Hackers attack Confluence Servers, hijack power for cryptocurrency mining. Illicit Monero mining is the goal. According to Trend Micro, attackers are harnessing CVE-2019–3396, a bug present in the Widget Connector macro in Atlassian Confluence Server, which permits path traversal and remote code execution via server-side injection. Atlassian released a patch on March 20, 2019, to resolve the security flaw [...]
Hackers breached 3 US antivirus companies, researchers reveal. Source code, network access being sold online by "Fxmsp" collective. In a report published Thursday, researchers at the threat-research company Advanced Intelligence (AdvIntel) revealed that a collective of Russian and English-speaking hackers are actively marketing the spoils of data breaches at three US-based antivirus software vendors. The collective, [...]
Bluetooth harvester signals hacking group’s growing interest in mobile. ScarCruft's new interest in mobile devices suggests the group's continuing evolution. A Korean-speaking hacking group in operation since at least 2016 is expanding its arsenal of hacking tools to include a Bluetooth-device harvester in a move that signals the group’s growing interest in mobile devices. ScarCruft [...]
Researchers demonstrate new ways to hack your stupidly complex smart home. It seems that some homes may be too smart for their own good. On Monday, March 5, researchers at the San Francisco RSA conference presented to an assembled crowd of journalists and cybersecurity experts an unexpected approach for hacking into the device-enabled homes of the modern day George [...]