flash Player along with similarly rated patches for Acrobat, Reader and Photoshop. Flash Player 31.0.0.122 and earlier versions for Windows, macOS, Linux and Chrome OS have an out-of-bounds read vulnerability (CVE-2018-15978) that if exploited could lead to information disclosure. Adobe rated it a priority…

Federal judge orders review of Georgia’s provisional ballots

By

Noting that it was likely that the administration of former Georgia Secretary of State and self-proclaimed governor-elect Brian Kemp likely failed to “properly maintain a reliable and secure voter registration system,” a federal judge said the state must review provisional ballots cast in a contentious Nov. 6 election. In ruling on a case brought by…

Google hit with IP hijack taking down several services

By

Google G Suite yesterday had much of its traffic re-routed through Russia and dropped at China Telecom, according to the network intelligence company Thousand Eyes. Thousand Eyes at this time reported Google was victimized by a Border Gateway Protocol (BGP) hijacking attack. Google confirmed there was an issue, but does not believe it was done intentionally.…

Attackers exploit GDPR compliance plug-in for WordPress

By

A WordPress plug-in that’s supposed to help with GDPR compliance contains a dangerous privilege escalation vulnerability that attackers have been actively exploiting to compromise websites. Known as the WP GDPR Compliance plug-in, the software module helps ensure compliance with Europe’s General Data Protection Regulation by providing tools through which site visitors can permit use of their…

Next post in Cybercrime