β Apple, Google Team on Coronavirus Tracking β Sparking Privacy Fears β
π Read
via "Threatpost".
Apple and Google announced that decentralized Bluetooth technology will soon be rolled out for coronavirus contact tracing. The privacy implications are worrisome for some.π Read
via "Threatpost".
Threat Post
Apple, Google Team on Coronavirus Tracking β Sparking Privacy Fears
Apple and Google announced that decentralized Bluetooth technology would soon be available for coronavirus contact tracing, but some remain concerned about data privacy.
β Sextortion emails and porn scams are back β donβt let them scare you! β
π Read
via "Naked Security".
There is no video and the whole thing is a scam to prey on your fears.π Read
via "Naked Security".
Naked Security
Sextortion emails and porn scams are back β donβt let them scare you!
There is no video and the whole thing is a scam to prey on your fears.
β SFO Websites Hacked: Airport Discloses Data Breach β
π Read
via "Threatpost".
San Francisco International Airport notified users of two low-traffic websites of a data breach that occurred in March.π Read
via "Threatpost".
Threat Post
SFO Websites Hacked: Airport Discloses Data Breach
San Francisco International Airport notified users of two low-traffic websites of a data breach that occurred in March.
π1
ATENTIONβΌ New - CVE-2018-21058 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.0), O(8.0) (exynos7420 or Exynos 8890/8996 chipsets) software. Cache attacks can occur against the Keymaster AES-GCM implementation because T-Tables are used; the Cryptography Extension (CE) is not used. The Samsung ID is SVE-2018-12761 (September 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21057 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.x) O(8.x, and P(9.0) (Exynos chipsets) software. There is a stack-based buffer overflow in the Shannon Baseband. The Samsung ID is SVE-2018-12757 (September 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21056 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with O(8.x) software. The Smartwatch displays Secure Folder Notification content. The Samsung ID is SVE-2018-12458 (September 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21055 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.0) (Qualcomm models using MSM8996 chipsets) software. A device can be rooted with a custom image to execute arbitrary scripts in the INIT context. The Samsung ID is SVE-2018-11940 (September 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21054 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with M(6.0), N(7.x) and O(8.x) except exynos9610/9820 in all Platforms, M(6.0) except MSM8909 SC77xx/9830 exynos3470/5420, N(7.0) except MSM8939, N(7.1) except MSM8996 SDM6xx/M6737T software. There is an integer underflow with a resultant buffer overflow in eCryptFS. The Samsung ID is SVE-2017-11857 (September 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21053 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.x), O(8.x), and P(9.0) software. There is Clipboard access in the lockscreen state via a physical keyboard. The Samsung ID is SVE-2018-12684 (October 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21052 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.X) (Exynos chipsets) software. There is incorrect usage of shared memory in the vaultkeeper Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2018-12855 (October 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21051 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.x) (Exynos chipsets) software. There is an invalid free in the fingerprint Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2018-12853 (October 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21050 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.X) (Exynos chipsets) software. There is a Buffer overflow in the esecomm Trustlet, leading to arbitrary code execution. The Samsung ID is SVE-2018-12852 (October 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21049 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with N(7.x) and O(8.X) (Exynos chipsets) software. There is an arbitrary memory write in a Trustlet because a secure driver allows access to sensitive APIs. The Samsung ID is SVE-2018-12881 (November 2018).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-21048 (android)
π Read
via "National Vulnerability Database".
An issue was discovered on Samsung mobile devices with O(8.x) software. There is a Notification leak on a locked device in Standalone Dex mode. The Samsung ID is SVE-2018-12925 (November 2018).π Read
via "National Vulnerability Database".
π IoT security, neglected infrastructure, and a crisis of trust deemed major threats for 2022 π
π Read
via "Security on TechRepublic".
The Internet Security Forum predicts the coming threats with a very good track record so far. Get your company ready for these threats.π Read
via "Security on TechRepublic".
TechRepublic
IoT security, neglected infrastructure, and a crisis of trust deemed major threats for 2022
The Information Security Forum predicts the coming threats with a very good track record so far. Get your company ready for these threats.
π΄ Cybercrime May Be the World's Third-Largest Economy by 2021 π΄
π Read
via "Dark Reading: ".
The underground economy is undergoing an industrialization wave and booming like never before.π Read
via "Dark Reading: ".
Dark Reading
Cybercrime May Be the World's Third-Largest Economy by 2021
The underground economy is undergoing an industrialization wave and booming like never before.
π΄ Pandemic Could Make Schools Bigger Targets of Ransomware Attacks π΄
π Read
via "Dark Reading: ".
Most have had to implement distance learning, making them much more vulnerable, Armor says.π Read
via "Dark Reading: ".
Dark Reading
Pandemic Could Make Schools Bigger Targets of Ransomware Attacks
Most have had to implement distance learning, making them much more vulnerable, Armor says.
β Overlay Malware Leverages Chrome Browser, Targets Banks and Heads to Spain β
π Read
via "Threatpost".
The Grandoreiro banking malware uses remote overlay and a fake Chrome browser plugin to steal from banking customers.π Read
via "Threatpost".
Threat Post
Overlay Malware Leverages Chrome Browser, Targets Banks and Heads to Spain
Researchers warn that the Grandoreiro banking malware has broadened in its targeting from Brazil to Spain.
π SEC Settles With Two Traders Involved in 2016 Hack π
π Read
via "Subscriber Blog RSS Feed ".
Two of the illicit traders indicted in a 2016 hack of the SEC have agreed to settle and in turn, give back six figure sums of money they made with information stolen from a SEC system.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
SEC Settles With Two Traders Involved in 2016 Hack
Two of the illicit traders indicted in a 2016 hack of the SEC have agreed to settle and in turn, give back six figure sums of money they made with information stolen from a SEC system.
β Monday review β the hot 15 stories of the week β
π Read
via "Naked Security".
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.π Read
via "Naked Security".
Naked Security
Monday review β the hot 15 stories of the week
Get yourself up to date with everything weβve written in the last seven days β itβs weekly roundup time.
β Oracle Tackles a Massive 405 Bugs for Its April Quarterly Patch Update β
π Read
via "Threatpost".
Oracle will detail 405 new security vulnerabilities Tuesday, part of its quarterly Critical Patch Update Advisory.π Read
via "Threatpost".
Threat Post
Oracle Tackles a Massive 405 Bugs for Its April Quarterly Patch Update
Company will detail 405 new security vulnerabilities Tuesday, part of its quarterly Critical Patch Update Advisory.