Hyperbole Swirls Around AMD Processor Security Threat

Security community takes a critical look at CTS-Labs' disclosure of vulnerabilities in AMD vulnerabilities found in EPYC servers, Ryzen workstationsm and Ryzen mobile offerings.

Iran-Linked Group ‘TEMP.Zagros’ Updates Tactics, Techniques In Latest Campaign

An Iran-linked group is linked to a massive spear phishing campaign that sends malicious Word Docs to victims in Asia and the Middle East.

New Web-Based Malware Distribution Channel ‘BlackTDS’ Surfaces

Researchers highlight a privately held traffic distribution system tool for malware called BlackTDS that lowers the bar to entry for threat actors.

New POS Malware PinkKite Takes Flight

Researchers shed light on a newly discovered family of point of sale malware that is extremely small in size and adept at siphoning credit card numbers from POS endpoints.

Microsoft Patches 15 Critical Bugs in March Patch Tuesday Update

Products receiving the most patches included Microsoft browsers and browser-related technologies such as the company’s JavaScript engine Chakra.

AMD Investigating Reports of 13 Critical Vulnerabilities Found in Ryzen, EPYC...

Researchers on Tuesday disclosed over a dozen critical security vulnerabilities in several AMD chips, opening them up for attackers who want to steal sensitive data and install malware on AMD servers, workstations and laptops.

Samba Patches Two Critical Vulnerabilities in Server Software

Samba released fixes for its networking software to address two critical vulnerabilities that allowed attackers to change admin password or launch DoS attacks.

China-Linked APT15 Used Myriad of New Tools To Hack UK Government...

Cyber espionage group APT15 is back, this time stealing sensitive data from a UK government contractor.

FireEye’s Marina Krotofil On Triton and ICS Threats

At the Security Analyst Summit this year in Cancun, FireEye's Marina Krotofil talks about the Triton malware, first disclosed in December 2017, that targets industrial control systems.

CCleaner Attackers Intended To Deploy Keylogger In Third Stage

As investigations continue about the backdoor that was planted in CCleaner, Avast said it has found that the actors behind the attack were planning to install a third round of malware on compromised computers.

Cyber Espionage Campaign ‘Slingshot’ Targets Victims Via Routers

Researchers have uncovered a new cyber-espionage threat that uses MikroTik routers as a springboard to launch attacks within a network.

Sofacy APT Adopts New Tactics and Far East Targets

A new analysis of the Russian-speaking Sofacy APT gang shows a continual march toward Far East targets and overlapping of activities with other groups such as Lamberts, Turla and Danti.