🕴 California's Prop. 24 Splits Privacy Advocates 🕴
📖 Read
via "Dark Reading".
Critics worry that the curatives in Prop. 24 are worse than the disease of privacy-rights violations.📖 Read
via "Dark Reading".
Dark Reading
California's Prop. 24 Splits Privacy Advocates
Critics worry that the curatives in Prop. 24 are worse than the disease of privacy-rights violations.
‼ CVE-2020-9861 ‼
📖 Read
via "National Vulnerability Database".
A stack overflow issue existed in Swift for Linux. The issue was addressed with improved input validation for dealing with deeply nested malicious JSON input.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-16001 ‼
📖 Read
via "National Vulnerability Database".
Use after free in media in Google Chrome prior to 86.0.4240.111 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-15973 ‼
📖 Read
via "National Vulnerability Database".
Insufficient policy enforcement in extensions in Google Chrome prior to 86.0.4240.75 allowed an attacker who convinced a user to install a malicious extension to bypass same origin policy via a crafted Chrome Extension.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-16007 ‼
📖 Read
via "National Vulnerability Database".
Insufficient data validation in installer in Google Chrome prior to 86.0.4240.183 allowed a local attacker to potentially elevate privilege via a crafted filesystem.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-15987 ‼
📖 Read
via "National Vulnerability Database".
Use after free in WebRTC in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to potentially exploit heap corruption via a crafted WebRTC stream.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-16010 ‼
📖 Read
via "National Vulnerability Database".
Heap buffer overflow in UI in Google Chrome on Android prior to 86.0.4240.185 allowed a remote attacker who had compromised the renderer process to potentially perform a sandbox escape via a crafted HTML page.📖 Read
via "National Vulnerability Database".
‼ CVE-2020-6557 ‼
📖 Read
via "National Vulnerability Database".
Inappropriate implementation in networking in Google Chrome prior to 86.0.4240.75 allowed a remote attacker to perform domain spoofing via a crafted HTML page.📖 Read
via "National Vulnerability Database".
🕴 6 Cybersecurity Lessons From 2020 🕴
📖 Read
via "Dark Reading".
The COVID-19 pandemic exposed new weaknesses in enterprise cybersecurity preparedness.📖 Read
via "Dark Reading".
Dark Reading
6 Cybersecurity Lessons From 2020
The COVID-19 pandemic exposed new weaknesses in enterprise cybersecurity preparedness.
❌ Oracle Rushes Emergency Fix for Critical WebLogic Server Flaw ❌
📖 Read
via "Threat Post".
The remote code-execution flaw (CVE-2020-14750) is low-complexity and requires no user interaction to exploit.📖 Read
via "Threat Post".
Threat Post
Oracle Rushes Emergency Fix for Critical WebLogic Server Flaw
The remote code-execution flaw (CVE-2020-14750) is low-complexity and requires no user interaction to exploit.
🦿 It's an urgent plea this Election Day: Don't click on ransomware disguised as political ads 🦿
📖 Read
via "Tech Republic".
Remote work and social media have made it easier for businesses to be impacted by security breaches. Here's why, and how organizations can protect themselves.📖 Read
via "Tech Republic".
TechRepublic
It's an urgent plea this Election Day: Don't click on ransomware disguised as political ads
Remote work and social media have made it easier for businesses to be impacted by security breaches. Here's why, and how organizations can protect themselves.
🕴 Reworking the Taxonomy for Richer Risk Assessments 🕴
📖 Read
via "Dark Reading".
By accommodating unique requirements and conditions at different sites, security pros can dig deeper get a clearer sense of organizational risk.📖 Read
via "Dark Reading".
Dark Reading
Reworking the Taxonomy for Richer Risk Assessments
By accommodating unique requirements and conditions at different sites, security pros can dig deeper get a clearer sense of organizational risk.
‼ CVE-2020-4649 ‼
📖 Read
via "National Vulnerability Database".
