Viry a Červi

Microsoft Patches A Pair of Zero-Days Under Active Attack - 9 Červenec, 2019 - 22:04
The software giant also addressed 15 critical flaws and advised on the recently disclosed Linux Kernel "SACK Panic" bug.
Kategorie: Viry a Červi

Huawei website ████ ██████ security flaws ██████ customer info and biz operations at risk: ███████ patched

The Register - Anti-Virus - 9 Červenec, 2019 - 21:40
Is this the Chinese giant's Winnie the Pooh moment?

Huawei has gagged infosec researchers from discussing now-patched critical vulnerabilities in the Chinese giant's web systems that could have been exploited to steal customer information and derail the manufacturer's operations.…

Kategorie: Viry a Červi

Marriott's got 99 million problems and the ICO's one: Starwood hack mega-fine looms over

The Register - Anti-Virus - 9 Červenec, 2019 - 20:15
Technically not yet A Thing but there's a war of words over it

The UK's Information Commissioner's Office wants to fine Marriott Hotels £99m over its loss of 383 million customer booking records last year.…

Kategorie: Viry a Červi

1,300 Popular Android Apps Access Data Without Proper Permissions - 9 Červenec, 2019 - 19:07
Study finds Android apps circumvented privacy opt-in rules and collected sensitive user information against user permission.
Kategorie: Viry a Červi

'This repository is private' – so what's it doing on the public internet, GE Aviation?

The Register - Anti-Virus - 9 Červenec, 2019 - 18:45
DNS config snafu bares Jenkins instance contents to world+dog

GE Aviation managed to expose a pile of its private keys on a misconfigured Jenkins instance that was exposed to the public internet, according to a security researcher who found it through Shodan.…

Kategorie: Viry a Červi

Zoom flaw could force you into a meeting, expose your video feed

Sophos Naked Security - 9 Červenec, 2019 - 18:28
Its local web server reportedly also automatically reinstalls Zoom if a user removes the app and joins a meeting.

Marriott Hit With $123M Fine For Massive 2018 Data Breach - 9 Červenec, 2019 - 18:00
The data breach fine against Marriott by the Information Commissioner's Office comes a day after British Airways was also penalized.
Kategorie: Viry a Červi

Zoom Zero-Day Bug Opens Mac Users to Webcam Hijacking - 9 Červenec, 2019 - 17:35
The vulnerability can be exploited on a drive-by basis by a malicious website.
Kategorie: Viry a Červi

Backdoor discovered in Ruby strong_password library

Sophos Naked Security - 9 Červenec, 2019 - 16:11
An eagle-eyed developer has discovered a backdoor recently sneaked into a library (or ‘gem’) used by Ruby on Rails (RoR) web apps to check password strength.

Rapid Incident Response Now Available through Cynet’s Free IR Service Providers Offering - 9 Červenec, 2019 - 15:00
Cynet's 360 platform is ready out-of-the-box, for fast, easy deployment across all endpoints.
Kategorie: Viry a Červi

Boffins ready to go live with system that will track creatures great and small from space

The Register - Anti-Virus - 9 Červenec, 2019 - 15:00
From elephants to fish, there's no GDPR in the animal kingdom

Boffins at the Max Planck Institute for Ornithology are finally ready to switch on Icarus – a system that will track the migration of animals by using an antenna installed at the International Space Station (ISS).…

Kategorie: Viry a Červi

Anyone for unintended ChatRoulette? Zoom installs hidden Mac web server to allow auto-join video conferencing

The Register - Anti-Virus - 9 Červenec, 2019 - 14:15
'A legitimate solution to a poor user experience'

Updated  Zoom Video Communications, whose web conferencing service is used by millions, is under fire for installing a hidden web server on Macs in order to bypass user consent when joining a meeting.…

Kategorie: Viry a Červi

Two pentesters, one glitch: Firefox browser menaced by ancient file-snaffling bug, er, feature

The Register - Anti-Virus - 9 Červenec, 2019 - 13:00
Forgive the sins of the fathers: Mozilla to have another go at tackling teenage flaw

Mozilla has been sitting on a new variant of an age-old flaw for almost a year, even with public disclosure happening back in January.…

Kategorie: Viry a Červi

Google suspends Trends emails after revealing murder suspect’s name

Sophos Naked Security - 9 Červenec, 2019 - 12:07
People subscribed to Google Trends in New Zealand were emailed the murder suspect's name in violation of a New Zealand court's order.

Firefox to include tracker blocking report feature

Sophos Naked Security - 9 Červenec, 2019 - 11:51
Mozilla has introduced a lot of tracker blocking protections into Firefox lately. Now, it is planning a new feature that will let you see how many online snoopers you’ve successfully evaded. A new feature called the Tracking Protections Panel (aka the Protection Report) will tell users how many trackers Firefox blocked in the prior week, […]

Apple aims privacy billboard at Google’s controversial smart-city

Sophos Naked Security - 9 Červenec, 2019 - 11:35
It's outside of Sidewalk Labs HQ in Toronto, where Google's sister company is working on stuffing the city with data-collecting sensors.

Meet the Great Duke of... DLL: Microsoft shines light on Astaroth, a devilishly sneaky strain of fileless malware

The Register - Anti-Virus - 8 Červenec, 2019 - 23:38
DLL or no DLL?

Microsoft has lifted the lid on the inner-workings of a particularly nasty piece of fileless malware that aims to pilfer user data without needing to install software on the victim's machine.…

Kategorie: Viry a Červi

GE Aviation Passwords, Source Code Exposed in Open Jenkins Server - 8 Červenec, 2019 - 22:39
A DNS misconfiguration resulted in an open Jenkins server being available to all.
Kategorie: Viry a Červi

Rules-Based Policy Approaches Need to Go - 8 Červenec, 2019 - 22:07
A zero-trust model is the only way to keep up with today's digital complexities.
Kategorie: Viry a Červi

Dear El Reg, Will Windows 10 break my VPN? I read it on the web so it must be true

The Register - Anti-Virus - 8 Červenec, 2019 - 21:52
In summary: Nice try, Redmond, but you'll have to try harder to upset folks

Microsoft's latest official Windows 10 update, OS Build 18362.207, from June 27, 2019, can potentially break your VPN. But it probably won't because it's an edge case that can be expected to affect very few people.…

Kategorie: Viry a Červi
Syndikovat obsah