Viry a Červi

Facebook Awards $100K to Researchers for Credential Spearphishing Detection Method

VirusList.com - 21 Srpen, 2017 - 20:28
Researchers who identified a real-time way to detect credential spearphishing attacks in enterprise settings won $100,000 from Facebook last week.
Kategorie: Viry a Červi

10% of UK's top firms would be screwed in a cyber attack – survey

The Register - Anti-Virus - 21 Srpen, 2017 - 19:04
And just 6% say they're fully prepared for GDPR

Most of the UK's top businesses are underprepared for new data protection rules, while 10 per cent have no response plan for a cyber attack, according to a government survey.…

Kategorie: Viry a Červi

‘Gloomy times ahead’ for security on critical infrastructure, warn experts

Sophos Naked Security - 21 Srpen, 2017 - 18:35
NIST is raising awareness that security through obscurity has become a thing of the past - but are we doing enough to protect infrastructure such as dams and power plants?

The $500 gizmo that cracks iPhone passcodes – and how to stop it

Sophos Naked Security - 21 Srpen, 2017 - 18:15
A gizmo that can work out an iPhone's passcode sounds pretty scary - but just how much of a risk is it?

Meeting and Hotel Booking Provider’s Data Found in Public Amazon S3 Bucket

VirusList.com - 21 Srpen, 2017 - 17:13
Personal and business data belonging to Boston area meeting and hotel booking provider Groupize was discovered in a publicly accessible Amazon Web Services S3 bucket, which has since been locked down.
Kategorie: Viry a Červi

Return to sender: military will send malware right back to you

Sophos Naked Security - 21 Srpen, 2017 - 17:11
'The threat could be a large nation-state or a 12-year-old' - so is weaponizing malware and sending it back the right tactic?

British snoops at GCHQ knew FBI was going to arrest Marcus Hutchins

The Register - Anti-Virus - 21 Srpen, 2017 - 16:00
WannaCry killer had been working with the spy agency

Secretive electronic spy agency GCHQ was aware that accused malware author Marcus Hutchins, aka MalwareTechBlog, was due to be arrested by US authorities when he travelled to United States for the DEF CON hacker conference, according to reports.…

Kategorie: Viry a Červi

Concerns ignored as Home Office pushes ahead with facial recognition

Sophos Naked Security - 21 Srpen, 2017 - 14:03
Picking faces out of a crowd using software is unreliable and fraught with problems - whichever side of the pond you're on

Monday review – the hot 25 stories of the week

Sophos Naked Security - 21 Srpen, 2017 - 10:30
From women targeted on public transport via AirDrop and what iOS11 means for iPhone security to the return of Locky ransomware, and more!

Mirai copycats fired the IoT-cannon at game hosts, researchers find

The Register - Anti-Virus - 21 Srpen, 2017 - 09:31
After first wave attacks ended, thing-herders took aim at PlayStation, XBOX and Valve

The Mirai botnet that took down large chunks of the Internet in 2016 was notable for hosing targets like Krebs on Security and domain host Dyn, but research presented at a security conference last week suggests a bunch of high-profile game networks were also targeted.…

Kategorie: Viry a Červi

Foxit PDF Reader is well and truly foxed up, but vendor won't patch

The Register - Anti-Virus - 21 Srpen, 2017 - 06:59
We've got Safe Mode and that's safe enough, vendor tells ~400m users

The Zero Day Initiative (ZDI) has gone public with a Foxit PDF Reader vulnerability without a fix, because the vendor resisted patching.…

Kategorie: Viry a Červi

Bitcoin-accepting sites leave cookie trail that crumbles anonymity

The Register - Anti-Virus - 21 Srpen, 2017 - 01:58
Merchants share too much tracking information? Colour us un-surprised

Bitcoin transactions might be anonymous, but on the Internet, its users aren't – and according to research out of Princeton University, linking the two together is trivial on the modern, much-tracked Internet.…

Kategorie: Viry a Červi

US DoD, Brit ISP BT reverse proxies can be abused to frisk internal systems – researcher

The Register - Anti-Virus - 19 Srpen, 2017 - 09:26
And how to avoid making the same mistakes

BSides  Minor blunders in reverse web proxies can result in critical security vulnerabilities on internal networks, the infosec world was warned this week.…

Kategorie: Viry a Červi

No, the cops can't get a search warrant to just seize all devices in sight – US appeals court

The Register - Anti-Virus - 19 Srpen, 2017 - 00:59
Judges frown upon fishing for incriminating data on phones

It's a ruling sending shockwaves through the worlds of privacy, device security, and law enforcement in America.…

Kategorie: Viry a Červi

Berkeley boffins build better spear-phishing black-box bruiser

The Register - Anti-Virus - 18 Srpen, 2017 - 22:12
Machine learning and code to detect and alert attempts to extract passwords from staff

Security researchers from UC Berkeley and the Lawrence Berkeley National Laboratory in the US have come up with a way to mitigate the risk of spear-phishing in corporate environments.…

Kategorie: Viry a Červi

Vendor Exposes Backup of Chicago Voter Roll via AWS Bucket

VirusList.com - 18 Srpen, 2017 - 19:55
Voter registration data belonging to the entirety of Chicago’s electoral roll—1.8 million records—was found a week ago in an Amazon Web Services bucket.
Kategorie: Viry a Červi

How likely is a ‘digital Pearl Harbor’ attack on critical infrastructure?

Sophos Naked Security - 18 Srpen, 2017 - 18:19
The metaphor might be hyperbole, but there's real concern about the potential for attacks, warn two experts

It’s Not Exactly Open Season on the iOS Secure Enclave

VirusList.com - 18 Srpen, 2017 - 18:00
Despite yesterday's leak of the Apple iOS Secure Enclave decryption key, experts are urging calm over claims of an immediate threat to user data.
Kategorie: Viry a Červi
Syndikovat obsah