McAfee released its Q4 Labs Threats Report for Q4 2017. The report includes botnet campaign details regarding the Necurs and Gamut botnets, as well as Dridex banking Trojan and ransomware payloads from GlobeImposter, Locky and Scarab.
A highly sophisticated cyberespionage campaign dubbed Slingshot has been uncovered by Kaspersky security researchers. The campaign targets MikroTik routers to compromise them and use as a springboard to attack victims' computers, as the company revealed in last week's Kaspersky Security Analyst Summit (SAS).
Security researchers at Imperva have spotted a new generation of cryptojacking attacks dubbed RedisWannaMine that targets Windows database and application servers. The campain also leverages the leaked NSA exploit EternalBlue to exploit vulnerable Windows systems.
Hackers have attacked over 1,400 Apache Solr servers late last month to install a cryptocurrency miner. Researchers say the attack resembles a similar campaign discovered back in January that targeted systems running unpatched Oracle WebLogic software. In that attack, hackers installed a mining rig used to mine Monero cryptocurrency.
Google announced on Wednesday the first developer preview of Android P, the newest version of Android.
Nearly 400,000 servers are at risk to a remote code execution vulnerability that impacts open-source Exim message transfer agent (MTA).
Palo Alto Networks Unit 42 security researchers have discovered a new malware dubbed “ComboJack” that targets multiple cryptocurrencies and web based online wallets.
RMH Franchise Holdings-owned Applebee's restaurants fell victim to a payment card data breach. According to the RMH announcement on Friday, systems at nearly 160 Applebee's restaurant locations may have been compromised with point-of-sale (PoS) malware.
Red Hat released security guidance that addresses recent Distributed Denial of Service (DDoS) amplification attacks being performed by attackers who are exploiting vulnerable memcached systems exposed to the internet.
Security researchers from McAfee's Advanced Threat Research team have discovered a new cybersecurity operation dubbed "Operation Honeybee" that targets humanitarian aid organizations.