Reuters

'Brute force' script snatched iPad e-mail addresses

The harvesting of over 100,000 iPad 3G owners' e-mail addresses was not a hack or a classic data breach, but a brute force attack of a minor feature AT&T offered to Apple customers, experts said ...
Nextgov

SSH Brute Force Spotted

New reports are filtering in to SANS' Internet Storm Center about a new SSH brute force script, possibly named "dd_ssh." New reports are filtering in to SANS' Internet Storm Center about a new SSH ...
CSOonline

Romanian cybercrime gang Diicot builds DDoS botnet with Mirai variant

The main focus of Diicot’s attacks appears to support cryptojacking efforts but the group is also employing botnets and brute-force tactics for other purposes. A cybercriminal group calling itself ...
Threat Post

Infected WordPress Sites Are Attacking Other WordPress Sites

Researchers identified a widespread campaign of brute force attacks against WordPress websites. WordPress sites are being targeted in a series of attacks tied to a 20,000 botnet-strong army of ...
Bleeping Computer

How to defend against brute force and password spray attacks

From zero-day exploits to polymorphic malware, today’s organizations must protect themselves against increasingly sophisticated cyber threats. But while these types of complex attack vectors may be ...
Computer Weekly

Techniques for preventing a brute force login attack

What are brute force login attacks and how can I protect my users and applications from them? A brute force login attack is one of the most common (and least subtle) attacks conducted against Web ...
Bleeping Computer

Fortinet VPN design flaw hides successful brute-force attacks

A design flaw in the Fortinet VPN server's logging mechanism can be leveraged to conceal the successful verification of credentials during a brute-force attack without tipping off defenders of ...