Viry a Červi

FBI Plans to Inform States of Election Breaches

VirusList.com - 17 Leden, 2020 - 17:56
The agency changed its policy to provide more timely and actionable information to state and local election officials in the case of a cybersecurity breach to election infrastructure.
Kategorie: Viry a Červi

Stolen creds site WeLeakInfo busted by multinational cop op for data reselling

The Register - Anti-Virus - 17 Leden, 2020 - 15:31
One Irishman and one Dutchman both nicked

Two men have been arrested after Britain’s National Crime Agency and its international pals claimed the takedown of breached credentials-reselling website WeLeakInfo.…

Kategorie: Viry a Červi

Oracle’s January 2020 update patches 334 security flaws

Sophos Naked Security - 17 Leden, 2020 - 12:31
The January 2020 update featured a joint record of 334 patches, matching an identical number released in July 2018.

Google will now accept your iPhone as an authentication key

Sophos Naked Security - 17 Leden, 2020 - 12:13
Google has updated its Smart Lock to let iOS users security-dongle-ize their iPhones.

Facial recognition is real-life ‘Black Mirror’ stuff, Ocasio-Cortez says

Sophos Naked Security - 17 Leden, 2020 - 11:59
"People think they're going to put on a cute filter and have puppy dog ears, and not realize that that data's being collected."

EDRi’s guidelines call for more ethical websites

Sophos Naked Security - 17 Leden, 2020 - 11:42
Recommendations cover areas including security and privacy while listing alternatives to free online services that slurp your users' data.

Unlocking news: We decrypt those cryptic headlines about Scottish cops bypassing smartphone encryption

The Register - Anti-Virus - 17 Leden, 2020 - 09:34
New perspective on FBI, Interpol demands for backdoors

Vid  Police Scotland to roll out encryption bypass technology, as one publication reported this week, causing some Register readers to silently mouth: what the hell?…

Kategorie: Viry a Červi

Bad news: Windows security cert SNAFU exploits are all over the web now. Also bad: Citrix gateway hole mitigations don't work for older kit

The Register - Anti-Virus - 17 Leden, 2020 - 00:13
Good news: There is none. Well, apart from you can at least fully patch the Microsoft blunder

Vid  Easy-to-use exploits have emerged online for two high-profile security vulnerabilities, namely the Windows certificate spoofing bug and the Citrix VPN gateway hole. If you haven't taken mitigation steps by now, you're about to have a bad time.…

Kategorie: Viry a Červi

Critical Cisco Flaws Now Have PoC Exploit

VirusList.com - 16 Leden, 2020 - 23:18
The flaws affect a key tool for managing its network platform and switches.
Kategorie: Viry a Červi

Google Account Security Keys Launch for iPhone

VirusList.com - 16 Leden, 2020 - 22:57
iPhone users can now use Bluetooth to secure their Google accounts.
Kategorie: Viry a Červi

Satan Ransomware Reborn to Torment Businesses

VirusList.com - 16 Leden, 2020 - 19:44
A hellish mix of features shows the 5ss5c ransomware to be the son of Satan.
Kategorie: Viry a Červi

NSA and Github ‘rickrolled’ using Windows CryptoAPI bug

Sophos Naked Security - 16 Leden, 2020 - 18:42
We said, "Assume that someone will find out how to do it pretty soon," and that's exactly what happened.

PoC Exploits Published For Microsoft Crypto Bug

VirusList.com - 16 Leden, 2020 - 17:05
Two proof-of-concept exploits were publicly released for the major Microsoft crypto-spoofing vulnerability.
Kategorie: Viry a Červi

‘Fleeceware’ Apps Downloaded 600M Times from Google Play

VirusList.com - 16 Leden, 2020 - 15:35
New research shows apps that dupe users into being charged excessively with little reward persist on the Android app store.
Kategorie: Viry a Červi

Update now! Popular WordPress plugins have password bypass flaws

Sophos Naked Security - 16 Leden, 2020 - 14:47
Researchers have discovered bad authentication bypass vulnerabilities affecting two WordPress plugins which should be patched as soon as possible.

Apps are sharing more of your data with ad industry than you may think

Sophos Naked Security - 16 Leden, 2020 - 14:43
Apps like Grindr, Tinder and Happn are (over-)sharing data about sexuality, religion, and location with a shadowy network of data brokers. And it's not just dating apps that are doing it...

Google to kill third-party Chrome cookies in two years

Sophos Naked Security - 16 Leden, 2020 - 14:20
Google doesn't want to block third-party cookies in Chrome right now. It has promised to make them obsolete later, though. Wait - what?

College students call for ban on facial recognition on campus

Sophos Naked Security - 16 Leden, 2020 - 13:57
Fight for the Future is building on its success in pressuring concert promoters to back off of plans to use the technology at festivals.

VB2019 paper: King of the hill: nation-state counterintelligence for victim deconfliction

Virus Bulletin News - 16 Leden, 2020 - 13:33
At VB2019 Juan Andres Guerrero-Saade looked at nation-state actors using threat intelligence for victim deconfliction. Today we publish both his paper and the recording of his presentation.

Read more
Kategorie: Viry a Červi
Syndikovat obsah