Security
Headlines
HeadlinesLatestCVEs

Tag

#Web Security

Apache Web Server Zero-Day Exposes Sensitive Data

The open-source project has rolled out a security fix for CVE-2021-41773, for which public cyberattack exploit code is circulating.

Threatpost
Open in Source
#Vulnerabilities#Web Security
How to Build an Incident-Response Plan, Before Security Disaster Strikes

Joseph Carson, Chief Security Scientist at ThycoticCentrify, offers a 7-step practical IR checklist for ensuring a swift recovery from a cyberattack.

Facebook Outage Drags Down Instagram, WhatsApp, Messenger, Oculus VR

They were all flat on their faces for hours on Monday, throwing off DNS error messages or other server-related errors.

Encrypted & Fileless Malware Sees Big Growth

An analysis of second-quarter malware trends shows that threats are becoming stealthier.

Transnational Fraud Ring Bilks U.S. Military Service Members Out of Millions

A former medical records tech stole PII that was then used to fraudulently claim DoD and VA benefits, particularly targeting disabled veterans.

3.1M Neiman Marcus Customer Card Details Breached

Experts say the detection delay of 17 months is a colossal security blunder by the retailer.

New APT ChamelGang Targets Russian Energy, Aviation Orgs

First appearing in March, the group has been leveraging ProxyShell against targets in 10 countries and employs a variety of malware to steal data from compromised networks.

Google Emergency Update Fixes Two Chrome Zero Days

This is the second pair of zero days that Google's fixed this month, all four of which have been actively exploited in the wild.

Military’s RFID Tracking of Guns May Endanger Troops

RFID gun tags leave the military exposed to tracking, sniffing and spoofing attacks, experts say.

Tips & Tricks for Unmasking Ghoulish API Behavior

Jason Kent, hacker-in-residence at Cequence Security, discusses how to track user-agent connections to mobile and desktop APIs, to spot malicious activity.