Threatpost

Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 12 min 22 sek zpět

Critical Apple Login Bug Puts macOS High Sierra Systems at Risk

29 Listopad, 2017 - 02:47
A major bug in Apple’s macOS High Sierra gives anyone with physical access to a system running the latest version of the OS root access simply by putting "root" in the user name field.
Kategorie: Hacking & Security

Leaky AWS Storage Bucket Spills Military Secrets, Again

28 Listopad, 2017 - 23:11
For the second time in ten days, researchers at UpGuard released sensitive data belonging to the United States Defense Department that was stored insecurely online.
Kategorie: Hacking & Security

Google Detects and Boots Tizi Spyware Off Google Play

28 Listopad, 2017 - 18:40
Google discovered a spyware app that uses nearly a dozen old vulnerabilities to root devices and steal sensitive data from social media applications.
Kategorie: Hacking & Security

Imgur Confirms 2014 Breach of 1.7 Million User Accounts

27 Listopad, 2017 - 19:17
Researcher Troy Hunt is credited for tipping image sharing site Imgur off to a 2014 breach of 1.7 million user accounts.
Kategorie: Hacking & Security

Newly Published Exploit Code Used to Spread Mirai Variant

27 Listopad, 2017 - 15:06
Qihoo 360 Netlab researchers reported on Friday that they are tracking an uptick in activity associated with what it said is a variant of the Mirai botnet.
Kategorie: Hacking & Security

SAML Post-Intrusion Attack Mirrors ‘Golden Ticket’

24 Listopad, 2017 - 16:39
A proof-of-concept attack demonstrates how adversaries can abuse the Security Assertion Markup Language framework to go unnoticed and assume multiple user identities.
Kategorie: Hacking & Security

HP to Patch Bug Impacting 50 Enterprise Printer Models

22 Listopad, 2017 - 19:22
HP said dozens of enterprise-class printer models will receive a patch for an arbitrary code execution vulnerability sometime this week.
Kategorie: Hacking & Security

Uber Reveals 2016 Breach of 57 Million User Accounts

22 Listopad, 2017 - 06:40
Uber CEO said a 2016 data breach that exposed 57 million Uber user accounts and a subsequent payment of $100,000 to a hacker to delete data and keep it a secret is inexcusable.
Kategorie: Hacking & Security

Intel Patches CPU Bugs Impacting Millions of PCs, Servers

21 Listopad, 2017 - 21:03
Intel released eight patches for vulnerabilities in remote management software and firmware that could allow local adversaries to elevate privileges, run arbitrary code, crash systems and eavesdrop on communications.
Kategorie: Hacking & Security

US-CERT Warns of ASLR Implementation Flaw In Windows

20 Listopad, 2017 - 23:30
US-CERT is warning of a vulnerability in Microsoft’s implementation of Address Space Layout Randomization that affects Windows 8, Windows 8.1 and Windows 10.
Kategorie: Hacking & Security

CENTCOM Says Massive Data Cache Found on Leaky Server is Benign

20 Listopad, 2017 - 19:15
Pentagon contractor left 1.8 billion mostly benign publicly accessible social-media posts scraped from the internet on a publicly accessible Amazon storage bucket.
Kategorie: Hacking & Security

The First Threatpost Alumni Podcast

20 Listopad, 2017 - 14:00
With Mike Mimoso leaving Threatpost, it was high time to get many of the people responsible for the site's success throughout the years together for a podcast. Founding editors Ryan Naraine and Dennis Fisher along with Mike, Chris Brook, Brian Donohue and Christen Gentile are aboard for a memorable all-smiles podcast. 
Kategorie: Hacking & Security

Multiple Vulnerabilities in LibXL Library Open Door to RCE Attacks

17 Listopad, 2017 - 22:50
Hackers using a specially crafted XLS files can trigger several remote code execution vulnerabilities in the LibXL library.
Kategorie: Hacking & Security

Amazon Promises Fix to Stop Key Service Hack

17 Listopad, 2017 - 19:59
Amazon said it will offer a fix for its Amazon Key delivery service that allows hackers to tamper with a home security camera.
Kategorie: Hacking & Security