Web Security

Threatpost 

Grammarly Launches Public Bug Bounty Program

December 13, 2018 TH Author bug bounty, bug bounty program, chrome extension, Grammarly, HackerOne, Vulnerabilities, Vulnerability, Web Security

The online spell check platform is taking its private bounty program public in hopes of outing more threats. READ MORE HERE…

Read more

Threatpost 

ThreatList: Holiday Spam, the Perfect Seasonal Gift for Criminals

December 12, 2018 TH Author 2018 trendsholiday season, delivery notifications, effectiveness, F-Secure, invoices, Most Recent ThreatLists, spam, threatlist, Web Security

Consumers are much more likely to fall for spam during the season of giving. READ MORE HERE…

Read more

Threatpost 

Zero-Day Bug Fixed by Microsoft in December Patch Tuesday

December 11, 2018 TH Author "Edge", ChackraCore, Chakra scripting engine, December Patch Tuesday, Explorer, Javascript, Microsoft, microsoft patch tuesday, Microsoft Windows, Office, Vulnerabilities, Web Security, Zero-Day Bug

Microsoft patches nine critical bugs as part of December Patch Tuesday roundup. READ MORE HERE…

Read more

Threatpost 

Google Accelerates Google+ Shutdown After New Bug Discovered

December 10, 2018 TH Author API, Bug, Google, Privacy, security incident, Vulnerabilities, Web Security

The consumer version of Google+ will now be shut down in April instead of August after a bug was found that impacts at least 50 million users. READ MORE HERE…

Read more

Threatpost 

Sextortion Emails Force Payment via GandCrab Ransomware

December 10, 2018 TH Author Email, extortion, GandCrab, Malware, ransomware, scam, sextortion, Web Security

Emails say they contain a link with screenshots of victims’ compromising activity. In reality, the link executes ransomware. READ MORE HERE…

Read more

Threatpost 

ThreatList: Gift Card-Themed BEC Holiday Scams Spike

December 7, 2018 TH Author ad fraud, BEC, black friday, Cyber Monday, email scam, holiday, Phishing, scam, spam, Web Security

Watch out for emails about gift cards and corporate donations, researcher warn. READ MORE HERE…

Read more

Threatpost 

Microsoft Calls For Facial Recognition Tech Regulation

December 7, 2018 TH Author AI, facial recognition, facial recognition software, Facial Recognition Technology, mass surveillance, Microsoft, Privacy, secret service, Web Security, White House

Microsoft and the AI Now Institute are both calling for regulation as facial recognition software picks up popularity. READ MORE HERE…

Read more

Threatpost 

Infected WordPress Sites Are Attacking Other WordPress Sites

December 6, 2018 TH Author API, application program interface, botnet, brute force password attack, Burp Suite, C2, Privacy, Vulnerabilities, Web Security, wordpress, WordPress 4.4, XML-RPC

Researchers identified a widespread campaign of brute force attacks against WordPress websites. READ MORE HERE…

Read more

Threatpost 

Adobe Flash Zero-Day Leveraged Via Office Docs in Campaign

December 5, 2018 TH Author adobe, Adobe Flash, adobe patch, Exploit, Phishing, Vulnerabilities, Web Security, zero-day

Adobe issued a patch for the zero-day on Wednesday. READ MORE HERE…

Read more

Threatpost 

Adobe Patches Zero-Day Vulnerability in Flash Player

December 5, 2018 TH Author adobe, Adobe Flash, adobe patch, critical vulnerability, Exploit, Vulnerabilities, Vulnerability, Web Security, zero-day

The vulnerability could lead to arbitrary code execution. READ MORE HERE…

Read more