article thumbnail

Kaseya Left Customer Portal Vulnerable to 2015 Flaw in its Own Software

Krebs on Security

Also on July 3, security incident response firm Mandiant notified Kaseya that their billing and customer support site — portal.kaseya.net — was vulnerable to CVE-2015-2862 , a “directory traversal” vulnerability in Kaseya VSA that allows remote users to read any files on the server using nothing more than a Web browser.

article thumbnail

Researchers Uncover Hacker-for-Hire Group That's Active Since 2015

The Hacker News

A new cyber mercenary hacker-for-hire group dubbed "Void Balaur" has been linked to a string of cyberespionage and data theft activities targeting thousands of entities as well as human rights activists, politicians, and government officials around the world at least since 2015 for financial gain while lurking in the shadows.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

The 7 Biggest Cybersecurity Scoops from February 2015

SiteLock

Fast forward to 2015, and we’ve had several trending cyber security issues appear in just these first few weeks. Below are 7 trending cyber security stories that you should read for February 2015. 2015 Cyber Security Risks. Anthem Cyber Attack. Read the full story here on Hot for Security. You can read it here.

article thumbnail

Apple was aware that XcodeGhost impacted 128 Million iOS Users in 2015

Security Affairs

Court documents revealed that the infamous XcodeGhost malware, which has been active since 2015, infected 128 million iOS users. “In September 2015, Apple managers had a dilemma on their hands: should, or should they not notify 128 million iPhone users of what remains the worst mass iOS compromise on record? Pierluigi Paganini.

Malware 133
article thumbnail

2015 Ashley Madison Breach Is Back Just in Time for Valentine’s Day

Adam Levin

A new extortion scam is targeting users of marital infidelity site Ashley Madison whose accounts were compromised in a 2015 data breach. The post 2015 Ashley Madison Breach Is Back Just in Time for Valentine’s Day appeared first on Adam Levin. It is currently unknown if users targeted by the breach have been exposed.

article thumbnail

In Search of… ISO 27001:2013, 27017:2015 & 27018:2019 Certification

Duo's Security Blog

We are proud to announce the Duo has achieved ISO 27001:2013, 27017:2015, and 27018:2019 certification! What is ISO 27001:2013, 27017:2015 and 27018:2019? What’s the benefit of ISO 27001:2013, 27017:2015 and 27018:2019 certification to our customers? You can thank ISO for that!

CISO 105
article thumbnail

Top 10 Largest Data Breaches of 2015

SiteLock

With 2015 almost over, let’s take a look back at the top 10 largest data breaches of the year. 2015 Attack Timeline. Check out the top data breaches that hit the retail industry in 2015. Check out the top data breaches that hit the retail industry in 2015. Hopefully your company didn’t make the list! Want to learn more?