Viry a Červi

Adobe Patches Six Critical Flaws in ColdFusion

VirusList.com - 11 Září, 2018 - 16:52
Adobe issued fixes for versions of its ColdFusion web development platform - including six critical flaws.
Kategorie: Viry a Červi

The rise of targeted ransomware

Sophos Naked Security - 11 Září, 2018 - 15:09
Ransomware hasn't gone away, but it is getting quieter and more targeted.

Airbnb launches investigation after man finds hidden camera in clock

Sophos Naked Security - 11 Září, 2018 - 15:06
Trust your gut: if staring at that common object in your rental gives you the heebie jeebies, it might be because it's staring back at you.

Fetish app put users’ identities at risk with plain-text passwords

Sophos Naked Security - 11 Září, 2018 - 14:54
Whiplr, a naughty, naughty little app, has now secured passwords with "one-way encryption" and is "adding more security measures".

Magecart Group Pinned in Recent British Airways Breach

VirusList.com - 11 Září, 2018 - 14:54
The Magecart Group has been blamed for the British Airways breach that compromised 380k payment cards.
Kategorie: Viry a Červi

Yikes: 1 in 5 employees share their email passwords with coworkers

Sophos Naked Security - 11 Září, 2018 - 14:47
19% of employees of small and medium-sized businesses share their passwords with coworkers or assistants, according to a recent survey.

British Airways hack: Infosec experts finger third-party scripts on payment pages

The Register - Anti-Virus - 11 Září, 2018 - 12:37
Airline yet to reveal breach's cause

Security experts are debating the cause of the British Airways mega-breach, with external scripts on its payment systems emerging as a prime suspect in the hack.…

Kategorie: Viry a Červi

Keybase browser extension weakness discovered

Sophos Naked Security - 11 Září, 2018 - 11:41
Respected researcher Wladimir Palant has recommended users “uninstall the Keybase browser extension ASAP” after discovering a gap in its end-to-end encryption.

Microsoft extends security patch support for some Windows 7 users

Sophos Naked Security - 11 Září, 2018 - 11:20
Microsoft will provide security updates until 2023 to help business customers migrate to Windows 10 - if they pay.

Email security crisis... What email security crisis?

The Register - Anti-Virus - 11 Září, 2018 - 10:13
Let them eat phish

In late August, Microsoft announced a free service that arguably reveals more about the future of the email business and its struggles with security than several years' worth of earnest press releases.…

Kategorie: Viry a Červi

Safari, Edge fans: Is that really the website you think you're visiting? URL spoof bug blabbed

The Register - Anti-Virus - 11 Září, 2018 - 07:01
Egghead says Apple has yet to patch spoofing vulnerability

A security researcher has disclosed a bug that could be abused to spoof website addresses in either Edge or Safari.…

Kategorie: Viry a Červi

Register-Orbi-damned: Netgear account order irks infosec bods

The Register - Anti-Virus - 11 Září, 2018 - 01:59
Marketing data collection opens potential security nightmare

Netgear has irked some security pros by demanding people register accounts before they can use a mobile app to control their Orbi mesh routers.…

Kategorie: Viry a Červi

Tor(ched): Zerodium drops exploit for version 7 of anonymous browser

The Register - Anti-Virus - 11 Září, 2018 - 01:09
Bug allows malicious scripts to run even with protections active

Bug broker Zerodium has released word of a flaw in the Tor browser that would potentially allow an attack site to bypass security protections and execute malicious code in the supposedly secure internet system.…

Kategorie: Viry a Červi

Arms race: SiFive, Hex Five build code safe houses for RISC-V chips

The Register - Anti-Virus - 10 Září, 2018 - 22:08
Those developing custom CPUs can now tap a TrustZone-ish trusted execution environment

If you've been looking at SiFive's RISC-V-based chip technology and thinking, y'know what, it's missing an Arm TrustZone-style element to run sensitive code, well, here's some good news.…

Kategorie: Viry a Červi

ProtonVPN, NordVPN Flaws Open Door to Privilege Escalation

VirusList.com - 10 Září, 2018 - 21:39
The flaws disclosed this month are related to a critical bug previously discovered by VerSprite in April 2018.
Kategorie: Viry a Červi

Trend Micro tools tossed from Apple's Mac App Store after spewing fans' browser histories

The Register - Anti-Virus - 10 Září, 2018 - 21:13
Data caught being siphoned off to outside server

Updated  A bunch of Trend Micro anti-malware tools have vanished from Apple's Mac App Store – after they were spotted harvesting and siphoning off users' browser histories.…

Kategorie: Viry a Červi

Tor Brings Onion Browser to Android Devices

VirusList.com - 10 Září, 2018 - 19:00
In parts of the developing world, dissidents and journalists face hostile governments and other threats -- and mobile is their only access to the internet.
Kategorie: Viry a Červi

Apple Finally Boots Sneaky Adware Doctor App from Mac App Store

VirusList.com - 10 Září, 2018 - 18:47
Hours after researchers publicly disclosed an app that was caught stealing and uploading browser history data, Apple removed it from the Mac App Store.
Kategorie: Viry a Červi

Mirai, Gafgyt Botnets Return to Target Infamous Apache Struts, SonicWall Flaws

VirusList.com - 10 Září, 2018 - 16:23
By implementing the "Equifax bug," it's the first known time a Mirai IoT botnet variant has targeted an Apache Struts vulnerability.
Kategorie: Viry a Červi

Apple’s new tool will make it easier for law enforcement to request data

Sophos Naked Security - 10 Září, 2018 - 14:23
Apple is planning to create an online portal that will allow law enforcement officials around the world to request information about its users more easily.
Syndikovat obsah