Viry a Červi

TikTok’s handling of child privacy gets another watchdog’s attention

Sophos Naked Security - 13 Květen, 2020 - 11:25
Use of the kid-addicting, video-sharing app is exploding during lockdown, triggering yet another inquiry into how safe it is for young ones.

Criminal forum trading stolen data suffers ironic data breach

Sophos Naked Security - 13 Květen, 2020 - 11:17
Someone on the dark web is touting for sale an unusual database a lot of people might pay handsomely to get their hands on.

Sadly, 111 in this story isn't binary. It's decimal. It's the number of security fixes emitted by Microsoft this week

The Register - Anti-Virus - 13 Květen, 2020 - 07:31
Nothing too scary. Plus updates from SAP, Adobe, VMware

Patch Tuesday  The May edition of Patch Tuesday landed this week. And there are scores of security fixes to install.…

Kategorie: Viry a Červi

REvil Ransomware Attack Hits A-List Celeb Law Firm

VirusList.com - 12 Květen, 2020 - 22:53
Cybercriminals used the REvil ransomware to attack a law firm used by the likes of Lady Gaga, Drake and Madonna. Now, they're threatening to leak the 756 gigabytes of stolen data.
Kategorie: Viry a Červi

Microsoft Addresses 111 Bugs for May Patch Tuesday

VirusList.com - 12 Květen, 2020 - 22:14
Important-rated EoP flaws make up the bulk of the CVEs; SharePoint continues its critical run with four worrying bugs.
Kategorie: Viry a Červi

Researchers spot thousands of Android apps leaking user data through misconfigured Firebase databases

The Register - Anti-Virus - 12 Květen, 2020 - 19:32
Take care what data you enter into apps, it may be stored insecurely

Security researchers at Comparitech have reported that an estimated 24,000 Android apps are leaking user data because of misconfigured Firebase databases.…

Kategorie: Viry a Červi

WordPress Page Builder Plugin Bugs Threaten 1 Million Sites with Full Takeover

VirusList.com - 12 Květen, 2020 - 18:03
Severe CSRF to XSS bugs open the door to code execution and complete website compromise.
Kategorie: Viry a Červi

Adobe Kills 16 Critical Flaws in Acrobat and Reader, Digital Negative SDK

VirusList.com - 12 Květen, 2020 - 18:02
Adobe patched 36 flaws, including critical vulnerabilities in Acrobat and Reader and its DNG Software Development Kit.
Kategorie: Viry a Červi

Thunderspy – why turning your computer off is a cool idea!

Sophos Naked Security - 12 Květen, 2020 - 17:01
Thunderbolt ports can provide direct access to the memory in your laptop... just how hard is it for crooks to do so when you aren't looking?

Huge toll of ransomware attacks revealed in Sophos report

Sophos Naked Security - 12 Květen, 2020 - 16:13
To understand the scope of the ransomware threat, Sophos commissioned a study into the state of ransomware 2020.

Chatbooks Confirms Breach After ‘Shiny Hunters’ Sell Data

VirusList.com - 12 Květen, 2020 - 15:56
Photo print service Chatbooks has disclosed a data breach after customers' emails, passwords and more were listed for sale on underground forums.
Kategorie: Viry a Červi

Dating app user logins found on hacking forum

Sophos Naked Security - 12 Květen, 2020 - 15:05
3.5 million user logins for the MobiFriends dating app are being offered for free on a popular dark web hackers forum.

Anubis Malware Upgrade Logs When Victims Look at Their Screens

VirusList.com - 12 Květen, 2020 - 14:47
Threat actors are cooking up new features for the sophisticated banking trojan that targets Google Android apps and devices.
Kategorie: Viry a Červi

Maze ransomware one year on – a SophosLabs report

Sophos Naked Security - 12 Květen, 2020 - 14:45
The latest SophosLabs report tells the story of how the infamous "Maze" ransomware has evolved over the past 12 months...

India releases data-use protocols for its contact-tracing app... after five weeks and 100 million downloads

The Register - Anti-Virus - 12 Květen, 2020 - 06:10
Cart, meet horse, and you can both worry about 180-day data retention

India's government has released the protocol for using data gathered by its Aarogya Setu COVID-19 tracing app, weeks after its April 2nd release and after it was downloaded almost 100 million times.…

Kategorie: Viry a Červi

Papa don't breach: Contracts, personal info on Madonna, Lady Gaga, Elton John, others swiped in celeb law firm 'hack'

The Register - Anti-Virus - 12 Květen, 2020 - 03:43
Miscreants threaten to leak 756GB of allegedly stolen paperwork

Updated  Hackers are threatening to release 756GB of A-list celebs' contracts, recording deals, and other personal info allegedly stolen from a New York law firm.…

Kategorie: Viry a Červi

Incredible how you can steal data via Thunderbolt once you've taken the PC apart, attached a flash programmer, rewritten the firmware...

The Register - Anti-Virus - 12 Květen, 2020 - 01:42
Full mitigation is buy a newer computer – or don't use suspend-to-RAM

It's possible to extract data from a computer via its Thunderbolt port – once you've got the case off, plugged in a flash programmer, and reprogrammed the controller's firmware to grant access.…

Kategorie: Viry a Červi

Astaroth’s New Evasion Tactics Make It ‘Painful to Analyze’

VirusList.com - 11 Květen, 2020 - 22:28
The infostealer has gone above and beyond in its new anti-analysis and obfuscation tactics.
Kategorie: Viry a Červi

Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection

VirusList.com - 11 Květen, 2020 - 22:19
CVE-2020-9315 and CVE-2020-9314 in iPlanet version 7 will not receive patches.
Kategorie: Viry a Červi

Millions of Thunderbolt-Equipped Devices Open to ‘ThunderSpy’ Attack

VirusList.com - 11 Květen, 2020 - 17:38
If an attacker can get his hands on a Thunderbolt-equipped device for five minutes, he can launch a new data-stealing attack called "Thunderspy."
Kategorie: Viry a Červi
Syndikovat obsah