β Adobe Patches Critical RCE Flaw in Character Animator App β
π Read
via "Threatpost".
A critical remote code execution flaw in Adobe Character Animator was fixed in an out-of-band Tuesday patch.π Read
via "Threatpost".
Threat Post
Adobe Patches Critical RCE Flaw in Character Animator App
A critical remote code execution flaw in Adobe Character Animator was fixed in an out-of-band Tuesday patch.
π Encrypt compressed files the easy way from Windows, macOS, or Linux π
π Read
via "Security on TechRepublic".
Learn to secure multiple documents by encrypting compressed files on various OSes using a password.π Read
via "Security on TechRepublic".
TechRepublic
How to encrypt compressed files the easy way from Windows, macOS, or Linux
Learn to secure multiple documents by encrypting compressed files on various OSes using a password.
π΄ 7 Security Pros: What My Nontraditional Background Brings to the Job π΄
π Read
via "Dark Reading: ".
Job experience and degrees outside of the cybersecurity or IT world can provide invaluable diversity of thinking and problem-solving.π Read
via "Dark Reading: ".
Dark Reading
7 Security Pros: What My Nontraditional Background Brings to the Job
Job experience and degrees outside of the cybersecurity or IT world can provide invaluable diversity of thinking and problem-solving.
β Bluetooth Bugs Allow Impersonation Attacks on Legions of Devices β
π Read
via "Threatpost".
A host of unpatched security bugs that allow BIAS attacks affects Bluetooth chips from Apple, Intel, Qualcomm, Samsung and others.π Read
via "Threatpost".
Threat Post
Bluetooth Bugs Allow Impersonation Attacks on Legions of Devices
A host of unpatched security bugs that allow BIAS attacks affects Bluetooth chips from Apple, Intel, Qualcomm, Samsung and others.
π΄ EasyJet Sees 9 Million Customer Email Addresses Stolen π΄
π Read
via "Dark Reading: ".
More than 2,000 customers also had credit card information taken in the attack.π Read
via "Dark Reading: ".
Dark Reading
EasyJet Sees 9 Million Customer Email Addresses Stolen
More than 2,000 customers also had credit card information taken in the attack.
β WolfRAT Android Malware Targets WhatsApp, Facebook Messenger β
π Read
via "Threatpost".
Researchers link the malware to Wolf Research operators with "high confidence" after it was spotted in campaigns targeting Thai users.π Read
via "Threatpost".
Threat Post
WolfRAT Android Malware Targets WhatsApp, Facebook Messenger
Researchers link the malware to Wolf Research with "high confidence" after it was spotted in campaigns targeting Thai users.
β Apple βMagicPairingβ for AirPods β the magic isnβt perfect yet β
π Read
via "Naked Security".
Apple's efforts to overcome the limitations of Bluetooth is a proprietary system called MagicPairing, but there are flaws in the magic.π Read
via "Naked Security".
Naked Security
Apple βMagicPairingβ for AirPods β the magic isnβt perfect yet
Appleβs efforts to overcome the limitations of Bluetooth is a proprietary system called MagicPairing, but there are flaws in the magic.
π΄ Long-Term Remote Work: Keeping Workers Productive & Secure π΄
π Read
via "Dark Reading: ".
The pandemic has changed how we get work done. Now, data security must catch up.π Read
via "Dark Reading: ".
Dark Reading
Long-Term Remote Work: Keeping Workers Productive & Secure
The pandemic has changed how we get work done. Now, data security must catch up.
π΄ Web Application Attacks Double from 2019: Verizon DBIR π΄
π Read
via "Dark Reading: ".
Verizon's annual data breach report shows most attackers are external, money remains their top motivator, and web applications and unsecured cloud storage are hot targets.π Read
via "Dark Reading: ".
Dark Reading
Web Application Attacks Double from 2019: Verizon DBIR
Verizon's annual data breach report shows most attackers are external, money remains their top motivator, and web applications and unsecured cloud storage are hot targets.
β EasyJet Hackers Take Off with Travel Details for 9M Customers β
π Read
via "Threatpost".
The vacation-centric airline is warning victims about social-engineering attacks.π Read
via "Threatpost".
Threat Post
EasyJet Hackers Take Off with Travel Details for 9M Customers
The vacation-centric airline is warning victims about social-engineering attacks.
