🛡 Cybersecurity & Privacy 🛡 - News

Private Equity Firm Stalls $1.9B Forescout Acquisition

Officials say there can be no assurance Forescout and Advent International will reach an agreement, though talks are ongoing.

145 views18:23

ATENTION‼ New - CVE-2019-7247

An issue was discovered in AODDriver2.sys in AMD OverDrive. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x81112ee0 and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.

📖 Read

via "National Vulnerability Database".

144 views18:28

ATENTION‼ New - CVE-2019-7246

An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5.11.9.0. The vulnerable driver exposes a wrmsr instruction and does not properly filter the Model Specific Register (MSR). Allowing arbitrary MSR writes can lead to Ring-0 code execution and escalation of privileges.

📖 Read

via "National Vulnerability Database".

136 views18:28

ATENTION‼ New - CVE-2019-19456

A Reflected XSS was found in the server selection box inside the login page at: enginemanager/loginfailed.html in Wowza Streaming Engine <= 4.x.x.

📖 Read

via "National Vulnerability Database".

136 views18:28

ATENTION‼ New - CVE-2019-19454

An arbitrary file download was found in the "Download Log" functionality of Wowza Streaming Engine <= 4.x.x

📖 Read

via "National Vulnerability Database".

139 views18:28

❌ ProLock Ransomware Teams Up With QakBot Trojan to Infect Victims ❌

ProLock is relatively new, but already the ransomware is making waves by using QakBot infections to access networks, gain persistence and avoid detection.

📖 Read

via "Threatpost".

ProLock Ransomware Teams Up With QakBot Trojan to Infect Victims

ProLock is relatively new, but already the ransomware is making waves by using QakBot infections to access networks, gain persistence and avoid detection.

172 views19:46

Irish Data Protection Commission Issues First Fine Against State Agency

🔏 Irish Data Protection Commission Issues First Fine Against State Agency 🔏

Ireland's data protection commission confirmed last week it planned to fine a state agency €75,000 for violating the General Data Protection Regulation, or GDPR.

📖 Read

via "Subscriber Blog RSS Feed ".

Digital Guardian

Ireland's data protection commission confirmed last week it planned to fine a state agency €75,000 for violating the General Data Protection Regulation, or GDPR.

176 views19:50

🔐 Top 5 things to know about fleeceware 🔐

Fleeceware is an important cybersecurity threat to be aware of. Tom Merritt offers five things you should know fleeceware apps.

📖 Read

via "Security on TechRepublic".

Top 5 things to know about fleeceware

Fleeceware is an important cybersecurity threat to be aware of. Tom Merritt offers five things you should know fleeceware apps.

163 views21:01

🔐 Top 5 things to know about fleeceware 🔐

Fleeceware is an important cybersecurity threat to be aware of. Tom Merritt offers five things you should know fleeceware apps.

📖 Read

via "Security on TechRepublic".

Top 5 things to know about fleeceware

Fleeceware is an important cybersecurity threat to be aware of. Tom Merritt offers five things you should know fleeceware apps.

163 views21:01

❌ Ransomware Gang Arrested for Spreading Locky to Hospitals ❌

A group of four people calling themselves "Pentaguard" were arrested in house raids.

📖 Read

via "Threatpost".

Ransomware Gang Arrested for Spreading Locky to Hospitals

A group of four people calling themselves "Pentaguard" were arrested in house raids.

185 views21:46

🕴 As DevOps Accelerates, Security's Role Changes 🕴

📖 Read

via "Dark Reading: ".

As DevOps Accelerates, Security's Role Changes

There remains a disconnect between developers and security teams, with uncertainty around who should handle software security.

190 views21:53

ATENTION‼ New - CVE-2019-17066

In Ivanti WorkSpace Control before 10.4.40.0, a user can elevate rights on the system by hijacking certain user registries. This is possible because pwrgrid.exe first checks the Current User registry hives (HKCU) when starting an application with elevated rights.

📖 Read

via "National Vulnerability Database".

189 views00:46

❌ Verizon Data Breach Report: DoS Skyrockets, Espionage Dips ❌

Denial of Service (DoS), ransomware, and financially-motivated data breaches were the winners in this year's Verizon DBIR.

📖 Read

via "Threatpost".

Verizon Data Breach Report: DoS Skyrockets, Espionage Dips

Denial of Service (DoS), ransomware, and financially-motivated data breaches were the winners in this year's Verizon DBIR.

208 views04:21

🔐 86% of data breaches are conducted for financial gain 🔐

Increases in hacking, phishing, and cloud-based attacks have been even more prevalent with the influx of remote work, Verizon found.

📖 Read

via "Security on TechRepublic".

86% of data breaches are conducted for financial gain

Increases in hacking, phishing, and cloud-based attacks have been even more prevalent with the influx of remote work, Verizon found.

220 views04:31

🔐 How the dark web is handling the coronavirus pandemic 🔐

Many on the dark web are expressing the same thoughts and fears about COVID-19 as everyone else, while others are looking for ways to profit from it, says Trustwave.

📖 Read

via "Security on TechRepublic".

How the dark web is handling the coronavirus pandemic

Many on the dark web are expressing the same thoughts and fears about COVID-19 as everyone else, while others are looking for ways to profit from it, says Trustwave.

213 views12:01

❌ Clever Phishing Attack Bypasses MFA to Nab Microsoft Office 365 Credentials ❌

The attack discovered by Cofense can steal sensitive user data stored on the cloud as well as find other victims to target.

📖 Read

via "Threatpost".

Clever Phishing Attack Bypasses MFA to Nab Microsoft Office 365 Credentials

The attack discovered by Cofense can steal sensitive user data stored on the cloud as well as find other victims to target.

205 views12:51

🕴 Hackers Hit Food Supply Company 🕴

The attackers behind the REvil ransomware family has also threatened to release personal data on Madonna and other celebrities to the highest bidders.

📖 Read

via "Dark Reading: ".

Hackers Hit Food Supply Company

The attackers behind the REvil ransomware family has also threatened to release personal data on Madonna and other celebrities to the highest bidders.

198 views13:14

🔐 CEOs, CISOs fear becoming the next big breach target 🔐

Yet, less than half believe their business has an effective cybersecurity strategy in place, according to a Forcepoint survey.

📖 Read

via "Security on TechRepublic".

CEOs, CISOs fear becoming the next big breach target

Yet, less than half believe their business has an effective cybersecurity strategy in place, according to a Forcepoint survey.

202 views14:01

🕴 Cybersecurity Extends Far Beyond Security Teams & Everyone Plays a Part 🕴

Security isn't about tools or technology; it's about establishing a broad, fundamental awareness and sense of responsibility among all employees.

📖 Read

via "Dark Reading: ".

Cybersecurity Extends Far Beyond Security Teams & Everyone Plays a Part

Security isn't about tools or technology; it's about establishing a broad, fundamental awareness and sense of responsibility among all employees.

203 views14:14

Firefox to tell you if sites are shortening your passwords

⚠ Firefox to tell you if sites are shortening your passwords ⚠

Mozilla is fixing a longstanding password problem to alert users when their password exceeds the maximum length allowed.

📖 Read

via "Naked Security".

Naked Security

Mozilla is fixing a longstanding password problem to alert users when their password exceeds the maximum length allowed.

208 views14:24