🛡 Cybersecurity & Privacy 🛡 - News

A Rogues' Gallery of MacOS Malware

MacOS isn't immune from malware. Being prepared means understanding the nature of the worst threats a security team is likely to see attacking Macs in the enterprise.

199 views23:34

ATENTION‼ New - CVE-2020-13173

Initialization of the pcoip_credential_provider in Teradici PCoIP Standard Agent for Windows and PCoIP Graphics Agent for Windows versions 19.11.1 and earlier creates an insecure named pipe, which allows an attacker to intercept sensitive information or possibly elevate privileges via pre-installing an application which acquires that named pipe.

📖 Read

via "National Vulnerability Database".

205 views00:55

⚠ Google sued by Arizona for tracking users’ locations in spite of settings ⚠

Maps, weather, searches et al. suck up location data in the background, even if Tracking is turned off. Arizona says it's consumer fraud.

📖 Read

via "Naked Security".

Google sued by Arizona for tracking users’ locations in spite of settings

Maps, weather, searches et al. suck up location data in the background, even if Tracking is turned off. Arizona says it’s consumer fraud.

189 views10:33

⚠ Windows 10 adds new security and privacy features in May update ⚠

Windows 10 release 2004 is out, with a slew of new features, including several updates to its security and privacy.

📖 Read

via "Naked Security".

Windows 10 adds new security and privacy features in May update

Windows 10 release 2004 is out, with a slew of new features, including several updates to its security and privacy.

190 views10:33

⚠ COVID-19 tests, PPE and antivirual drugs find a home on the dark web ⚠

COVID-19 testing kits, Hydroxychloroquine and PPE - it's all for sale on the dark web.

📖 Read

via "Naked Security".

COVID-19 tests, PPE and antivirual drugs find a home on the dark web

COVID-19 testing kits, Hydroxychloroquine and PPE – it’s all for sale on the dark web.

158 views11:33

How to Watch Doom Patrol - The Easiest Way To See the Series Online

🕵 How to watch Doom Patrol Season 2 (TV series) 🕵

📖 Read

via "VPNpro".

VPNpro

In this article we explain how to watch Doom Patrol with a VPN, bypassing the geo-blocks. Read on to learn everything there is to know on the topic.

155 views12:19

❌ ACLU Sues Clearview AI Over Faceprint Collection, Sale ❌

Watchdog group said company has violated the Illinois BIPA and ‘will end privacy as we know it’ without intervention.

📖 Read

via "Threatpost".

ACLU Sues Clearview AI Over Faceprint Collection, Sale

Watchdog group said company has violated the Illinois BIPA and ‘will end privacy as we know it’ without intervention.

150 views13:09

🕴 Zscaler Buys Edge Networks 🕴

The acquisition is Zscaler's second major buy this quarter.

📖 Read

via "Dark Reading: ".

Zscaler Buys Edge Networks

The acquisition is Zscaler's second major buy this quarter.

144 views13:34

❌ ‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials ❌

Google TAG report reveals that "hack for hire" firms are tapping into the coronavirus pandemic via WHO phishing lures.

📖 Read

via "Threatpost".

‘Hack-For-Hire’ Firms Spoof WHO To Target Google Credentials

Google TAG report reveals that "hack for hire" firms are tapping into the coronavirus pandemic via WHO phishing lures.

🤔1

159 views14:09

🕴 All Links Are Safe ... Right? 🕴

Today is a perfect day for a security breach.

📖 Read

via "Dark Reading: ".

All Links Are Safe ... Right?

Today is a perfect day for a security breach.

153 views14:34

🕴 Digital Distancing with Microsegmentation 🕴

Physical distancing has blunted a virus's impact; the same idea can be applied to computers and networks to minimize breaches, attacks, and infections.

📖 Read

via "Dark Reading: ".

Digital Distancing with Microsegmentation

Physical distancing has blunted a virus's impact; the same idea can be applied to computers and networks to minimize breaches, attacks, and infections.

160 views14:34

Phishing attack spoofs World Health Organization to steal email credentials

🔐 Phishing attack spoofs World Health Organization to steal email credentials 🔐

The malicious campaign is aimed at people in general in an effort to grab their email addresses and passwords, says Abnormal Security.

📖 Read

via "Security on TechRepublic".

TechRepublic

The malicious campaign is aimed at people in general in an effort to grab their email addresses and passwords, says Abnormal Security.

163 views14:49

⚠ Clearview AI facial recogition sued again – this time by ACLU ⚠

Clearview AI, the company that's scraped billions of images to build a facial recognition system, is getting sued again.

📖 Read

via "Naked Security".

Clearview AI facial recogition sued again – this time by ACLU

Clearview AI, the company that’s scraped billions of images to build a facial recognition system, is getting sued again.

153 views15:37

❌ NSA Warns of Sandworm Backdoor Attacks on Mail Servers ❌

The Russian spy group, a.k.a. BlackEnergy, is actively compromising Exim mail servers via a critical security vulnerability.

📖 Read

via "Threatpost".

NSA Warns of Sandworm Backdoor Attacks on Mail Servers

The Russian spy group, a.k.a. BlackEnergy, is actively compromising Exim mail servers via a critical security vulnerability.

165 views17:09

❌ NTT Communications Data Breach Affects Customers, Threatens Supply Chain ❌

Attackers managed to compromise NTT Communication’s Active Directory server and a construction information management server.

📖 Read

via "Threatpost".

NTT Communications Data Breach Affects Customers, Threatens Supply Chain

Attackers managed to compromise NTT Communication’s Active Directory server and a construction information management server.

161 views17:09

Security at the network edge: Inside software-defined networking and Kubernetes

🔐 Security at the network edge: Inside software-defined networking and Kubernetes 🔐

Security concerns remain prominent across all network environments, with some unique to the network edge, SDN, and other services. Get some tips from industry insiders.

📖 Read

via "Security on TechRepublic".

TechRepublic

Security concerns remain prominent across all network environments, with some unique to the network edge, SDN, and other services. Get some tips from industry insiders.

167 views17:49

🕴 Cisco Announces Patches to SaltStack 🕴

The patches came after Cisco was notified by the Salt Open Core team that the vulnerabilities and updates were available.

📖 Read

via "Dark Reading: ".

Cisco Announces Patches to SaltStack

The patches came after Cisco was notified by the Salt Open Core team that the vulnerabilities and updates were available.

136 views18:34

🕴 Abandoned Apps May Pose Security Risk to Mobile Devices 🕴

Mobile providers don't often update users when applications are not supported by developers, security firm says.

📖 Read

via "Dark Reading: ".

Abandoned Apps May Pose Security Risk to Mobile Devices

Mobile providers don't often update users when applications are not supported by developers, security firm says.

138 views18:34

ATENTION‼ New - CVE-2020-12675

The mappress-google-maps-for-wordpress plugin before 2.54.6 for WordPress does not correctly implement capability checks for AJAX functions related to creation/retrieval/deletion of PHP template files, leading to Remote Code Execution. NOTE: this issue exists because of an incomplete fix for CVE-2020-12077.

📖 Read

via "National Vulnerability Database".

138 views18:55

ATENTION‼ New - CVE-2020-11018

In FreeRDP less than or equal to 2.0.0, a possible resource exhaustion vulnerability can be performed. Malicious clients could trigger out of bound reads causing memory allocation with random size. This has been fixed in 2.1.0.

📖 Read

via "National Vulnerability Database".

145 views18:55