Cerber Ransomware On The Rise, Fueled By Dridex Botnets
Cerber ransomware leverages Dridex spambot network in massive new crypto-offensive targeting U.S. inboxes.
Web Security
Threatpost News Wrap, May 13, 2016
Mike Mimoso and Chris Brook discuss the news of the week, including zero day vulnerabilities–both in Adobe Flash and Windows, a nasty vulnerability in SAP business applications, Mozilla asking FBI to disclose a Tor exploit, and more.
Emergency Flash Update Patches Public Zero Day
Adobe pushed out an emergency Flash Player update, patching a zero-day vulnerability. Adobe said a public exploit exists for CVE-2016-4117.
Google is urging Windows, Mac and Linux users to update their Chrome browser to fix five security holes – two rates as high.
Mozilla filed a motion asking the courts to compel the government to turn over details on a zero-day vulnerability in the Tor Browser used to hack visitors to a child pornography website.
Researchers at Onapsis and DHS CERT today published reports describing a critical SAP Invoker Servlet vulnerability that has been used to attack 36 global enterprises spanning 15 critical industries.
Facebook today made its capture the flag platform freely available on GitHub, which includes a ready-made backend and a set of pre-defined challenges.
IBM enlists the help of eight universities to teach its Watson supercomputer to fight cybercrime.
Microsoft’s Patch Tuesday security bulletins include a patch for a JScript and VBScript scripting engine vulnerability being publicly exploited.
A Duo Labs report reveals the dangers of unpatched and outdated software used in business world.
