Threatpost

Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 1 min 26 sek zpět

Microsoft Makes it Official, Cuts off SHA-1 Support in IE, Edge

10 Květen, 2017 - 19:09
Yesterday’s Patch Tuesday release also included an update to Microsoft’s Internet Explorer and Edge browsers officially ending support for the SHA-1 hash function.
Kategorie: Hacking & Security

Cisco Patches IOS XE Vulnerability Leaked in Vault 7 Dump

10 Květen, 2017 - 16:10
Cisco released an update that patches a vulnerability in the CMP processing code running in its IOS and IOS XE software in more than 300 of its switches.
Kategorie: Hacking & Security

Microsoft Plugs Three Zero Day Holes as Part of May Patch Tuesday

9 Květen, 2017 - 23:16
Microsoft patched three zero day vulnerabilities actively under attack today as part of its May Patch Tuesday release.
Kategorie: Hacking & Security

Google’s OSS-Fuzz Finds 1,000 Open Source Bugs

9 Květen, 2017 - 22:41
Google said Tuesday that its OSS-Fuzz project has unearthed over 1,000 bugs, a quarter of them potential security vulnerabilities.
Kategorie: Hacking & Security

Adobe Patches Seven Critical Vulnerabilities in Flash, AEM

9 Květen, 2017 - 18:16
Adobe fixed eight vulnerabilities, seven critical, in Flash Player and Adobe Experience Manager (AEM) Forms product as part of its regularly scheduled updates Tuesday morning.
Kategorie: Hacking & Security

Emergency Update Patches Zero Day in Microsoft Malware Protection Engine

9 Květen, 2017 - 15:12
Microsoft released an emergency update for a zero-day vulnerability disclosed by Google in the Microsoft Malware Protection Engine bundled with most versions of Windows.
Kategorie: Hacking & Security

Hikvision Patches Backdoor in IP Cameras

8 Květen, 2017 - 20:56
Hikvision recently patched a backdoor in a slew of its cameras that could have made it possible for a remote attacker to gain full admin access to affected devices.
Kategorie: Hacking & Security

HandBrake for Mac Compromised with Proton Spyware

8 Květen, 2017 - 19:55
The open source HandBrake project is warning anyone who recently downloaded the Mac version of the software that they’re likely infected with malware.
Kategorie: Hacking & Security

Wormable Windows Zero Day Reported to Microsoft

8 Květen, 2017 - 17:28
Google Project Zero researchers Tavis Ormandy and Natalie Silvanovich found a remotely exploitable Windows vulnerability that Ormandy called he worst in recent memory.
Kategorie: Hacking & Security

Researchers Disclose Intel AMT Flaw Research

6 Květen, 2017 - 00:17
Security firm Embedi releases further details on the Intel AMT flaw, revealing how it can be exploited and how potentially dangerous it can be.
Kategorie: Hacking & Security

Supply Chain Update Software Unknowingly Used in Attacks

5 Květen, 2017 - 20:11
Microsoft shuts down hackers who hijacked a software updater with fileless, or in-memory, malware attacks.
Kategorie: Hacking & Security

Ultrasonic Beacons Are Tracking Your Every Movement

5 Květen, 2017 - 19:32
More than 200 Android mobile applications listen surreptitiously for ultrasonic beacons embedded in audio that are used to track users and serve them with targeted advertising.
Kategorie: Hacking & Security

Threatpost News Wrap, May 5, 2017

5 Květen, 2017 - 16:45
The news of the week is discussed, including the Gmail/Google Docs phishing attack, the Intel AMT vulnerability, IBM's malware-laden USB drives, and drone security.
Kategorie: Hacking & Security

Business Email Compromise Losses Up 2,370 Percent Since 2015

5 Květen, 2017 - 15:15
The FBI says Business Email Compromise scams are growing at astronomical rates, and businesses have lost $5.3 billion since 2013; $346 million in the U.S. alone in the second half of 2016.
Kategorie: Hacking & Security

Carbanak Attackers Devise Clever New Persistence Trick

5 Květen, 2017 - 12:00
Hackers behind the Carbanak criminal gang have devised a clever way to gain persistence on targeted systems to more effectively pull off financially motivated crimes.
Kategorie: Hacking & Security

Stealthy RAT Targeting North Korea Since 2014

4 Květen, 2017 - 21:55
Cisco has uncovered a remote administration tool called Konni that it says has been used in attacks against government agencies and public organizations linked to North Korea.
Kategorie: Hacking & Security

Many Commercial Drones ‘Insecure by Design’

4 Květen, 2017 - 21:54
Drones, many readily available on e-commerce shops like Amazon, are plagued by vulnerabilities that could give attackers full root access to the device, read or delete files, or crash the device.
Kategorie: Hacking & Security

1 Million Gmail Users Impacted by Google Docs Phishing Attack

4 Květen, 2017 - 19:34
Researchers said good social engineering and users’ trust in the convenience afforded by the OAUTH mechanism guaranteed Wednesday’s Google Docs phishing attacks would spread quickly.
Kategorie: Hacking & Security

Blackmoon Banking Trojan Using New Infection Technique

4 Květen, 2017 - 19:32
Security researchers say the Blackmoon banking Trojan targeting exclusively South Korean financial institutions has developed a new malware infection technique.
Kategorie: Hacking & Security

Unpatched WordPress Password Reset Vulnerability Lingers

4 Květen, 2017 - 18:46
A zero day vulnerability exists in WordPress Core that in some instances, could allow an attacker to reset a user's password and in turn, gain access to their account.
Kategorie: Hacking & Security