Viry a Červi

Windows Search Bug Worth Watching, and Squashing - 14 Srpen, 2017 - 21:22
Patches are available—and should be applied—that address a critical vulnerability in Windows Search that some are calling the next WannaCry. Others aren't so ready to do that.
Kategorie: Viry a Červi

Smart Locks Bricked by Bad Update - 14 Srpen, 2017 - 20:28
LockState's CEO says he is “deeply sorry” about an erroneous wireless update that bricked hundreds of smart locks.
Kategorie: Viry a Červi

News in brief: update bricks 500 smart locks; Hutchins pleads not guilty; drone landed on warship

Sophos Naked Security - 14 Srpen, 2017 - 20:06
Your daily round-up of some of the other stories in the news

Dashboard tracks ‘desire in foreign councils’ to meddle with democracy

Sophos Naked Security - 14 Srpen, 2017 - 18:53
Project inspired by Alexander Hamilton's words is tracking Russian-linked efforts to distort news and narratives

WannaCry vanquisher Marcus Hutchins pleads not guilty to flogging banking trojan Kronos

The Register - Anti-Virus - 14 Srpen, 2017 - 18:34
Trial scheduled for October

Marcus Hutchins, the WannaCry kill-switch hero, has today pleaded not guilty to charges of creating and selling malware at a hearing in Milwaukee, Wisconsin.…

Kategorie: Viry a Červi

Researchers Find Phishing Site Encrypted with AES - 14 Srpen, 2017 - 17:20
A phishing site seeking Apple credentials and victim payment card information is encrypted with AES, researchers at Ring 0 Labs said.
Kategorie: Viry a Červi

Court records system has been open to hackers for decades

Sophos Naked Security - 14 Srpen, 2017 - 16:35
The easily exploitable and long-standing hole has finally been patched, said the Free Law Project, which set out a series of recommendations to improve the security of the system

If Anonymous 'pwnd' the Daily Stormer, they did a spectacularly awful job

The Register - Anti-Virus - 14 Srpen, 2017 - 16:32
More likely damage control after host GoDaddy pulled plug

Doubts have been cast over claims that hacktivists have taken control of neo-Nazi website the Daily Stormer.…

Kategorie: Viry a Červi

Thousands of Android-spying apps in the wild: what to do about SonicSpy

Sophos Naked Security - 14 Srpen, 2017 - 15:27
Google has done a good job of removing infected apps from the Play store, but victims are being hit from other sources

Why China’s quantum satellites do not herald ‘unhackable’ networks

Sophos Naked Security - 14 Srpen, 2017 - 14:03
Don't believe the hype - it's a much trickier engineering and physics challenge than the headlines would have you believe

Is your corporate inbox smelling a bit 'phishy' these days?

The Register - Anti-Virus - 14 Srpen, 2017 - 13:00
Yes, it’s time for another reader poll

Study  Phishing is the attempt to obtain personal, private, or commercially sensitive information or funds by impersonating a trustworthy source. Fraudsters commonly use email to quarry their pray, but messaging apps, social media, fake websites, and phone calls are frequently used too. Consumer phishing attacks still outnumber those specifically targeting businesses and institutions, but this should not lull IT and business managers into a false sense of security.…

Kategorie: Viry a Červi

Monday review – the hot 25 stories of the week

Sophos Naked Security - 14 Srpen, 2017 - 10:57
From Ariana Grande's hacking and Microsoft's out-of-band security updates to why it's time to fix localhost, and more!

Sneaky devs could abuse shared libraries to slurp smartphone data

The Register - Anti-Virus - 14 Srpen, 2017 - 05:04
Privilege escalation is baked in to mobile OSes, if you look for it

Oxford researchers reckon they've spotted the next emerging trend in Android advertising (and possibly malware): using common libraries to “collude” between apps with different privilege levels.…

Kategorie: Viry a Červi

Leaky PostgreSQL passwords plugged

The Register - Anti-Virus - 14 Srpen, 2017 - 01:58
DBAs: strap on your patching boots. Every DB in your clusters needs work

PostgreSQL has released three security patches for versions 9.6.4, 9.5.8, 9.4.13, 9.3.18, and 9.2.22.…

Kategorie: Viry a Červi

Top repo managers clone, then close, a nasty SSH vector

The Register - Anti-Virus - 14 Srpen, 2017 - 00:56
Git, Mercurial, SVN patched; CVS hasn't got around to it yet

Users of the world's most popular software version control systems can be attacked when cloning a repository over SSH.…

Kategorie: Viry a Červi

APT28 Using EternalBlue to Attack Hotels in Europe, Middle East - 12 Srpen, 2017 - 14:00
Researchers believe attacks against wi-fi systems in hotels across Europe and the Middle East track back to Russian-speaking hackers known as APT28.
Kategorie: Viry a Červi

Kremlin's hackers 'wield stolen NSA exploit to spy on hotel guests in Europe, Mid East'

The Register - Anti-Virus - 12 Srpen, 2017 - 13:21
Putin's favorite attack dogs APT28 fingered by FireEye

Russian hackers accused of ransacking the US Democratic party's servers last year may now be targeting hotels in Europe and the Middle East, it is claimed.…

Kategorie: Viry a Červi

Infosec eggheads rig USB desk lamp to leak passwords via Bluetooth

The Register - Anti-Virus - 11 Srpen, 2017 - 22:41
Malicious gadgets can snoop on keypresses, other data, through ports, it is claimed

Malicious USB gadgets can secretly spy on data flowing in and out of devices plugged into adjacent USB ports, security researchers in Australia have warned.…

Kategorie: Viry a Červi

Many Factors Conspire in ICS/SCADA Attacks - 11 Srpen, 2017 - 19:57
A report on the state of SCADA and ICS security points out that critical infrastructure operators are caught between hackers and a lack of vendor and executive support.
Kategorie: Viry a Červi
Syndikovat obsah