Jeremy McClure

“Siloscape”, the first malware to target Windows containers, breaks out of Kubernetes clusters to plant backdoors and raid nodes for credentials.

Windows Container Malware Targets Kubernetes Clusters

Cox Media Group tv, radio station streams affected by a reported ransomware attack.

Cyberattack Suspected in Cox TV and Radio Outages

Judges rule that Georgia police officer did not violate CFAA when he accessed law-enforcement data in exchange for bribe money, a ruling that takes heat off ethical hackers.

Supreme Court Limits Scope of […]

The REvil ransomware gang is interviewed on the Telegram channel called Russian OSINT.

REvil Ransomware Gang Spill Details on US Attacks

Unprotected server exposes AMT Games user data containing user emails and purchase information.

‘Battle for the Galaxy’ Mobile Game Leaks 6M Gamer Profiles

The crooks pay top dollar for Google search results for the popular AnyDesk, Dropbox & Telegram apps that lead to a malicious, infostealer-packed website.

Google PPC Ads Used to Deliver Infostealers

REvil threat actors may be behind a set of PowerShell scripts developed for encryption and weaponized to exploit vulnerabilities in corporate networks, the ransom note suggests.

Exchange Servers Targeted by […]

Joseph Carson, chief security scientist and advisory CISO at ThycoticCentrify, discusses best practices for securing healthcare data against the modern threat landscape.

Then and Now: Securing Privileged Access […]

In this Threatpost podcast, Fortinet’s top researcher sketches out the ransom landscape, with takeaways from the DarkSide attack on Colonial Pipeline.

Podcast: The State of Ransomware

In this Threatpost podcast, Forcepoint’s SASE and Zero Trust director describes how the pandemic jump-started SASE adoption.

Effective Adoption of SASE in 2021

The botnet can be used to mount different kinds of attacks, including code-execution and DDoS.

DarkCrewFriends Returns with Botnet Strategy

Researchers believe that Click2Gov, municipal payment software, may be at the heart of this most recent government security incident.

8 U.S. City Websites Targeted in Magecart Attacks

The carding store victimized mainly U.S. citizens and is responsible for $20 million in fraudulent purchases.

‘Cardplanet’ Operator Sentenced to 9 Years for Selling Stolen Credit Cards

The creator of the Satori/Okiru, Masuta and Tsunami/Fbot botnets has been sentenced to prison for compromising hundreds of thousands of devices.

Satori Botnet Creator Sentenced to 13 Months in Prison

App will stop reading users’ device cut-and-paste data after a new banner alert in an Apple update uncovered the activity.

TikTok To Stop Clipboard Snooping After Apple Privacy Feature Exposes Behavior

Lawmakers proposed a new bill that would ban the use of facial recognition by law enforcement nationwide.

Nationwide Facial Recognition Ban Proposed By Lawmakers

A first-stage malware loader spotted in active campaigns has added additional exploits and a new backdoor capability.

Golang Worm Widens Scope to Windows, Adds Payload Capacity

Several high-severity flaws in Nvidia’s GPU display drivers for Windows users could lead to code-execution, DoS and more.

Nvidia Warns Windows Gamers of Serious Graphics Driver Bugs

Threat actors shift focus from COVID-19 to employee coronavirus training and current events like Black Lives Matter as cyber-attacks continue to rise.

Office 365 Users Targeted By ‘Coronavirus Employee Training’ Phish

The CryCryptor malware strain is a brand-new family of threats, leveraging COVID-19 to spread.

Emerging Ransomware Targets Photos, Videos on Android Devices