Category: Security

1 2 3 13 50 / 620 POSTS
new Cyber-Espionage Campaign targeting Italian Naval IndustrySecurity Affairs

new Cyber-Espionage Campaign targeting Italian Naval IndustrySecurity Affairs

Yoroi security firm uncovered a targeted attack against one of the most important companies in the Italian Naval Industry ...
Meet Helm, the startup taking on Gmail with a server that runs in your home

Meet Helm, the startup taking on Gmail with a server that runs in your home

Helm There’s no doubt that Gmail has changed the way we consume email. It’s free, it gives most of us all the storage we’ll ever ...
Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Brazil expert discovers Oracle flaw that allows massive DDoS attacks

Oracle has just released a security update to prevent 2.3 million servers running the RPCBIND service from being used in a ...
ransomware attack hit a water utility in the aftermath of Hurricane FlorenceSecurity Affairs

ransomware attack hit a water utility in the aftermath of Hurricane FlorenceSecurity Affairs

A water utility in the US state of North Carolina suffered a severe ransomware attack in the week after Hurricane Florence ...
Browser vendors unite to end support for 20-year-old TLS 1.0

Browser vendors unite to end support for 20-year-old TLS 1.0

Apple, Google, Microsoft, and Mozilla have announced a unified plan to deprecate the use of TLS 1.0 and 1.1 early in 2020. TLS ( ...
Chrome 70 arrives with option to disable linked sign-ins, PWAs on Windows, and AV1 decoder

Chrome 70 arrives with option to disable linked sign-ins, PWAs on Windows, and AV1 decoder

Google today launched Chrome 70 for Windows, Mac, and Linux. The release includes an option to disable linking Google site and Chrome sign-ins, ...
Russia-linked APT group DustSquad targets entities in Central AsiaSecurity Affairs

Russia-linked APT group DustSquad targets entities in Central AsiaSecurity Affairs

Kaspersky experts published a detailed analysis of the attacks conducted by the Russian-linked cyber espionage group DustS ...
GitHub launches Actions to execute code in containers and security alerts for Java and .NET projects

GitHub launches Actions to execute code in containers and security alerts for Java and .NET projects

The GitHub code repository, which has been used by 31 million developers around the world in the past year, today announced a sweeping series of ...
35 million US voter records available for sale in a hacking forumSecurity Affairs

35 million US voter records available for sale in a hacking forumSecurity Affairs

Millions of voter records are available for sale on the Dark Web, experts discovered over 35 million US voter records for ...
How Cybercriminals are Targeting free Wi-Fi Users?Security Affairs

How Cybercriminals are Targeting free Wi-Fi Users?Security Affairs

Free Wi-Fi is convenient, but it is also unsafe and puts users at great risk. Here’s how the cybercriminals attack user on ...
A message containing certain symbols could crash the Sony PlayStation 4Security Affairs

A message containing certain symbols could crash the Sony PlayStation 4Security Affairs

PlayStation 4 gaming consoles could crash when they receive messages containing certain symbols from fellow gamers. The co ...
Already facing an uphill misinformation fight, Facebook loses to scammers, too

Already facing an uphill misinformation fight, Facebook loses to scammers, too

Enlarge / A partial screenshot of one of the scam profiles pushing an adult dating scam on Facebook. Responding to critics in the ...
Chrome, Edge, IE, Firefox, and Safari will disable TLS 1.0 and TLS 1.1 in 2020 (Updated)

Chrome, Edge, IE, Firefox, and Safari will disable TLS 1.0 and TLS 1.1 in 2020 (Updated)

Google, Microsoft, Mozilla, and Apple today announced they will disable Transport Layer Security (TLS) 1.0 and 1.1 by default in their respectiv ...
Microsoft Edge and IE will disable TLS 1.0 and TLS 1.1 in 2020

Microsoft Edge and IE will disable TLS 1.0 and TLS 1.1 in 2020

Microsoft today announced it will disable Transport Layer Security (TLS) 1.0 and 1.1 by default in Microsoft Edge and Internet Explorer 11 “in t ...
Branch.io Flaws may have affected as many as 685 million individualsSecurity Affairs

Branch.io Flaws may have affected as many as 685 million individualsSecurity Affairs

More than 685 million users may have been exposed to XSS attacks due to a flaw in Branch.io service used by Tinder, Shopif ...
A Russian cyber vigilante is patching outdated MikroTik routersSecurity Affairs

A Russian cyber vigilante is patching outdated MikroTik routersSecurity Affairs

A Russian-speaking hacker, who goes by the name of Alexey, claims to have hacked into over 100,000 MikroTik routers with a ...
HTC Exodus Blockchain Smartphone Set For October 22 Announcement