IBM Planning Analytics Local 2.0.9.2 and IBM Planning Analytics Workspace 57 could expose data to non-privleged users by not invalidating TM1Web user sessions. IBM X-Force ID: 186022.📖 Read
via "National Vulnerability Database".
❌ Media Comms Giant Says Ransomware Hit Will Cost Millions ❌
📖 Read
via "Threat Post".
Aussie firm Isentia said "remediation and foregone revenue" could total $8.5 million AUS or more.📖 Read
via "Threat Post".
Threat Post
Media Comms Giant Says Ransomware Hit Will Cost Millions
Aussie firm Isentia said "remediation and foregone revenue" could total $8.5 million AUS or more.
🕴 9 Cyber Disaster-Recovery Planning Tips for a Disaster-Prone Time 🕴
📖 Read
via "Dark Reading".
This year has been the ultimate test of business resilience, and if anything has become clear, it's this: Security pros need to get to work and overhaul their playbooks in preparation for multilayered attacks.📖 Read
via "Dark Reading".
Dark Reading
9 Cyber Disaster-Recovery Planning Tips for a Disaster-Prone Time
This year has been the ultimate test of business resilience, and if anything has become clear, it's this: Security pros need to get to work and overhaul their playbooks in preparation for multilayered attacks.
❌ Two Chrome Browser Updates Plugs Holes Actively Targeted by Exploits ❌
📖 Read
via "Threat Post".
Patches for both the Chrome desktop and Android browser address high-severity flaws with known exploits available in the wild.📖 Read
via "Threat Post".
Threat Post
Two Chrome Browser Updates Plug Holes Actively Targeted by Exploits
Patches for both the Chrome desktop and Android browser address high-severity flaws with known exploits available in the wild.
🔏 What is SOC 2? 🔏
📖 Read
via "Digital Guardian".
SOC 2 is a set of compliance requirements for companies that use cloud-based storage of customer data. Learn about the basics of SOC 2 and best practices in this week's Data Protection 101!📖 Read
via "Digital Guardian".
🕴 Oracle Issues Out-of-Band Update for Remote-Access Vulnerability 🕴
📖 Read
via "Dark Reading".
The exploit could give an attacker complete control of vulnerable WebLogic servers.📖 Read
via "Dark Reading".
Dark Reading
Oracle Issues Out-of-Band Update for Remote-Access Vulnerability
The exploit could give an attacker complete control of vulnerable WebLogic servers.
❌ 34M Records from 17 Companies Up for Sale in Cybercrime Forum ❌
📖 Read
via "Threat Post".
A diverse set of companies, including an adaptive-learning platform in Brazil, an online grocery service in Singapore and a cold-brew coffee-maker company, are caught up in the large data trove.📖 Read
via "Threat Post".
Threat Post
34M Records from 17 Companies Up for Sale in Cybercrime Forum
A diverse set of companies, including an adaptive-learning platform in Brazil, an online grocery service in Singapore and a cold-brew coffee-maker company, are caught up in the large data trove.
🕴 Neustar Agrees to Buy Verisign's Public DNS Service 🕴
📖 Read
via "Dark Reading".
The address space for Verisign Public DNS will be incorporated into Neustar's UltraDNS Public service following the acquisition.📖 Read
via "Dark Reading".
Dark Reading
Neustar Agrees to Buy Verisign's Public DNS Service
The address space for Verisign Public DNS will be incorporated into Neustar's UltraDNS Public service following the acquisition.
❌ APT Groups Finding Success with Mix of Old and New Tools ❌
📖 Read
via "Threat Post".
The APT threat landscape is a mixed bag of tried-and-true tactics and cutting-edge techniques, largely supercharged by geo-politics, a report finds.📖 Read
via "Threat Post".
Threat Post
APT Groups Finding Success with Mix of Old and New Tools
The APT threat landscape is a mixed bag of tried-and-true tactics and cutting-edge techniques, largely supercharged by geo-politics, a report finds.