securityXspace: a blog about cyber-philosophy.

ZDNet Old Linux kernel security bug bites ZDNet A local, unprivileged user can use this hole to gain higher privileges on a vulnerable system or cause a denial-of-service attack. The vulnerability has a Common Vulnerability Scoring System (CVSS) score of 7.8, which gives it a High rating, just below … Source: Old Linux kernel security…

The vendor “ SunTzu583 ” is offering for sale over 20 million Gmail and 5 million Yahoo login credentials on the Dark Web A vendor with the online moniker “ SunTzu583 ” is reportedly selling millions of login credentials for Gmail and Yahoo accounts on a black market in the dark web . Source: Over…

Cisco is warning of a new critical zero-day IOS / IOS XE vulnerability that affects more than 300 of its switch models. The company identified this highest level of vulnerability in its product while analyzing “Vault 7” — a roughly 8,761 documents and files leaked by Wikileaks last week, claiming to detail hacking tools and…

Information exposed in the leak includes personal details of employees from the Department of Defense and US Postal Service. Source: Personal Data Leak Affects 33 Million US Employees

We are seeing a wave of new NSIS installers used in ransomware campaigns. These new installers pack significant updates, indicating a collective move by attackers to once again dodge AV detection by changing the way they package malicious code. Source: Ransomware operators are hiding malware deeper in installer packages

Trend Micro has discovered a new PoS malware, tracked as MajikPOS, that is targeting business in North America and Canada. Security experts at Trend Micro have discovered a new PoS malware, tracked as MajikPOS, that is targeting business in North America. Source: New MajikPOS Malware targets users in across North America and Canada

A malware researcher known as Antelox recently tweeted about an unknown malware sample that caught our eye. Upon further investigation, it is a modular malware known as Acronym and could possibly be associated with the Win32/Potao malware family and the Operation Potao Express campaign. Source: Acronym: M is for Malware

The recently patched REST API Endpoint vulnerability in WordPress could be leveraged to pull off stored cross-site scripting attacks. Source: WordPress REST API Bug Could Be Used in Stored XSS Attacks

Smartphones, smartwatches, tablets, TVs and fitness trackers are now all at risk of being held to ransom by cyber criminals. With almost every device we now own being connected to the internet in some way cyber criminals are being given a window of opportunity to start deploying increasingly “aggressive” and “confrontational” attacks. Source: Cyber Criminals…

A command and control (C&C) server used for operating the CryptoBlock ransomware family has also been hosting stolen user credentials and other malware families, researchers say. read more Source: Researchers Infiltrate C&C Server Behind CryptoBlock Ransomware