HTC Exodus Blockchain Smartphone Set For October 22 Announcement

Earlier this year HTC announced that they would be launching a smartphone called Exodus. While HTC launching new smartphones doesn’t come as a surpris ...
Microsoft fixed the Zero-Day for JET flaw, but the fix is incompleteSecurity Affairs

Microsoft fixed the Zero-Day for JET flaw, but the fix is incompleteSecurity Affairs

Experts from 0Patch revealed that the Microsoft Zero-Day Patch for JET Database Engine vulnerability (CVE-2018-8423) is i ...
Ex-NASA contractor pleaded guilty for cyberstalking crimesSecurity Affairs

Ex-NASA contractor pleaded guilty for cyberstalking crimesSecurity Affairs

A former NASA contractor has pleaded guilty for a cyberstalking scheme, the man blackmailed seven women threatening to pub ...
Expert released PoC Code Microsoft Edge Remote Code Execution flawSecurity Affairs

Expert released PoC Code Microsoft Edge Remote Code Execution flawSecurity Affairs

Security expert published the PoC exploit code for the recently fixed critical remote code execution flaw in Edge web brow ...
Pentagon Defense Department travel records data breachSecurity Affairs

Pentagon Defense Department travel records data breachSecurity Affairs

Pentagon – Defense Department travel records suffered a data breach that compromised the personal information and credit c ...
A fictional Facebook Portal videochat with Mark Zuckerberg – TechCrunch

A fictional Facebook Portal videochat with Mark Zuckerberg – TechCrunch

TechCrunch: Hey Portal, dial Mark Portal: Do you mean Mark Zuckerberg? TC: Yes Portal: Dialling Mark… TC: Hi Mark! Nice choice of grey t-shirt. ...
Experts warn of fake Adobe Flash update hiding a miner that works as a legitimate updateSecurity Affairs

Experts warn of fake Adobe Flash update hiding a miner that works as a legitimate updateSecurity Affairs

Security experts from Palo Alto Networks warn of fake Adobe Flash update hiding a miner that works as legitimate update and really update the softwar ...
NHS is still assessing the cost of WannaCry one year laterSecurity Affairs

NHS is still assessing the cost of WannaCry one year laterSecurity Affairs

The UK’s Department of Health and Social Care provided an update on the efforts to secure the NHS IT infrastructure, with ...
An Expert’s View — Krebs on Security

An Expert’s View — Krebs on Security

Earlier this month I spoke at a cybersecurity conference in Albany, N.Y. alongside Tony Sager, senior vice president and chief evangelist ...
Facebook Data Breach Update:attackers accessed data of 29 Million usersSecurity Affairs

Facebook Data Breach Update:attackers accessed data of 29 Million usersSecurity Affairs

Facebook data breach – The company provided an updated for the data breach it disclosed at the end of September, hackers a ...
Fitmetrix fitness software company exposed millions of customer recordsSecurity Affairs

Fitmetrix fitness software company exposed millions of customer recordsSecurity Affairs

Fitmetrix fitness software company exposed customer data online, a 119GB archive containing name, gender, email address, b ...
Hackers targeting Drupal vulnerabilities to install the Shellbot BackdoorSecurity Affairs

Hackers targeting Drupal vulnerabilities to install the Shellbot BackdoorSecurity Affairs

A group of hackers is targeting Drupal vulnerabilities, including Drupalgeddon2, patched earlier this year to install a ba ...
DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and MoreSecurity Affairs

DOM-XSS Bug Affecting Tinder, Shopify, Yelp, and MoreSecurity Affairs

Our team of security researchers was researching dating apps client-side security, and one of the main focus targets was t ...
Exaramel Malware Links Industroyer ICS malware and NotPetya wiperSecurity Affairs

Exaramel Malware Links Industroyer ICS malware and NotPetya wiperSecurity Affairs

ESET researchers have spotted a new strain of malware tracked as Exaramel that links the dreaded not Petya wiper to the In ...
Juniper Networks provides dozens of fix for vulnerabilities in Junos OS

Juniper Networks provides dozens of fix for vulnerabilities in Junos OS

Juniper Networks has released security updates to address serious vulnerabilities affecting the Junos operating system. Th ...
Patch Tuesday, October 2018 Edition — Krebs on Security

Patch Tuesday, October 2018 Edition — Krebs on Security

Microsoft this week released software updates to fix roughly 50 security problems with various versions of its Windows operating system an ...
Google Cloud adds Cloud Identity, Cloud IAP, and secure LDAP

Google Cloud adds Cloud Identity, Cloud IAP, and secure LDAP

Google kicked off Next London — its annual conference centered around Google Cloud Platform (GCP) — with a slew of feature announcements yesterd ...
Gallmaker APT group eschews malware in cyber espionage campaignsSecurity Affairs

