I’d like to add you to my professional network of people to spy on
A deepfake was reportedly spotted in the wild: LinkedIn's well-connected, young, attractive Eurasia/Russia expert "Katie Jones."
Widely used medical infusion pump can be remotely hijacked
These vulnerable infusion pumps can be remotely hacked to alter the delivery of IV fluids and medications such as painkillers or insulin.
Monday review – the hot 21 stories of the week
From the GoldBrute botnet to Microsoft's battle with irresponsibly disclosed bugs - and everything in between. It's your weekly roundup.
U.S. Planted Powerful Malware in Russia’s Power Grid: Report
The New York Times reported over the weekend that the United States planted potentially destructive malware in Russia’s electric power grid, but President Donald Trump has denied the claims. read more
U.S. Escalates Online Attacks on Russia’s Power GridYou hack our election, we flick your light…
U.S. Escalates Online Attacks on Russia’s Power GridYou hack our election, we flick your light switch. Seems equitable. lol
Black Hat USA axes anti-abortion congressman as keynote speaker after outcry – and more news from infosec land
Your quick guide to hacks, patches and scandal Roundup Here's a quick roundup of recent infosec news beyond what we've already reported.…
News Wrap: Amazon Privacy and Telegram DDoS Attack
Threatpost editors Tara Seals and Lindsey O'Donnell discuss a recent lawsuit against Amazon for its privacy policies, a Telegram DDoS attack and more.
French Authorities Release Free Decryptor for PyLocky Ransomware
The French Ministry of Interior has released a free decryption tool for the PyLocky ransomware to help victims recover their data. read more
Vulnerabilities Expose BD Infusion Therapy Devices to Attacks
CyberMDX, a research and analysis company specializing in medical device security, on Thursday revealed that its employees identified two serious vulnerabilities in infusion therapy products from medical technology firm BD. read more
Millions of Linux Servers Under Worm Attack Via Exim Flaw
Attackers are exploiting a Linux Exim critical flaw to execute remote commands, download crypto miners and sniff out other vulnerable servers.
Vulnerabilities in Thunderbird Email Client Allow Code Execution
Security updates released by Mozilla this week for the Thunderbird email client address vulnerabilities that could be exploited to execute arbitrary code on impacted systems. read more
Canadian City Loses $500,000 to Phishing Attack
The City of Burlington, Ontario, revealed Thursday that it fell prey to "a complex phishing email" that cost the City CAD $503,000 (around USD $375,000). Few details have yet been released. read more
Critical flaw found in Evernote Web Clipper for Chrome
Anyone using it in its unpatched state is at risk not only of a compromise of their Evernote account but, potentially, of third-party accounts too.
Hackers Behind ‘Triton’ Malware Target Electric Utilities in US, APAC
Xenotime, the threat actor behind the 2017 Trisis/Triton malware attack, is now targeting — in addition to oil and gas organizations — electric utilities in the United States and the Asia-Pacific (APAC) region. read more
Another World Password Day Has Passed and Little Has Changed
Six weeks ago, we celebrated World Password Day. Yet, unfortunately, not much has changed since last year. Cyber breaches are bigger and worse than ever. Hardly a week goes by without headlines about some new devastating cyber-attack. In fact, a CyberEdge report (PDF) found that a stunning 77 percent of…