Viry a Červi

Barclays Bank appeared to be using the Wayback Machine as a 'CDN' for some Javascript

The Register - Anti-Virus - 3 Červenec, 2020 - 19:30
Tight-lipped bank has fixed the weirdness - but not said why it happened

Barclays Bank appears to have been using no less than the Internet Archive's Wayback Machine as a "content distribution network" to serve up a Javascript file.…

Kategorie: Viry a Červi

E.U. Authorities Crack Encryption of Massive Criminal and Murder Network - 3 Červenec, 2020 - 17:10
Four-year investigation shuts down EncroChat and busts 746 alleged criminals for planning murders, selling drugs and laundering money.
Kategorie: Viry a Červi

Facebook hoaxes back in the spotlight – what to tell your friends

Sophos Naked Security - 3 Červenec, 2020 - 17:05
At the risk of giving you a feeling of déjà vu all over again, it's time to talk about Facebook hoaxes once more.

Ring Doorbell’s Police Partnerships Questioned Over Racial Bias - 3 Červenec, 2020 - 15:00
Amazon has placed a moratorium on police use of its facial recognition platform - but a congressman asked if that extends to its Ring smart doorbell in a new inquiry.
Kategorie: Viry a Červi

Google buys AR smart-glasses company North

Sophos Naked Security - 3 Červenec, 2020 - 12:36
They're not surveillance spectacles, says Google, just a piece in the jigsaw of "ambient computing", where helpfulness is all around you.

Fighting BEC and EAC: Why whack-a-mole won’t work

The Register - Anti-Virus - 3 Červenec, 2020 - 08:00
No organisation is immune: Nearly nine in ten experienced these attacks last year

Sponsored  Business Email Compromise (BEC) and Email Account Compromise (EAC) are the most expensive cyber threats facing businesses around the globe. The FBI’s Internet Crime Complaint Center (IC3) reports that both scams have resulted in worldwide losses of $26 billion since 2016 – with $1.7 billion in the last year alone.…

Kategorie: Viry a Červi

F5 emits fixes for critical flaws in BIG-IP gear: Hopefully yours aren't internet-facing while you ready a patch

The Register - Anti-Virus - 3 Červenec, 2020 - 02:36
Not to worry, there are only *searches* several thousand devices apparently exposed online

Network administrators are urged to patch their F5 BIG-IP application delivery controllers following the disclosure of a pair of critical remote takeover bugs.…

Kategorie: Viry a Červi

Holy Guacamole! Researchers find Apache remote desktop software was silently pwnable for snooping on sessions

The Register - Anti-Virus - 3 Červenec, 2020 - 00:05
Best get updating pronto, folks

The Apache Project's popular Guacamole open-source remote desktop software contained vulns allowing remote attackers to steal login creds and hijack targeted machines, researchers have said.…

Kategorie: Viry a Červi

Euro police forces infiltrated encrypted phone biz – and now 'criminal' EncroChat users are being rounded up

The Register - Anti-Virus - 2 Červenec, 2020 - 22:56
Continental capers lead to 750 UK arrests

French and Dutch police have boasted of infiltrating and killing off encrypted chat service EncroChat, alleging it was used by organised crime gangs to plot murders, sell drugs, launder criminal profits and more.…

Kategorie: Viry a Červi

Hold off that rush into the July 4 weekend – you may need this: Microsoft patches pwn-by-picture pitfalls in Win 10

The Register - Anti-Virus - 2 Červenec, 2020 - 21:59
Redmond also praised for blocking malware control systems on its clouds

Microsoft has emitted a pair of security patches to address flaws in Windows 10 that can be potentially exploited by miscreants to hijack PCs. A victim simply needs to be tricked into opening a file containing a specially crafted image on a vulnerable system.…

Kategorie: Viry a Červi

MongoDB ransom threats step up from blackmail to full-on wiping

Sophos Naked Security - 2 Červenec, 2020 - 20:49
Still thinking "the crooks probably won't find me if I make a security blunder"?

Users who don't understand how to encrypt their emails won't do it

The Register - Anti-Virus - 2 Červenec, 2020 - 20:00
Focus on usability to avoid buyer’s remorse, Echoworx advises

Sponsored  In its raw form, email isn't the most secure channel for carrying national secrets. It was originally designed for plain text, and plenty of modern mainstream email systems still don't support encryption out of the box. So if you're someone like Edward Snowden, you'll want to make darn sure that your correspondent knows how to use encryption.…

Kategorie: Viry a Červi

Trojans, Backdoors and Droppers: The Most-Analyzed Malware - 2 Červenec, 2020 - 19:00
Even so, backdoors and droppers are rare in the wild.
Kategorie: Viry a Červi

Apache Guacamole Opens Door for Total Control of Remote Footprint - 2 Červenec, 2020 - 18:14
Several vulnerabilities can be chained together for a full exploit.
Kategorie: Viry a Červi

Facebook Privacy Glitch Gave 5K Developers Access to ‘Expired’ Data - 2 Červenec, 2020 - 18:06
Facebook has fixed a privacy issue that gave developers access to user data long after the 90-day "expiration" date.
Kategorie: Viry a Červi

FakeSpy Android Malware Spread Via ‘Postal-Service’ Apps - 2 Červenec, 2020 - 15:18
New ‘smishing’ campaigns from the Roaming Mantis threat group infect Android users with the FakeSpy infostealer.
Kategorie: Viry a Červi

Cisco SMB kit harbors cross-site scripting bug: One wrong link click... and that's your router pwned remotely

The Register - Anti-Virus - 2 Červenec, 2020 - 15:00
VPN gear vulnerable to remote hijackings

Cisco has patched a cross-site scripting vulnerability in two VPN routers it sells to small businesses and branch offices.…

Kategorie: Viry a Červi

133m records for sale as fruits of data breach spree keep raining down

Sophos Naked Security - 2 Červenec, 2020 - 12:22
Databases can be had for as little as $100, on up to $1,100. Most, if not all, are being sold by the hacking group Shiny Hunters.

Cisco Warns of High-Severity Bug in Small Business Switch Lineup - 1 Červenec, 2020 - 23:02
A high-severity flaw allows remote, unauthenticated attackers to potentially gain administrative privileges for Cisco small business switches.
Kategorie: Viry a Červi

Alina Point-of-Sale Malware Spotted in Ongoing Campaign - 1 Červenec, 2020 - 22:42
The malware is using DNS tunneling to exfiltrate payment-card data.
Kategorie: Viry a Červi
Syndikovat obsah