Viry a Červi

Another W3C API exposing users to browser snitching

The Register - Anti-Virus - 6 Říjen, 2017 - 02:56
Web Payments API bugs, or perhaps features, can be abused: Lukasz Olejnik

Yet another W3C API can be turned against the user, privacy boffin Lukasz Olejnik has warned – this time, it's in how browsers store and check credit card data.…

Kategorie: Viry a Červi

How bad can the new spying legislation be? Exhibit 1: it's called the USA Liberty Act

The Register - Anti-Virus - 6 Říjen, 2017 - 01:20
Freedom doesn't mean what you think it does

Analysis  The US Senate Judiciary Committee has unveiled its answer to a controversial spying program run by the NSA and used by the FBI to fish for crime leads.…

Kategorie: Viry a Červi

Crazy but true – Apple’s “show hint” button reveals your actual password

Sophos Naked Security - 6 Říjen, 2017 - 00:38
Apple's brand new High Sierra has a bug that sometimes stores your password as your password hint, so that the hint *is* your password!

Russian spies used Kaspersky AV to hack NSA staffer, swipe exploit code – new claim

The Register - Anti-Virus - 5 Říjen, 2017 - 22:21
Не делай из мухи слона, говорит Евгений

Russian government spies used Kaspersky Lab software to extract top-secret software exploits from an NSA staffer's home PC, anonymous sources have claimed.…

Kategorie: Viry a Červi

Net neutrality becomes a battle of the bots

Sophos Naked Security - 5 Říjen, 2017 - 20:54
Bots are drowning out humans in discussions about the future of the internet

Dumb bug of the week: Apple's macOS reveals your encrypted drive's password in the hint box

The Register - Anti-Virus - 5 Říjen, 2017 - 20:28
High Sierra update derided by devs as half-baked

Video  Apple on Thursday released a security patch for macOS High Sierra 10.13 to address vulnerabilities in Apple File System (APFS) volumes and its Keychain software.…

Kategorie: Viry a Červi

Google Timeline – bug or feature? [VIDEO]

Sophos Naked Security - 5 Říjen, 2017 - 19:29
Watch our live debate about Timeline, the Google tracking feature "you didn't know you'd switched on"...

Hackers pounce on 3 vulnerable WordPress plugins

Sophos Naked Security - 5 Říjen, 2017 - 19:11
Zero-day found in a trio of WordPress plugins

Latin American ATM Thieves Turning to Hacking - 5 Říjen, 2017 - 18:11
Thieves in Latin American countries are turning to Eastern European hackers to build ATM malware from scratch, according to a Virus Bulletin talk by researchers at Kaspersky Lab.
Kategorie: Viry a Červi

Spy vs spy vs hacker vs... who is THAT? Everyone's hacking each other

The Register - Anti-Virus - 5 Říjen, 2017 - 15:05
And it's making threat intel much, much harder, say researchers

VB2017  Intel agencies and top-tier hackers are actively hacking other hackers in order to steal victim data, borrow tools and techniques, and reuse each other's infrastructure, attendees at Virus Bulletin Con, Madrid, were told yesterday.…

Kategorie: Viry a Červi

UK cybercops reacted to 590 'significant attacks' over past year – report

The Register - Anti-Virus - 5 Říjen, 2017 - 13:33
Phishing sites only stick around in Blighty for 1 hour, they boast

The National Cyber Security Centre responded to 590 "significant attacks" over the last year including WannaCry, MPs' email addresses being targeted due to weak passwords and various threats to other large organisations.…

Kategorie: Viry a Červi

Chrome turns the screw ever tighter in Google’s encryption crusade

Sophos Naked Security - 5 Říjen, 2017 - 13:31
HTTPS is slowly becoming the rule rather than the exception

Bulletproof hosts stay online by operating out of disputed backwaters

The Register - Anti-Virus - 5 Říjen, 2017 - 12:46
Russian Business Network alumni still very much in business, research suggests

VB2017  Some bulletproof hosting (BPH) operations – wellspring of all manner of online villainy – are moving their operations to the disputed territories of eastern Ukraine and Transnistria on the Moldovan border.…

Kategorie: Viry a Červi

Inside the CCleaner Backdoor Attack - 5 Říjen, 2017 - 11:18
Two members of Avast's threat intelligence team shared new information about the CCleaner backdoor attack.
Kategorie: Viry a Červi

VB2017 preview: Beyond lexical and PDNS (guest blog)

Virus Bulletin News - 5 Říjen, 2017 - 09:55
In a special guest blog post, VB2017 Silver sponsor Cisco Umbrella writes about a paper that researchers Dhia Mahjoub and David Rodriguez will present at the conference this Friday.

Read more
Kategorie: Viry a Červi

India's national internet registry breached, but says heist was trivial

The Register - Anti-Virus - 5 Říjen, 2017 - 09:32
Local security firm says 15 Bitcoin buys enough data to take down the Indian internet

Indian antivirus and endpoint vendor Seqrite claims the nation's internet registry has suffered a data breach, but the registry's parent organisation says while it was attacked the information obtained was trivial.…

Kategorie: Viry a Červi

Attackers Redefining Objectives, Approaches - 5 Říjen, 2017 - 08:57
The nature of cyberattacks is changing and increasingly leveraging social networks as they take aim at new targets.
Kategorie: Viry a Červi

RAM, bam, awww ... man! Boffins defeat Rowhammer protections

The Register - Anti-Virus - 5 Říjen, 2017 - 03:02
New attack flips bits in uerspace binaries for fun and p0wnage

Ever since Rowhammer first emerged, there's been something of an arms race between researchers and defenders, and the boffins firing the latest shot reckon they've beaten all available protections.…

Kategorie: Viry a Červi

Open your doors to white hats before black hats blow them off, US deputy AG urges big biz

The Register - Anti-Virus - 5 Říjen, 2017 - 00:46
And don't forget to add in those backdoors, ta

The second-in-command at the US Department of Justice says every business should have its own program to let third-party researchers find and report bugs.…

Kategorie: Viry a Červi

Chips in iPhone 7s, Androids, smart TVs vulnerable to rogue Wi-Fi

Sophos Naked Security - 4 Říjen, 2017 - 21:00
Broadcom chips in iPhone 7s phones, some Android devices and smart TVs running tvOS are vulnerable
Syndikovat obsah