Viry a Červi

Zero-Days in Counter-Strike Client Used to Build Major Botnet

VirusList.com - 14 Březen, 2019 - 20:43
A full 39 percent of Counter-Strike 1.6 game servers on Steam were found to be malicious.
Kategorie: Viry a Červi

Don't be a WordPress RCE-hole and patch up this XSS vuln, pronto

The Register - Anti-Virus - 14 Březen, 2019 - 19:02
Not on 5.1.1? You should be

A newly revealed vuln in the open-source CMS WordPress allows an unauthenticated website attacker to remotely execute code – potentially letting naughty folk delete or edit blog posts.…

Kategorie: Viry a Červi

Serious Security: What we can all learn from #PiDay

Sophos Naked Security - 14 Březen, 2019 - 17:51
Pi Day isn't just about circles or special numbers - there are some cybersecurity lessons in there, too, and here they are...

Cisco Patches Critical ‘Default Password’ Bug

VirusList.com - 14 Březen, 2019 - 16:56
Vulnerability allows adversaries to access monitoring system used for gathering info on operating systems and hardware.
Kategorie: Viry a Červi

GlitchPOS Malware Appears to Steal Credit-Card Numbers

VirusList.com - 14 Březen, 2019 - 16:33
A new malware targeting point of sale systems, GlitchPOS, has been spotted on a crimeware forum.
Kategorie: Viry a Červi

Protip: If you'd rather cyber-scoundrels didn't know the contents of your comp, don't apply for a Pakistani passport

The Register - Anti-Virus - 14 Březen, 2019 - 15:36
Compromised government website slurps buttload of data about applicants

A Pakistani government website was compromised with a keylogger and other malware that hoovered up a whole host of information about people checking on their passport application status.…

Kategorie: Viry a Červi

Man drives 3,300 miles to talk to YouTube about deleted video

Sophos Naked Security - 14 Březen, 2019 - 15:19
It turns out that his wife deleted his "rambling", get-rich-quick video. The man was arrested for alleged threats.

Hackers cop a FILA thousands of UK card deets after slinking onto clothing brand's servers

The Register - Anti-Virus - 14 Březen, 2019 - 15:00
Pesky JavaScript harvester strikes again

Updated  Sportswear brand FILA is the latest outfit to fall victim to card-stealing JavaScript of the kind that menaced British Airways and Ticketmaster last year.…

Kategorie: Viry a Červi

Insider Threats Get Mean, Nasty and Very Personal

VirusList.com - 14 Březen, 2019 - 13:27
Increasingly, attackers are targeting the most vulnerable people inside companies and exploiting their weaknesses.
Kategorie: Viry a Červi

Google needs breaking up, says news chief

Sophos Naked Security - 14 Březen, 2019 - 13:03
And Oracle accused Google of creating shadow profiles of even non-users. Theirs are just two of 85 responses to an Australian inquiry.

Update now! Microsoft’s March 2019 Patch Tuesday is here

Sophos Naked Security - 14 Březen, 2019 - 12:38
If you were among the millions of users who updated Chrome last week to dodge a zero-day exploit, Microsoft has something for you in this month’s Patch Tuesday.

What do sexy selfies, search warrants, tax files have in common? They've all been found on resold USB sticks

The Register - Anti-Virus - 14 Březen, 2019 - 07:58
You do know just dragging stuff to the delete folder doesn't wipe stuff, right? Apparently not

About two-thirds of USB memory sticks bought secondhand in the US and UK have recoverable and sometimes sensitive data, and in one-fifth of the devices studied, the past owner could be identified.…

Kategorie: Viry a Červi

Thought you were done patching this week? Not if you're using an Intel-powered PC or server

The Register - Anti-Virus - 14 Březen, 2019 - 01:51
Here comes Chipzilla with a big bunch of security fixes for graphics drivers, server and workstation firmware, and more

Hot on the heels of this month's security updates from Microsoft, Adobe, and SAP, Intel has kicked out a batch of its own bug patches.…

Kategorie: Viry a Červi

Purveyor of Cracked Netflix, Hulu, Spotify Accounts Arrested

VirusList.com - 13 Březen, 2019 - 20:44
A Sydney man is accused of selling nearly 1 million compromised accounts, for a significant profit.
Kategorie: Viry a Červi

Just Android things: 150m phones, gadgets installed 'adware-ridden' mobe simulator games

The Register - Anti-Virus - 13 Březen, 2019 - 20:33
Devs may have been duped into using dodgy SDK, tut-tuts infosec biz

Android adware found its way into as many as 150 million devices – after it was stashed inside a large number of those bizarre viral mundane job simulation games, we're told.…

Kategorie: Viry a Červi

Intel Windows 10 Graphics Drivers Riddled With Flaws

VirusList.com - 13 Březen, 2019 - 19:29
Intel has patched several high-severity vulnerabilities in its graphics drivers for Windows 10, which could lead to code execution.
Kategorie: Viry a Červi

Open-source 64-ish-bit serial number gen snafu sparks TLS security cert revoke runaround

The Register - Anti-Virus - 13 Březen, 2019 - 19:12
64 bits of cert ID on the wall, 64 bits of ID. Take the top bit down, don't pass it around, 63 bits of cert ID on the wall...

A bunfight over a controversial UAE mobile security company led to the discovery that millions of TLS security certificates have been improperly issued – thanks to a dodgy default configuration in popular certificate authority (CA) management software.…

Kategorie: Viry a Červi

MAGA ‘Safe Space’ App Developer Threatens Security Researcher

VirusList.com - 13 Březen, 2019 - 16:58
The mobile app, dubbed a "Yelp for Conservatives," was found with an open API leaking reams of user data.
Kategorie: Viry a Červi

Three Ways DNS is Weaponized and How to Mitigate the Risk

VirusList.com - 13 Březen, 2019 - 16:23
Why are hackers using the DNS infrastructure against us? The answer is more complex than you might think.
Kategorie: Viry a Červi

Threat Groups SandCat, FruityArmor Exploiting Microsoft Win32k Flaw

VirusList.com - 13 Březen, 2019 - 15:15
Newly patched CVE-2019-0797 is being actively exploited by two APTs, FruityArmor and SandCat.
Kategorie: Viry a Červi
Syndikovat obsah