You might be interested in …

[HackerNews] Latest Atlassian Confluence Flaw Exploited to Breach Jenkins Project Server

All posts, HackerNews

The maintainers of Jenkins—a popular open-source automation server software—have disclosed a security breach after unidentified threat actors gained access to one of their servers by exploiting a recently disclosed vulnerability in Atlassian Confluence service to install a cryptocurrency miner. The “successful attack,” which is believed to have occurred last week, was mounted against its Source: […]

Read More

[SANS ISC] Uncovering Shenanigans in an IP Address Block via Hurricane Electric’s BGP Toolkit (II), (Fri, Jul 23rd)

All posts, Sans-ISC

Today’s diary revisits hunting for dodgy domains via Hurricane Electric’s BGP Toolkit [1]. This was previously done in an earlier diary [2], and I plan to do this occasionally to share potential or identified threats so that readers can be aware of them. I selected the IP address block of 209.58.160.0/20 this time, partly also […]

Read More

[HackerNews] Beware! New Android Malware Hacks Thousands of Facebook Accounts

All posts, HackerNews

A new Android trojan has been found to compromise Facebook accounts of over 10,000 users in at least 144 countries since March 2021 via fraudulent apps distributed through Google Play Store and other third-party app marketplaces. Dubbed “FlyTrap,” the previously undocumented malware is believed to be part of a family of trojans that employ social […]

Read More

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.