Microsoft adds .NET Core and ASP.NET to its bug bounty program offering bug hunters payouts that range from $500 to $15,000. Source: Threatpost
Android Patch Fixes Nexus 5X Critical Vulnerability
Google patched an undocumented vulnerability that allowed attackers to bypass Nexus 5X device’s lock screen via a forced memory dump that exposed the device owner’s password. Source: Threatpost
Apple Patches Trident Vulnerabilities in OS X, Safari
Apple has patched the Trident vulnerabilities in OS X and Safari. The flaws were originally disclosed in iOS and used to spy on a UAE human rights activist. Source: Threatpost
Malvertising Campaign Pushing Neutrino Exploit Kit Shut Down
Researchers uncovered a global malvertising campaign exposing potentially millions of users to the risk of being hit with CrypMIC ransomware delivered via the Neutrino Exploit Kit. Source: Threatpost
Insecure Redis Instances at Core of Attacks Against Linux Servers
Attackers are targeting insecure Redis instances, exposed to the internet, to access Linux servers and delete web files and folders in exchange for ransom. Source: Threatpost