API flaws said to have left Symantec SSL certificates vulnerable to compromise

API flaws said to have left Symantec SSL certificates vulnerable to compromise

Over the weekend, Chris Byrne, an information security consultant and instructor for Cloud Harmonics, published a post to Facebook outlining a serious problem with the processes and third-party API used to deliver and manage Symantec...

03/27/17

IRS issues new tax scam warnings, FSA tool suspended due to security concerns

IRS issues new tax scam warnings, FSA tool suspended due to security concerns

The Internal Revenue Service (IRS) has issued a new warning to businesses, taxpayers, and tax prep professionals about Phishing scams targeting the sensitive information they work with on a daily basis. Soon after, the IRS and the US...

03/22/17

Cisco to patch 300 devices against flaw found in CIA archives

Cisco to patch 300 devices against flaw found in CIA archives

After digging through the CIA archives released by WikiLeaks, Cisco says they've discovered a previously unknown flaw impacting 318 switch models. The bug, which the CIA has known about for an undetermined amount of time, can allow a...

03/20/17

More than 120,000 affected by W-2 Phishing scams this tax season

More than 120,000 affected by W-2 Phishing scams this tax season

Tax season doesn't officially end in the United States until April 18. At last count, 110 organizations have reported successful Phishing attacks targeting W-2 records, placing more than 120,000 taxpayers at risk for identity fraud.

03/14/17

Cisco and Apache issue warnings over Zero-Day flaw being targeted in the wild

Cisco and Apache issue warnings over Zero-Day flaw being targeted in the wild

Cisco's Talos says they've observed active attacks against a Zero-Day vulnerability in Apache's Struts, a popular Java application framework. Cisco started investigating the vulnerability shortly after it was disclosed, and found a...

03/08/17

SpammerGate: The takeaway lessons and follow-ups on the River City Media data breach

SpammerGate: The takeaway lessons and follow-ups on the River City Media data breach

Earlier this week, Salted Hash reported on the River City Media data breach, which exposed their operations fully. Today's follow-up examines some lessons learned, and few of the tools used by the company during their spamming...

03/08/17

Spammers expose their entire operation through bad backups

Spammers expose their entire operation through bad backups

In January, MacKeeper researcher Chris Vickery contacted Salted Hash with an interesting discovery, and with the help of Spamhaus, we were able to fully make sense of the data. What follows is an inside look at a well-known, but...

03/06/17

Carders capitalize on Cloudflare problems, claim 150 million logins for sale

Carders capitalize on Cloudflare problems, claim 150 million logins for sale

A carder forum is advertising a special deal to VIP members. The website claims to possess more than 150 million logins, from a number of services including Netflix, and Uber.

02/25/17

Bleeding clouds: Cloudflare server errors blamed for leaked customer data

Bleeding clouds: Cloudflare server errors blamed for leaked customer data

While working on something completely unrelated, Google security researcher, Tavis Ormandy, recently discovered that Cloudflare was leaking a wide range of sensitive information, which could have included everything from cookies and...

02/23/17

Salted Hash: RSAC 2017 Recap

Salted Hash: RSAC 2017 Recap

Last week, Salted Hash was in California for the annual RSA Conference in San Francisco. The week was full of drama between the testing labs and endpoint protection firms, but aside from that we managed to have a few interesting...

02/23/17

CrowdStrike attempts to sue NSS Labs to prevent test release, court denies request

CrowdStrike attempts to sue NSS Labs to prevent test release, court denies request

Last week, before the start of the RSA conference in San Francisco, CrowdStrike filed for a restraining order and injunction in a federal court, seeking to prevent NSS Labs from releasing the results of a recent NSS' Advanced Endpoint...

02/14/17

Salted Hash: RSA Conference 2017 – Live Blog

Salted Hash: RSA Conference 2017 – Live Blog

All this week, Salted Hash will be on location at the RSA Conference in San Francisco. We'll be updating the blog multiple times a day (each day) with news and other content from the show – so check-back often and refresh this post.

02/13/17

Vendors respond to Cylance's new testing methods with AV-TEST

Vendors respond to Cylance's new testing methods with AV-TEST

Earlier this morning, as part of a story on Cylance's claims that AV-Comparatives was using deceptive testing methodologies and pirated software, Salted Hash revealed details on a new test Cylance commissioned with AV-TEST. We reached...

02/13/17

Cylance accuses AV-Comparatives and MRG Effitas of fraud and software piracy

Cylance accuses AV-Comparatives and MRG Effitas of fraud and software piracy

Towards the end of 2016, Cylance, a feisty endpoint protection startup out of Irvine, California, published a series of blogs challenging the methods used by two certification labs to conduct endpoint protection tests. Cylance called...

02/13/17

Indiana distributor hit by W-2 scam twice in two years, more than 600 affected

Indiana distributor hit by W-2 scam twice in two years, more than 600 affected

Monarch Beverage, Indiana's largest distributor of beer and wine, said they were victimized by scammers targeting W-2 records this week, affecting more than 600 employees. However, the situation went from bad to worse after an...

02/09/17

29,000 taxpayers affected by W-2 scams, IRS issues new warning

29,000 taxpayers affected by W-2 scams, IRS issues new warning

Last week, the Internal Revenue Service issued a new warning to employers, urging them to stay alert as reports of compromised W-2 records started to climb. At least 29,000 taxpayers have been affected by W-2 scams since the tax...

02/06/17

Details on 200,000 racing fans exposed by IndyCar

Details on 200,000 racing fans exposed by IndyCar

Chris Vickery, a security researcher for MacKeeper, recently discovered an open Rsync server hosting the personal details for at least 200,000 racing fans. The data comes from a now defunct racing forum called DownForce, which closed...

01/31/17

Dozens of Netgear products vulnerable to authentication bypass flaws

Dozens of Netgear products vulnerable to authentication bypass flaws

Simon Kenin, a security researcher at Trustwave, was – by his own admission – being lazy the day he discovered an authentication vulnerability in his Netgear router. Instead of getting up out of bed to address a connection problem, he...

01/30/17

MongoDB ransom attacks continue to plague administrators

MongoDB ransom attacks continue to plague administrators

Earlier this month, Salted Hash reported on a surge in attacks against publicly accessible MongoDB installations. Since January 3, the day of that first report, the number of victims has climbed from about 200 databases to more than...

01/30/17

Breach notification website LeakedSource allegedly raided

Breach notification website LeakedSource allegedly raided

LeakedSource, a breach notification service that exposed some of 2016’s largest data breaches, might be facing a permanent shutdown. According to a forum post on a well-known marketplace, the owner of LeakedSource was raided earlier...

01/26/17

Load More