π Verizon report finds increases in financially-motivated breaches and attacks on web applications π
π Read
via "Security on TechRepublic".
The Verizon Business 2020 Data Breach Investigations Report analyzed more than 32,000 incidents.π Read
via "Security on TechRepublic".
TechRepublic
Verizon finds increases in financially motivated data breaches and attacks on web applications
Most breaches are now for financial gain, according to Verizon's report, with web application attacks also on the rise. Find out more about the alarming statistics in this analysis.
π΄ Unpatched Open Source Libraries Leave 71% of Apps Vulnerable π΄
π Read
via "Dark Reading: ".
PHP and JavaScript developers need to pay close attention because different languages and frameworks have different rates of vulnerability, research finds.π Read
via "Dark Reading: ".
Dark Reading
Unpatched Open Source Libraries Leave 71% of Apps Vulnerable
PHP and JavaScript developers need to pay close attention because different languages and frameworks have different rates of vulnerability, research finds.
β The Windows 7 Postmortem: Whatβs at Stake β
π Read
via "Threatpost".
Nearly a quarter of endpoints still run Windows 7, even though support and security patches have ended.π Read
via "Threatpost".
Threat Post
The Windows 7 Postmortem: Whatβs at Stake
Nearly a quarter of endpoints still run Windows 7, even though support and security patches have ended.
π΄ Google Chrome Redesign Puts Security & Privacy in Users' Hands π΄
π Read
via "Dark Reading: ".
The Chrome browser will tell users if their browser is up to date, malicious extensions are installed, and/or a password has been compromised.π Read
via "Dark Reading: ".
Dark Reading
Google Chrome Redesign Puts Security & Privacy in Users' Hands
The Chrome browser will tell users if their browser is up to date, malicious extensions are installed, and/or a password has been compromised.
π Chrome, Firefox Introduce New Password Security Features π
π Read
via "Subscriber Blog RSS Feed ".
The line between browsers and password managers keeps blurring. Firefox and Chrome recently incorporated new ways for users to tell if passwords theyβre using are compromised.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Chrome, Firefox Introduce New Password Security Features
The line between browsers and password managers keeps blurring. Firefox and Chrome recently incorporated new ways for users to tell if passwords theyβre using are compromised.
π Productive pandemic: Searches for free online courses are up 309% π
π Read
via "Security on TechRepublic".
Available online classes include ways to upgrade your resume, add to current skills, or land a better job.π Read
via "Security on TechRepublic".
TechRepublic
Productive pandemic: Searches for free online courses are up 309%
Available online classes include ways to upgrade your resume, add to current skills, or land a better job.
π΄ Magecart Plants Card Skimmers via Old Magento Plugin Flaw π΄
π Read
via "Dark Reading: ".
The FBI has warned ecommerce sites about attacks targeting a more than three-year-old flaw in the Magmi mass importer.π Read
via "Dark Reading: ".
Dark Reading
Magecart Plants Card Skimmers via Old Magento Plugin Flaw
The FBI has warned ecommerce sites about attacks targeting a more than three-year-old flaw in the Magmi mass importer.
ATENTIONβΌ New - CVE-2019-11048
π Read
via "National Vulnerability Database".
In PHP versions 7.2.x below 7.2.31, 7.3.x below 7.3.18 and 7.4.x below 7.4.6, when HTTP file uploads are allowed, supplying overly long filenames or field names could lead PHP engine to try to allocate oversized memory storage, hit the memory limit and stop processing the request, without cleaning up temporary files created by upload request. This potentially could lead to accumulation of uncleaned temporary files exhausting the disk space on the target server.π Read
via "National Vulnerability Database".
β FBI finally unlock shooterβs iPhones, berate Apple for not helping β
π Read
via "Naked Security".
The FBI's Apple problem.π Read
via "Naked Security".
Sophos News
FBI finally unlock shooterβs iPhones, Apple berated for not helping
The FBIβs Apple problem.
ATENTIONβΌ New - CVE-2019-5997
π Read
via "National Vulnerability Database".
Video Insight VMS 7.5 and earlier allows remote attackers to conduct code injection attacks via unspecified vectors.π Read
via "National Vulnerability Database".
β Office 365 exposed some internal search results to other companies β
π Read
via "Naked Security".
Itβs not clear how many accounts were involved, but Microsoft is said to have made URLs and metadata available so admins can investigate.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News