/ Security News /

Multiple backdoors have been discovered during a penetration test in the firmware of a widely used voice over Internet Protocol (VoIP) appliance from Auerswald, a German telecommunications hardware manufacturer, that could be abused to gain full administrative access to the devices. “Two backdoor passwords were found in the firmware of the COMpact 5500R PBX,” researchers …

/ Security News /

A series of malicious campaigns have been leveraging fake installers of popular apps and games such as Viber, WeChat, NoxPlayer, and Battlefield as a lure to trick users into downloading a new backdoor and an undocumented malicious Google Chrome extension with the goal of stealing credentials and data stored in the compromised systems as well …

/ Security News /

Cybersecurity researchers on Tuesday disclosed details of a sophisticated campaign that deploys malicious backdoors for the purpose of exfiltrating information from a number of industry sectors located in Japan. Dubbed “A41APT” by Kaspersky researchers, the findings delve into a new slew of attacks undertaken by APT10 (aka Stone Panda or Cicada) using previously undocumented malware …

/ Security News /

Cybersecurity researchers have disclosed details about a new watering hole attack targeting the Korean diaspora that exploits vulnerabilities in web browsers such as Google Chrome and Internet Explorer to deploy malware for espionage purposes. Dubbed “Operation Earth Kitsune” by Trend Micro, the campaign involves the use of SLUB (for SLack and githUB) malware and two …

/ Security Assessments News /

Enlarge / Graffiti urging people to use Signal, a highly encrypted messaging app, is spray-painted on a wall during a protest on February 1, 2017 in Berkeley, California. Elijah Nouvelage | Getty Images US Attorney General William Barr today launched a new front in the feds’ ongoing fight against consumer encryption, railing against the common …

/ Security News /

Getty Images British cybersecurity firm Codified Security just published a report that’s bad news for anyone who has written an Android app: Many are riddled with backdoors. The report points out two different issues with very different consequences: Either leaked customer data or a way to gain access to computers the code was tested on. …