BleepingComputer

2022-05-17 19:04:21 Latest news and stories from BleepingComputer.com
Hackers can steal your Tesla Model 3, Y using new Bluetooth attack

Security researchers at the NCC Group have developed a tool to carry out a Bluetooth Low Energy (BLE) relay attack that bypasses all existing protections to authenticate on target devices. [...] Open / Comment

2022-05-17 19:03:53 Latest news and stories from BleepingComputer.com
What is ISO 27001 and Why it Matters for Compliance Standards

ISO 27001 may seem like a big undertaking, but the certification can pay off in more ways than one—including overlap with compliance regulations. Read about the benefits of ISO 27001 and how to get started. [...] Open / Comment

2022-05-17 19:03:29 Latest news and stories from BleepingComputer.com
CISA warns admins to patch actively exploited Spring, Zyxel bugs

The Cybersecurity and Infrastructure Security Agency (CISA) has added two more vulnerabilities to its list of actively exploited bugs, a code injection bug in the Spring Cloud Gateway library and a command injection flaw in Zyxel firmware for business firewalls and VPN devices. [...] Open / Comment

2022-05-17 15:00:22 Latest news and stories from BleepingComputer.com
Hackers target Tatsu WordPress plugin in millions of attacks

Hackers are massively exploiting a remote code execution vulnerability, CVE-2021-25094, in the Tatsu Builder plugin for WordPress, which is installed on about 100,000 websites. [...] Open / Comment

2022-05-17 03:00:15 Latest news and stories from BleepingComputer.com
HTML attachments remain popular among phishing actors in 2022

HTML files remain one of the most popular attachments used in phishing attacks for the first four months of 2022, showing that the technique remains effective against antispam engines and works well on the victims themselves. [...] Open / Comment

2022-05-17 02:59:58 Latest news and stories from BleepingComputer.com
Third-party web trackers log what you type before submitting

An extensive study looking into the top 100k ranking websites has revealed that many are leaking information you enter in the site forms to third-party trackers before you even press submit. [...] Open / Comment

2022-05-17 02:59:37 Latest news and stories from BleepingComputer.com
US links Thanos and Jigsaw ransomware to 55-year-old doctor

The US Department of Justice today said that Moises Luis Zagala Gonzalez (Zagala), a 55-year-old cardiologist with French and Venezuelan citizenship residing in Ciudad Bolivar, Venezuela, created and rented Jigsaw and Thanos ransomware to cybercriminals. [...] Open / Comment

2022-05-16 23:01:11 Latest news and stories from BleepingComputer.com
Apple emergency update fixes zero-day used to hack Macs, Watches

Apple has released security updates to address a zero-day vulnerability that threat actors can exploit in attacks targeting Macs and Apple Watch devices. [...] Open / Comment

2022-05-16 23:00:27 Latest news and stories from BleepingComputer.com
Ukraine supporters in Germany targeted with PowerShell RAT malware

An unknown threat actor is targeting German users interested in the Ukraine crisis, infecting them with a custom PowerShell RAT (remote access trojan) and stealing their data. [...] Open / Comment

2022-05-16 23:00:02 Latest news and stories from BleepingComputer.com
CISA warns not to install May Windows updates on domain controllers

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has removed a Windows security flaw from its catalog of known exploited vulnerabilities due to Active Directory (AD) authentication issues caused by the May 2022 updates that patch it. [...] Open / Comment