Viry a Červi

WordPress Plugins Exploited in Ongoing Attack, Researchers Warn - 23 Srpen, 2019 - 21:30
Researchers warn users of several plugins to update as vulnerabilities are being actively exploited to redirect website visitor traffic.
Kategorie: Viry a Červi

Security gone in 600 seconds: Make-me-admin hole found in Lenovo Windows laptop crapware. Delete it now

The Register - Anti-Virus - 23 Srpen, 2019 - 20:14
Solution Centre WONTFIX amid EOL date shenanigans

Not only has a vulnerability been found in Lenovo Solution Centre (LSC), but the laptop maker fiddled with end-of-life dates to make it seem less important – and is now telling the world it EOL'd the vulnerable monitoring software before its final version was released.…

Kategorie: Viry a Červi

News Wrap: Linux Utility Backdoor, Steam Zero Day Disclosure Drama - 23 Srpen, 2019 - 18:38
From a backdoor placed in the Webmin utility to vulnerability disclosure drama around zero-days in Valve's Steam gaming clients, Threatpost breaks down this week's top stories.
Kategorie: Viry a Červi

Lenovo High-Severity Bug Found in Pre-Installed Software - 23 Srpen, 2019 - 18:00
Security researchers at Pen Test Partners have found a privilege escalation flaw in the much-maligned Lenovo Solution Center software.
Kategorie: Viry a Červi

Cybercrook hands cops £923k in Bitcoin made from selling phished deets on the dark web

The Register - Anti-Virus - 23 Srpen, 2019 - 17:30
27-year-old also shipped weed, flogged 'how-to' fraud guides

A hacker from Kent, England, has handed over almost a million quid in Bitcoin following a lengthy police investigation.…

Kategorie: Viry a Červi

Instagram phishing uses 2FA as a lure

Sophos Naked Security - 23 Srpen, 2019 - 16:08
If the phishing page looks OK, and it has an HTTPS padlock, how are you supposed to spot phishes these days? Read our tips...

‘Privacy policy change’ hoax infects Instagram; it confirms it’s crud

Sophos Naked Security - 23 Srpen, 2019 - 13:38
Multiple celebs fell for this one. Don't believe them - it's as much as a hoax as it's always been.

Bumper Cisco patches fix four new ‘critical’ vulnerabilities

Sophos Naked Security - 23 Srpen, 2019 - 12:45
Cisco just issued some urgent patching homework in the form of 31 security fixes, 4 of them for flaws rated ‘critical’.

GitHub upgrades two-factor authentication with WebAuthn support

The Register - Anti-Virus - 23 Srpen, 2019 - 10:08
Standard enables more security key options with passwordless a future possibility

GitHub has announced support for the Web Authentication (WebAuthn) security standard.…

Kategorie: Viry a Červi

Steam cleaned of zero-day security holes after Valve turned off by bug bounty snub outrage

The Register - Anti-Virus - 23 Srpen, 2019 - 01:14
Security bod may be invited back into vuln reward program, Half-Life 3 still ain't happening

Games giant Valve is attempting to make nice with the infosec bod who disclosed zero-day exploits for vulnerabilities in Steam after the corporation refused to pay out bug bounties for the flaws.…

Kategorie: Viry a Červi

As browser rivals block third-party tracking, Google pitches 'Privacy Sandbox' peace plan

The Register - Anti-Virus - 22 Srpen, 2019 - 23:14
Disclaimer: No advertisers were harmed in making this project

On Thursday, Google reminded everyone who might have forgotten that "privacy is paramount to us" and announced an initiative called "Privacy Sandbox" that proposes paving over a few privacy pitfalls without suffocating its ad business.…

Kategorie: Viry a Červi

Quick thinking by Portland Public Schools stops $2.9m BEC scam

Sophos Naked Security - 22 Srpen, 2019 - 22:18
Employees at Portland Public Schools were breathing easier this week after thwarting a business email compromise (BEC) scam that could have cost them almost $3m.

Google Launches Open-Source Browser Extension for Ad Transparency - 22 Srpen, 2019 - 21:47
Google introduced a new initiative that it hopes will fight shady online advertising practices such as digital fingerprinting.
Kategorie: Viry a Červi

Humans may have been listening to you via your Xbox

Sophos Naked Security - 22 Srpen, 2019 - 21:17
Microsoft has given audio clips to contractors for years, but it says it recently stopped. ... For the most part.

Contacts-slurping Android malware sneaked onto Google Play store – twice

The Register - Anti-Virus - 22 Srpen, 2019 - 19:30
Could a simple automated scan have picked up open-source nasty? Hmm

Android spyware – open-source spyware, no less – has found its way onto the Google Play store, according to researchers from ESET.…

Kategorie: Viry a Červi

Building a Mobile Defense: 5 Key Questions to Ask - 22 Srpen, 2019 - 18:27
Willie Sutton and mobile attackers have much in common -- but defenses have evolved since the famous bank robber had his heyday.
Kategorie: Viry a Červi

Spyware App on Google Play Gets Boot, Returns Days Later - 22 Srpen, 2019 - 16:16
The app purported to stream music - but actually siphoned victims' device contacts and files.
Kategorie: Viry a Červi

Shhh! Microsoft, Intel, Google and more sign up to the Confidential Computing Consortium

The Register - Anti-Virus - 22 Srpen, 2019 - 14:15
You can make your own joke about foxes and hen houses...

The Linux Foundation has signed up the likes of Microsoft and Google for its Confidential Computing Consortium, a group with the laudable goal of securing sensitive data.…

Kategorie: Viry a Červi

S2 Ep5: Phishing, eavesdropping voice assistants and quick fire questions – Naked Security Podcast

Sophos Naked Security - 22 Srpen, 2019 - 13:53
Episode 5 of the Naked Security Podcast is now live - listen now!

Facebook delivers ‘clear history’ tool that doesn’t ‘clear’ anything

Sophos Naked Security - 22 Srpen, 2019 - 13:02
The new feature “disconnects,” but doesn't delete, your browsing history. Facebook will still use it for analytics.
Syndikovat obsah