Viry a Červi

Google Fixes Critical Android RCE Flaw

VirusList.com - 7 Leden, 2020 - 21:50
Google's first security update of 2020 addressed seven high and critical severity Android flaws.
Kategorie: Viry a Červi

Yeah, says Google Project Zero, when you think about it, going public with exploit deets immediately after a patch is emitted isn't such a great idea

The Register - Anti-Virus - 7 Leden, 2020 - 21:22
The Chocolate Factory's bug hunters revise 90-day disclosure rules

Patting itself on its back for motivating software makers to fix 97.7 per cent of the vulnerabilities it identifies within its 90-day disclosure deadline, Google's bug-hunting unit Project Zero has decided to ease up on those racing to patch their flawed products.…

Kategorie: Viry a Červi

Sodinokibi Ransomware Behind Travelex Fiasco: Report

VirusList.com - 7 Leden, 2020 - 18:04
Researchers suspect the cybercriminals attacked using an unpatched critical vulnerability in the company's seven Pulse Secure VPN servers.
Kategorie: Viry a Červi

Accenture pays for CSS injection from Symantec parent Broadcom: Yep, it bought its cybersecurity services arm

The Register - Anti-Virus - 7 Leden, 2020 - 17:47
Price tag undisclosed but we're guessing it won't have made seller rich

Symantec’s parent Broadcom has offloaded its Cyber Security Services (CSS) operation to Accenture for an undisclosed sum.…

Kategorie: Viry a Červi

FBI Taps Apple to Unlock Pensacola Shooter’s iPhone

VirusList.com - 7 Leden, 2020 - 16:43
It's unclear yet whether the Cupertino giant will assist, given past history of court battles over such incidents.
Kategorie: Viry a Červi

Facebook Cracks Down on Deepfake Videos

VirusList.com - 7 Leden, 2020 - 15:27
Despite the difficulties of identifying deepfakes, social media sites are recognizing the need to crack down on the manipulated, misleading videos.
Kategorie: Viry a Červi

Wheelie bad end to 2019 for Canyon Bicycles as hackers puncture IT systems

The Register - Anti-Virus - 7 Leden, 2020 - 14:30
CEO confirms servers, software locked by perps

German cycle-maker Canyon Bicycles GmbH has confirmed it was the victim of a security break-in over the holiday period that has all the hallmarks of a ransomware attack with parts of the infrastructure padlocked by the perpetrators.…

Kategorie: Viry a Červi

Google suspends Xiaomi from Home Hub over camera privacy glitch

Sophos Naked Security - 7 Leden, 2020 - 13:51
A user reported to Google that he was seeing images from other people's devices.

‘Maze’ ransomware threatens data exposure unless $6m ransom paid

Sophos Naked Security - 7 Leden, 2020 - 13:35
US cable and wire manufacturer, Southwire, last week filed a civil suit against Maze’s mysterious makers in Georgia Federal court.

I'm the queen of Gibraltar and will never get a traffic ticket... just two of the things <i>anyone</i> could have written into country's laws thanks to unsanitised SQL input vuln

The Register - Anti-Virus - 7 Leden, 2020 - 13:27
Run sqlmap, edit online statutes, gain immunity for life?

Exclusive  An SQL injection vulnerability in the Government of Gibraltar's website paved the way for any old Joe to rewrite official web versions of the British Overseas Territory's laws.…

Kategorie: Viry a Červi

IT exec sets up fake biz to scam his employer out of $6m

Sophos Naked Security - 7 Leden, 2020 - 12:45
He cooked up an IT vendor, its invoices, its vapor-gear, and the phantom employees who never showed up to do all those services.

US military branches ban TikTok following Pentagon’s warning

Sophos Naked Security - 7 Leden, 2020 - 12:11
The latest attempt to prove it's not under China's thumb: TikTok's first transparency report.

Here we go again: Software nasties slip into Google Play, exploit make-me-root Android flaw for maximum pwnage

The Register - Anti-Virus - 7 Leden, 2020 - 07:53
Apps spotted abusing use-after-free() bug seven months before patch

At least three malicious apps with device-hijacking exploits have made it onto the Google Play Store in recent weeks.…

Kategorie: Viry a Červi

ToTok Returned to Google Play Despite ‘Spy Tool’ Claims

VirusList.com - 6 Leden, 2020 - 22:48
The communications app faces continued backlash after a New York Times report said it was used as a government spying tool.
Kategorie: Viry a Červi

Magecart Hits Parents and Students via Blue Bear Attack

VirusList.com - 6 Leden, 2020 - 22:47
The latest attack takes aim at a vertical-specific e-commerce platform.
Kategorie: Viry a Červi

Cyber-warnings, cyber-speculation over cyber-Iran's cyber-retaliation cyber-plans post-Soleimani assassination

The Register - Anti-Virus - 6 Leden, 2020 - 21:48
Experts reckon regional infrastructure is in the cross-hairs

With tensions soaring between America and Iran following the drone strike that killed top Persian general Qassem Soleimani, experts are weighing in on what the US could face should the Mid-East nation fully mobilize its cyber resources.…

Kategorie: Viry a Červi

DeathRansom Campaign Linked to Malware Cornucopia

VirusList.com - 6 Leden, 2020 - 18:13
One threat actor appears to be behind several ongoing, related campaigns.
Kategorie: Viry a Červi

Don’t fall for the “Start your 2020 with a gift from us” scam…

Sophos Naked Security - 6 Leden, 2020 - 18:09
There is no free MacBook. There IS no free MacBook. There is NO free MacBook.

GCHQ: A cyber-what-now? Rumours of our probe into London Stock Exchange 'cyberattack' have been greatly exaggerated

The Register - Anti-Virus - 6 Leden, 2020 - 17:30
Despite 'people familiar with matter' claiming otherwise to US news

GCHQ and its cyber-defence offshoot NCSC have both denied that they are investigating a cyber-attack on the London Stock Exchange, contrary to reports.…

Kategorie: Viry a Červi

Hackers Deface U.S. Gov Website With Pro-Iran Messages

VirusList.com - 6 Leden, 2020 - 16:46
The Federal Depository Library Program (FDLP) website was defaced over the weekend to show a picture of a bloodied President Donald Trump.
Kategorie: Viry a Červi
Syndikovat obsah