Tara Seals

About

Tara Seals has nearly 25 years of experience as a journalist, analyst and editor in the communications and technology space. Prior to Threatpost, Tara was the North American news lead for Infosecurity Magazine, and spent 13 years working for Informa (formerly Virgo Publishing), as executive editor and editor-in-chief at publications focused on both the service provider and the enterprise arenas. A Texas native, she holds a B.A. from Columbia University, lives in Western Massachusetts with her family and is on a never-ending quest for good Mexican food in the Northeast.

Cisco ASA Bug Now Actively Exploited as PoC Drops

In-the-wild XSS attacks have commenced against the security appliance (CVE-2020-3580), as researchers publish exploit code on Twitter.

Musk-Themed ‘$SpaceX’ Cryptoscam Invades YouTube Advertising

Beware: The swindle uses legitimately purchased YouTube ads, real liquidity, legitimate DEX Uniswap, and the real wallet extension MetaMask to create an entirely convincing fake coin gambit.

30M Dell Devices at Risk for Remote BIOS Attacks, RCE

Four separate security bugs would give attackers almost complete control and persistence over targeted devices, thanks to a faulty update mechanism.

Critical Palo Alto Cyber-Defense Bug Allows Remote ‘War Room’ Access

by Tara Seals

June 23, 2021

Remote, unauthenticated cyberattackers can infiltrate and take over the Cortex XSOAR platform, which anchors unified threat intelligence and incident responses.

REvil Ransomware Code Ripped Off by Rivals

by Tara Seals

June 23, 2021

The LV ransomware operators likely used a hex editor to repurpose a REvil binary almost wholesale, for their own nefarious purposes.

Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE

by Tara Seals

June 23, 2021

A pair of zero-days affecting Pling-based marketplaces could allow for some ugly attacks on unsuspecting Linux enthusiasts — with no patches in sight.

Cryptominers Slither into Python Projects in Supply-Chain Campaign

by Tara Seals

June 22, 2021

These code bombs lurk in the PyPI package repository, waiting to be inadvertently baked into software developers’ applications.

Kids’ Apps on Google Play Rife with Privacy Violations

by Tara Seals

June 22, 2021

One in five of the most-popular apps for kids under 13 on Google Play don’t comply with COPPA regulations on how children’s information is collected and used.

Embryology Data Breach Follows Fertility Clinic Ransomware Hit

by Tara Seals

June 21, 2021

Approximately 38,000 of RBA’s customers had their embryology data stolen by a ransomware gang.

Agent Tesla RAT Returns in COVID-19 Vax Phish

by Tara Seals

June 21, 2021

An unsophisticated campaign shows that the pandemic still has long legs when it comes to being social-engineering bait.

Tara Seals

Cisco ASA Bug Now Actively Exploited as PoC Drops

Musk-Themed ‘$SpaceX’ Cryptoscam Invades YouTube Advertising

30M Dell Devices at Risk for Remote BIOS Attacks, RCE

Critical Palo Alto Cyber-Defense Bug Allows Remote ‘War Room’ Access

REvil Ransomware Code Ripped Off by Rivals

Unpatched Linux Marketplace Bugs Allow Wormable Attacks, Drive-By RCE

Cryptominers Slither into Python Projects in Supply-Chain Campaign

Kids’ Apps on Google Play Rife with Privacy Violations

Embryology Data Breach Follows Fertility Clinic Ransomware Hit

Agent Tesla RAT Returns in COVID-19 Vax Phish

InfoSec Insider

Securing Your Move to the Hybrid Cloud

Why Physical Security Maintenance Should Never Be an Afterthought

Conti’s Reign of Chaos: Costa Rica in the Crosshairs

How War Impacts Cyber Insurance

Rethinking Vulnerability Management in a Heightened Threat Landscape

Topics

Authors

Threatpost

Tara Seals

InfoSec Insider

Topics

Authors

Threatpost

Infosec Insider Post

Sponsored Content