Orbitz, a travel booking website owned by Expedia, has been found with signs of a major data breach that may have exposed 880,000 customer credit card records.
A post in a predominantly Russian-language dark web forum was reportedly selling a data dump with records that had an unusual "extra" bit of data: each record included a selfie of the user.
An Android adware named RottenSys has reportedly affected nearly 5 million Android devices since 2016, with the capability to turn affected devices into becoming part of a botnet.
Security researchers uncovered a traffic distribution system (TDS) being advertised as a service in the dark web. Named “BlackTDS,” the TDS is used to deploy malware and redirect would-be victims to exploit kits.
MIT's recent research delved into 126,000 stories tweeted by around 3 million accounts from 2006 to 2017 and found that fake news spread faster and were more likely to be retweeted than true stories.
There has been a sudden surge of memcached servers being abused for DDoS attacks. Proof-of-concept exploit codes have been published, but mitigation techniques and an update from the service provider are also available.
Researchers have discovered a vulnerability in the mail transfer agent (MTA) Exim. If exploited, attackers could execute arbitrary code on vulnerable servers remotely. Exim has already released a patch for this and urges everyone to update immediately.
A lot of best practices teach users how to prevent or defend against phishing attacks, but how can organizations actively detect and thwart them before users even see them?
The city of Allentown in Pennsylvania was hit with a costly malware attack. Reports point to the long-running Emotet malware as the culprit. The attack forced city officials to shut down some critical systems, and will also cost the city an estimated US$1 mill