You Are Here: Home » E-Threats » Alerts

Slack Got Hacked. Change Your Password Now!

Popular team messaging service Slack has just started notifying users about a security breach suffered earlier in February. According to the blog entry detailing on the incident, a group of unknown hackers have gotten access to a database containing user information like usernames and their corresponding e-mail addresses, hashed and salted passwords, as well as additional profile fields. The window of oppor...

Spammers are After Apple Credentials, Bitdefender Warns

Emails claiming to come from Apple are being sent to English-speaking users to lure them into giving away their financial data, Bitdefender warns. Attackers ask unsuspecting users to review their billing information in a well-crafted message. Once they click on the “Reset now” link, the login screen asks them to enter their Apple ID and password. Next, users are asked to fill in account information, includi...

Bitdefender Adware Removal Tool Removes Superfish Root Certificate from Lenovo Computers

Bitdefender has updated its Adware Removal Tool to remove the Superfish root certificate shipped with Lenovo computers. The self-signed root certificate behaves in much the same way as a man-in-the-middle attack, as it could allow the E-commerce Service (Superfish) to collect any type of data sent over secure channels. By injecting ads into webpages and search engine results, Superfish behaves like a potent...

GitHub Spammed to Sell Repair Services, Bitdefender Alerts

Popular code repository GitHub is full of annoying sales messages from Indonesian spammers, Bitdefender researchers found. The developer community is under siege after sales messages have poisoned a large number of project threads, much to the annoyance of GitHub members. “Someone used the code of my plugin to sell stuff I’ve never heard about,” a developer said. An account owner, under the name of Rx150, p...

Wearable Plain-Text Communication Exposed Through Brute-Force, Bitdefender Finds

The 6-digit pin code used to obfuscate Bluetooth communication between smartwatches and Android devices can be brute-forced into exposing messages in plain-text, according to Bitdefender’s Research Team. Everything from SMS messages to Facebook or Google Hangouts chats are constantly being forwarded to your smartwatch. So all this communication should be safe, right? It turns out that, with a little ingenui...

Hackers Grab Yahoo Credentials through Mail Activity Reports Campaign

Yahoo users are being targeted by a new phishing campaign that helps hackers grab their credentials and hijack accounts. Bitdefender was already blocking the malicious URLs spreading in inboxes worldwide. The phishing campaign starts with messages that bypass the e-mail provider’s antispam filters, reaching the Inbox folder. The e-mails pose as "mail activity reports" and copy Yahoo’s email format to look l...

Dyre Banking Trojan Still Phishing for Data, US-CERT Warns

A new phishing campaign employs the Dyre banking Trojan to steal account credentials from enterprises and financial institutions, according to an alert by the Department of Homeland Security. In the advisory, US-CERT said the phishing campaign uses various tactics, but mostly malicious PDF email attachments to download malware. “Phishing emails used in this campaign often contain a weaponized PDF attachment...

New Scareware Campaign Tricks Users with Fake Antivirus

A new type of scareware advertisement tricks users into believing their systems are infected and need expert help to remove the malware, Bitdefender warns. The malware-spreading mechanism is quite simple: the fake AV ads pop up unexpectedly when browsing the web, after the user’s computer has been previously infected with adware. Malicious ads usually enter the system under the form of an innocent-looking b...

Bitdefender Warns Stock Brokers of New ‘Wolf of Wall Street’ Scam

Millions of penny stock spam emails have been flooding inboxes these days, spreading a new ‘Wolf of Wall Street’ scam and inflating stock values of a mineral deposit company based in Canada, according to the Bitdefender Antispam Lab. With over 3 million unique samples, the wave started to grow last Thursday and soon became the largest stock spam attack in 2014, and also the most successful. The transactions...

SSL 3.0 “Poodle” Flaw Opens Encrypted Data to Eavesdropping

A vulnerability in the design of the SSL 3.0 protocol can be exploited to intercept secure cookies transmitted between clients and servers in a reasonable amount of time, Google announced in blog post. Three Google researchers uncovered the “Poodle” (Padding Oracle On Downgraded Legacy Encryption) flaw which affects a large number of Internet-connected servers that can to fall back to the vulnerable SSL v3...

© 2012 Powered By Bitdefender

x
Loading...
Scroll to top