Viry a Červi

Monday review – the hot stories of the new year

Sophos Naked Security - 7 Leden, 2019 - 12:10
From same old, same old Facebook hoaxes to PewDiePie's Chromecast-hacking fans, here are the top stories of the new year.

VB2018 paper: Draw me like one of your French APTs – expanding our descriptive palette for cyber threat actors

Virus Bulletin News - 7 Leden, 2019 - 11:14
Today, we publish the VB2018 paper by Chronicle researcher Juan Andres Guerrero-Saade, who argues we should change the way we talk about APT actors.

Read more
Kategorie: Viry a Červi

LA Times knocked out, HackerOne slips up and – amazingly – router security still sucks

The Register - Anti-Virus - 5 Leden, 2019 - 14:01
Plus, London Gatwick drone comedy quiets down

Welcome to 2019, just a few days into the year and we already have Chromecast chaos, Skype backdoors, and a Weather Channel privacy suit.…

Kategorie: Viry a Červi

New side-channel leak: Boffins bash operating system page caches until they spill secrets

The Register - Anti-Virus - 5 Leden, 2019 - 02:30
Novel data-siphoning attack is hardware agnostic

Some of the computer security boffins who revealed last year's data-leaking speculative-execution holes have identified yet another side-channel attack that can bypass security protections in modern systems.…

Kategorie: Viry a Červi

Fake 'U's! Phishing creeps use homebrew fonts as message ciphers to evade filters

The Register - Anti-Virus - 5 Leden, 2019 - 00:35
fg xjc dua ihut vyfq, xjc uih jci sfat jg mjggfa

A new phishing campaign that uses a custom font to hide its tracks and evade detection has been uncovered.…

Kategorie: Viry a Červi

Stormy times ahead for IBM-owned Weather Channel app: LA sues over location data slurp

The Register - Anti-Virus - 4 Leden, 2019 - 22:02
'Privacy in the digital age is one of the most fundamental issues' says city attorney

The Weather Channel app duped users into providing location data that the company then sold for advertising and other commercial purposes, according to a lawsuit brought by Los Angeles City Attorney Mike Feuer.…

Kategorie: Viry a Červi

Weather Channel App in a Deluge of Legal Trouble for Data Misuse - 4 Leden, 2019 - 20:54
The lawsuit alleges that the Weather Channel app misled users about why it was collecting their (extremely precise) geolocation data.
Kategorie: Viry a Červi

Marriott: Good news. Hackers only took 383 million booking records ... and 5.3m unencrypted passport numbers

The Register - Anti-Virus - 4 Leden, 2019 - 20:42
Plus an extra 20m passport digits and 8.6m payment card details, though encrypted

Hotel megachain Marriott International has gone into further detail on the cyber-raid on its reservation database, including the number of payment cards and passport details siphoned off by hackers.…

Kategorie: Viry a Červi

Facebook hoaxes – harmless fun or security risk? [VIDEO]

Sophos Naked Security - 4 Leden, 2019 - 20:33
Here's what you need to know about Facebook hoaxes, all in plain English.

Marriott Revises Breach Scope to 383M Records - 4 Leden, 2019 - 18:47
The hotel giant said after de-duping, the breach appears to be smaller than it thought.
Kategorie: Viry a Červi

Phishing Tactic Hides Tracks with Custom Fonts - 4 Leden, 2019 - 18:21
The phishing campaign is using a new technique to hide the source code of its landing page - and stealing credentials from customers of a major U.S.-based bank.
Kategorie: Viry a Červi

Wide-Ranging German Doxxing Incident Hits Hundreds of Politicians - 4 Leden, 2019 - 17:23
It's not clear why the data release wasn't noticed earlier.
Kategorie: Viry a Červi

Germany hacked: Angela Merkel's colleagues among mass data dump victims

The Register - Anti-Virus - 4 Leden, 2019 - 14:08
Politicians, journalists and other public figures targeted

German politicians, journalists and other prominent public figures have been doxxed by hackers who distributed their personal data on Twitter, according to local reports.…

Kategorie: Viry a Červi

Don’t fall victim to the Chromecast hackers – here’s what to do

Sophos Naked Security - 4 Leden, 2019 - 13:57
First they came for your printer... and then they came for your Chromecast - learn how to tighten up your router security.

Vein authentication beaten by wax hand and photograph

Sophos Naked Security - 4 Leden, 2019 - 13:43
A new presentation shows how vein authentication systems can be fooled using a fake wax hand model.

Adobe Fixes Two Critical Acrobat and Reader Flaws - 4 Leden, 2019 - 13:30
An unscheduled patch fixed two critical flaws that could enable arbitrary code execution.
Kategorie: Viry a Červi

EU to offer nearly $1m in bug bounties for open-source software

Sophos Naked Security - 4 Leden, 2019 - 12:16
Rewards on 15 bug bounty programs start at $28,600 and include open source software such as KeePass, FileZilla, Drupal and VLC media player.

Can't unlock an Android phone? No problem, just take a Skype call: App allows passcode bypass

The Register - Anti-Virus - 4 Leden, 2019 - 00:03
Neat trick for spying spouses, bad bosses, other miscreants with hands on your mobe. A fix is available

A newly disclosed vulnerability in Skype for Android could be exploited by miscreants to bypass an Android phone's passcode screen to view photos, contacts, and even launch browser windows.…

Kategorie: Viry a Červi

A Dozen Flaws in Popular Mac Clean-Up Software Allow Local Root Access - 3 Leden, 2019 - 22:50
All of the vulnerabilities arise from improper input validations.
Kategorie: Viry a Červi

Hope you're over that New Year's hangover – there's an Adobe PDF app patch to install

The Register - Anti-Virus - 3 Leden, 2019 - 21:20
Pair of critical flaws cleaned up in Acrobat, Reader

Adobe has issued its first patch of the year, emitting fixes for a pair of high-risk vulnerabilities in Acrobat and Reader.…

Kategorie: Viry a Červi
Syndikovat obsah