Gallmaker APT group eschews malware in cyber espionage campaignsSecurity Affairs

A previously unknown cyber espionage group, tracked as Gallmaker, has been targeting entities in the government, military ...
SAP October patches fixe the first Hot News note for BusinessObjectsSecurity Affairs

SAP October patches fixe the first Hot News note for BusinessObjectsSecurity Affairs

SAP released its October 2018 set of patches, it includes the first Hot News security note for SAP BusinessObjects in over ...
GAO report reveals new Pentagon weapon systems vulnerable to hackSecurity Affairs

GAO report reveals new Pentagon weapon systems vulnerable to hackSecurity Affairs

According to a new report published by the Government Accountability Office (GAO) almost any new weapon systems in the ars ...
CVE-2018-8453 exploited by FruityArmor APT in attacks aimed at Middle EastSecurity Affairs

CVE-2018-8453 exploited by FruityArmor APT in attacks aimed at Middle EastSecurity Affairs

A Windows zero-day flaw addressed by Microsoft with its latest Patch Tuesday updates is exploited by an APT group in attac ...
Hackers can compromise your WhatsApp account by tricking you into answering a video callSecurity Affairs

Hackers can compromise your WhatsApp account by tricking you into answering a video callSecurity Affairs

Hackers can compromise your WhatsApp account by tricking you into answering a video call, the company fixed the flaw in Se ...
Millions of Xiongmai video surveillance devices can be easily hacked via cloud featureSecurity Affairs

Millions of Xiongmai video surveillance devices can be easily hacked via cloud featureSecurity Affairs

Millions of Xiongmai video surveillance devices can be easily hacked via cloud feature, a gift for APT groups and cyber cr ...
Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Group-IB: $49.4 million of damage caused to Russia’s financial sector from cyber attacks

Security firm Group-IB has estimated that in H2 2017-H1 2018 cyber attacks caused $49.4 million (2.96 billion rubles) of d ...
Xiongmai — Krebs on Security

Xiongmai — Krebs on Security

What do we do with a company that regularly pumps metric tons of virtual toxic sludge onto the Internet and yet refuses to clean up their ...
Researchers presented an improved version of the WPA KRACK attackSecurity Affairs

Researchers presented an improved version of the WPA KRACK attackSecurity Affairs

Security researchers who devised last year the Key Reinstallation Attack, aka KRACK attack,  have disclosed new variants o ...
Google announces Pixel 3 and Pixel 3 XL with dual front-facing cameras and Android Pie

Google announces Pixel 3 and Pixel 3 XL with dual front-facing cameras and Android Pie

A lot changes in a year, but some things stay the same. Like clockwork, Google today took the wraps off the latest additions to its three-year-o ...
Google announces Pixel 3 with dual front-facing cameras and Android Pie, starting at $799

Google announces Pixel 3 with dual front-facing cameras and Android Pie, starting at $799

A lot changes in a year, but some things stay the same. Like clockwork, Google today took the wraps off the latest additions to its three-year-o ...
Project Strobe, what will change after the Google security breach?Security Affairs

Project Strobe, what will change after the Google security breach?Security Affairs

Google announced a security breach that may have exposed data of over 500,000 users of its Google+ social network, these a ...
How Secure Are Bitcoin Wallets, Really?Security Affairs

How Secure Are Bitcoin Wallets, Really?Security Affairs

Purchasers of Bitcoin wallets usually have one priority topping their lists: security. What’s the truth about the security ...
Google was aware of a flaw that exposed over 500,000 of Google Plus users, but did not disclose itSecurity Affairs

Google was aware of a flaw that exposed over 500,000 of Google Plus users, but did not disclose itSecurity Affairs

This is a very bad news for Google that suffered a massive data breach that exposed the private data of over 500,000 of Go ...
WECON PI Studio HMI software affected by code execution flawsSecurity Affairs

WECON PI Studio HMI software affected by code execution flawsSecurity Affairs

Security experts discovered several vulnerabilities in WECON’s PI Studio HMI software, the company has verified the issues ...
Apple to Congress: Chinese spy-chip story is “simply wrong”

Apple to Congress: Chinese spy-chip story is “simply wrong”

Enlarge / Apple CEO Tim Cook. Apple isn't relenting in its attacks on last week's Bloomberg story claiming that tiny Chinese ch ...
Gladius’ young leaders stop denial of service attacks with decentralized blockchain network

Gladius’ young leaders stop denial of service attacks with decentralized blockchain network

Gladius has a pretty young crew. Max Niebylski, CEO and cofounder, started the company in July 2017 at the age of 18. He’s 20 now, but his whole ...
1 2 3 13 50 / 620 POSTS