A new ransomware gang known as LockFile encrypts Windows domains after hacking into Microsoft Exchange servers using the recently disclosed ProxyShell vulnerabilities. […]
Source: Read More (BleepingComputer)
You might be interested in …
[ThreatPost] 30 Mins or Less: Rapid Attacks Extort Orgs Without Ransomware
The previously unknown SnapMC group exploits unpatched VPNs and webserver apps to breach systems and carry out quick-hit extortion in less time than it takes to order a pizza. Source: Read More (Threatpost)
[HackerNews] Instagram Bug Allowed Anyone to View Private Accounts Without Following Them
Instagram has patched a new flaw that allowed anyone to view archived posts and stories posted by private accounts without having to follow them. “This bug could have allowed a malicious user to view targeted media on Instagram,” Mayur Fartade said in a Medium post today. “An attacker could have been able to see details of private/archived […]
[SecurityWeek] GitHub Paid Out Over $1.5 Million via Bug Bounty Program Since 2016
Microsoft-owned software development solutions provider GitHub announced on Friday that it has paid out more than $1.5 million through its bug bounty program since 2016, when it started using the HackerOne bug bounty platform. read more Source: Read More (SecurityWeek RSS Feed)