Amazon has sent out a barrage of emails to AWS users that state recipient’s free tier services are forecasted to breach free limits. These alerts are being sent to customers who have active services and even those who do not currently have any running services with Amazon, which is obviously causing some confusion.
Ever on the lookout for a new avenue of attack, cybercriminals had figured out a method of using Google App Scripts to automatically download malware hosted in Google drive to any computer.
Two security researchers —Vangelis Stykas and Michael Gruhn— have published a report on a series of vulnerabilities that they named “Trackmageddon” that affect several GPS and location tracking services. These GPS tracking services are basic databases that collect geolocation data from smart GPS-enabled devices, such as pets trackers, car trackers, kids trackers, and other “[insert_name] tracker” products.
Hackers have publicly posted the working code that exploits a zero-day vulnerability in a Huawei router model for free on Pastebin, security researchers have discovered. According to NewSky Security, the malware targets CVE-2017–17215, which is a vulnerability in Huawei HG532 devices, and has already been weaponised in two botnet attacks, including Satori and Brickerbot.