Important: BreachAware does not operate under any other brand name and will never provide unauthorised access to compromised credentials. We ask our users to beware of illegitimate websites imitating BreachAware.

Infosec News Feed

An aggregated list of cybersecurity publications
2018-11-08 22:45:00 UTC
Dark Reading
Dark Reading
Symantec Uncovers North Korean Group's ATM Attack Malware

Lazarus Group has been using FastCash Trojan on obsolete AIX servers to empty tens of millions of dollars from ATMs.

2018-11-08 22:00:00 UTC
Dark Reading
Dark Reading
Microsoft President: Governments Must Cooperate on Cybersecurity

Microsoft's Brad Smith calls on nations and businesses to work toward "digital peace" and acknowledge the effects of cybercrime.

2018-11-08 21:56:00 UTC
ThreatPost
ThreatPost
Pentagon Draws Back the Veil on APT Malware with Sudden Embrace of VirusTotal

Two samples have already been added to the malware zoo, indicating a new openness from the federal government when it comes to cyber.

Government Malware Analysis Apt Cyber Command Cyber National Mission Force Department Of Defense Malware Samples Pentagon Researcher Response Virustotal
2018-11-08 19:30:00 UTC
Dark Reading
Dark Reading
User Behavior Analytics Could Find a Home in the OT World of the IIoT

The technology never really took off in IT, but it could be very helpful in the industrial world.

2018-11-08 18:30:00 UTC
Dark Reading
Dark Reading
Banking Malware Takes Aim at Brazilians

Two malware distribution campaigns are sending banking Trojans to customers of financial institutions in Brazil.

2018-11-08 17:39:00 UTC
ThreatPost
ThreatPost
Cisco Accidentally Released Dirty Cow Exploit Code in Software

Cisco revealed that it had "inadvertently" shipped an in-house exploit code that was used in test scripts as part of  its TelePresence Video Communication Server and Expressway Series software.

Vulnerabilities Cisco Cisco Switch Cisco Vulnerability Dirty Cow Vulnerability Exploit Exploit Code Fix Patch
2018-11-08 16:41:00 UTC
HackRead
HackRead
Russian exploit developer publicly disclosed VirtualBox zero-day vulnerability

By Waqas

An independent IT security researcher and exploit developer from Russia has publicly revealed a zero-day vulnerability in all versions of VirtualBox (VB) 5.2.20 and prior. VB is commonly used open source virtualization software that has been developed by Oracle. According to the analysis of Sergey Zelenyuk, his exploit is hundred percent reliable and memory corruption […]

This is a post from HackRead.com Read the original post: Russian exploit developer publicly disclosed VirtualBox zero-day vulnerability

Security GitHub Oracle Russia Security VirtualBox Vulnerability Zero-day
2018-11-08 16:39:00 UTC
ThreatPost
ThreatPost
‘DerpTroll’ Faces 10 Years in Prison for DDoSing Gaming Sites as a Teen

He admitted to taking Steam, EA Origin and Sony Online Entertainment offline in 2013 and 2014, causing at least $95,000 in damages.

Hacks Web Security Austin Thompson DDoS Derptroll Ea Origin Gaming Guilty Plea PlayStation Prison Sony Teenagers
2018-11-08 16:15:00 UTC
The Daily Swig
The Daily Swig
Websites peddling ‘deceptive content’ face Chrome-mediated ad ban

Pop-up slingers face financial sanctions from Google

2018-11-08 15:30:00 UTC
Dark Reading
Dark Reading
5 Things the Most Secure Software Companies Do (and How You Can Be Like Them)

What sets apart the largest and most innovative software engineering organizations? These five approaches are a good way to start, and they won't break the bank.