Viry a Červi

WannaCry shows we need to understand why organizations don't patch

Virus Bulletin News - 17 Květen, 2017 - 08:55
Perhaps the question we should be asking about WannaCry is not "why do so many organizations allow unpatched machines to exist on their networks?" but "why doesn't patching work reasonably well most of the time?"

Read more
Kategorie: Viry a Červi

IoT needs security, says Microsoft without even a small trace of irony

The Register - Anti-Virus - 17 Květen, 2017 - 06:58
Sysadmins, don't hurt your necks shaking your heads

Still reeling from criticism over the WannaCrypt attack, Microsoft has stuck its hat on a stick and raised it out of the trench to see how its proposals for Internet of Things security might be received.…

Kategorie: Viry a Červi

Chrome on Windows has credential theft bug

The Register - Anti-Virus - 17 Květen, 2017 - 04:09
.SCF files present ID, password to fetch icons for attack file

Google's Chrome team is working to fix a credential theft bug that strikes if the browser is running on Microsoft Windows.…

Kategorie: Viry a Červi

Cisco warns: Some products might have WannaCrypt vuln

The Register - Anti-Virus - 17 Květen, 2017 - 02:10
To other vendors using embedded Windows: where are your warnings and patches?

Here's why infosec needs to quit yelling “if you didn't patch it's your fault” about WannaCrypt: Cisco has announced it's investigating which of its products can't be patched against the ransomware.…

Kategorie: Viry a Červi

WannaCry: the ransomware worm that didn’t arrive on a phishing hook

Sophos Naked Security - 17 Květen, 2017 - 01:25
Email doesn't seem to have been the initial vector for WannaCry, which initially took hold in south-east Asia

Bell Canada hacked: 2m account details swiped by mystery miscreants

The Register - Anti-Virus - 16 Květen, 2017 - 23:26
Don't worry, no bank card info taken, eh

Bell Canada said Tuesday 1.9 million customer account details were swiped by hackers – although stressed no payment card numbers or passwords were slurped.…

Kategorie: Viry a Červi

DocuSign Phishing Campaign Includes Hancitor Downloader - 16 Květen, 2017 - 20:38
DocuSign warns of a breach and subsequent theft of email addresses that are part of a phishing campaign that employs malicious macro-laced Word documents.
Kategorie: Viry a Červi

French fling fun-sized fine at Facebook for freakin' following folk

The Register - Anti-Virus - 16 Květen, 2017 - 20:26
And it's going to get a whole lot worse for Zuckerberg and pals

Facebook has been fined the maximum possible amount – €150,000 ($166,000) – by France's data protection watchdog for gathering information on internet users without their permission.…

Kategorie: Viry a Červi

Apple Patches Pwn2Own Vulnerabilities in Safari, macOS, iOS - 16 Květen, 2017 - 19:56
Apple fixed 66 vulnerabilities - many found at March's Pwn2Own competition - across seven product lines, including Safari, iTunes, macOS, and iOS, on Monday.
Kategorie: Viry a Červi

News in brief: Depp film stolen by hackers; Facebook fined again; social media blocked in Ukraine

Sophos Naked Security - 16 Květen, 2017 - 19:55
Your daily round-up of some of the other stories in the news

Security shield slingers are loving Prez Trump's cybersecurity order

The Register - Anti-Virus - 16 Květen, 2017 - 19:55
Meanwhile, Fed heads have their work cut out for them

US President Donald Trump's cybersecurity executive order, signed on Thursday after a series of delays, will make federal agency heads accountable for protecting their networks.…

Kategorie: Viry a Červi

Concern at how patient data was shared with Google

Sophos Naked Security - 16 Květen, 2017 - 19:07
Passing the patient records to the Google-owned company to help it build a health app as 'inappropriate', warns watchdog

WannaCry Shares Code with Lazarus APT Samples - 16 Květen, 2017 - 17:45
Experts have confirmed there are similarities between code used by the ransomware WannaCry and the Lazarus APT.
Kategorie: Viry a Červi

WannaCrypt 'may be the work of North Korea' theory floated

The Register - Anti-Virus - 16 Květen, 2017 - 16:39
Lazarus rising again... or not

Security researchers are exploring the theory that the WannaCrypt ransomware might be the work of an infamous North Korean government-backed hacking crew.…

Kategorie: Viry a Červi

FTC launches crackdown on tech support scammers

Sophos Naked Security - 16 Květen, 2017 - 16:06
Scammers get away with stealing an average of $290 - don't be their next victim. Here's our advice on how to spot them and avoid them

Cryptocurrency miner found armed with same exploits as WannaCrypt

The Register - Anti-Virus - 16 Květen, 2017 - 16:03
Adylkuzz predates ransomware by at least a week – and pays better too

The now infamous Windows vulnerability (MS17-010) exploited by the WannaCrypt ransomware has also been abused to spread another type of malware, specifically a cryptocurrency miner.…

Kategorie: Viry a Červi

Chrome Browser Hack Opens Door to Credential Theft - 16 Květen, 2017 - 16:00
Researchers at DefenseCode claim a vulnerability in Google’s Chrome browser allows hackers to steal credentials and launch SMB relay attacks.
Kategorie: Viry a Červi

Do we need Windows patch legislation?

The Register - Anti-Virus - 16 Květen, 2017 - 15:32
Should vendors be obliged to maintain ageing, unsafe PCs?

Poll  Microsoft has got off remarkably lightly from WannaCry, as the finger pointing between Whitehall and NHS trusts began. But that might be beginning to change.…

Kategorie: Viry a Červi

ShadowBrokers Planning Monthly Exploit, Data Dump Service - 16 Květen, 2017 - 14:30
The latest rant from the ShadowBrokers ends with news of a subscription service starting in June that will leak exploits and stolen data to paying customers.
Kategorie: Viry a Červi

Sleep trackers: more of a data nightmare than a data dream?

Sophos Naked Security - 16 Květen, 2017 - 13:15
Do you drift off each night with an app? Take what it says with a pinch of salt, says the researcher who tried out 10 of them
Syndikovat obsah