❌ Yet Another Bypass: Is 2FA Broken? Authentication Experts Weigh In ❌
📖 Read
via "Threatpost | The first stop for security news".
A penetration testing tool called Modlishka can defeat two-factor authentication in the latest 2FA security issue. We asked a roundtable of experts what it all means.📖 Read
via "Threatpost | The first stop for security news".
Threat Post
Yet Another Bypass: Is 2FA Broken? Authentication Experts Weigh In
A penetration testing tool called Modlishka can defeat two-factor authentication in the latest 2FA security issue. We asked a roundtable of experts what it all means.
❌ U.S. Government Shutdown Leaves Dozens of .Gov Websites Vulnerable ❌
📖 Read
via "Threatpost | The first stop for security news".
As the shutdown continues into its 21st day, dozens of .gov websites haven't renewed their TLS certificates.📖 Read
via "Threatpost | The first stop for security news".
Threat Post
U.S. Government Shutdown Leaves Dozens of .Gov Websites Vulnerable
As the shutdown continues into its 21st day, dozens of .gov websites haven't renewed their TLS certificates.
🕴 Who Takes Responsibility for Cyberattacks in the Cloud? 🕴
📖 Read
via "Dark Reading: ".
A new CSA report addresses the issue of breach responsibility as more organizations move ERP application data the cloud.📖 Read
via "Dark Reading: ".
Dark Reading
Who Takes Responsibility for Cyberattacks in the Cloud?
A new CSA report addresses the issue of breach responsibility as more organizations move ERP application data the cloud.
❌ TA505 Crime Gang Debuts Brand-New ServHelper Backdoor ❌
📖 Read
via "Threatpost | The first stop for security news".
The latest malware from TA505 has been seen targeting banks, retailers and restaurants with two different versions.📖 Read
via "Threatpost | The first stop for security news".
Threat Post
TA505 Crime Gang Debuts Brand-New ServHelper Backdoor
The latest malware from TA505 has been seen targeting banks, retailers and restaurants with two different versions.
🕴 6 Serverless and Containerization Trends CISOs Should Track 🕴
📖 Read
via "Dark Reading: ".
Security leaders must stay on top of a fast-moving world of cloud deployment options.📖 Read
via "Dark Reading: ".
Dark Reading
Slideshows - Dark Reading
Dark Reading: Connecting The Information Security Community. Explore our slideshows.
🕴 NotPetya Victim Mondelez Sues Zurich Insurance for $100 Million 🕴
📖 Read
via "Dark Reading: ".
Mondelez files lawsuit after Zurich rejects claim for damages from massive ransomware attack.📖 Read
via "Dark Reading: ".
Dark Reading
NotPetya Victim Mondelez Sues Zurich Insurance for $100 Million
Mondelez files lawsuit after Zurich rejects claim for damages from massive ransomware attack.
ATENTION‼ New - CVE-2017-13891
📖 Read
via "National Vulnerability Database".
In iOS before 11.2, an inconsistent user interface issue was addressed through improved state management.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2017-13889
📖 Read
via "National Vulnerability Database".
In macOS High Sierra before 10.13.3, Security Update 2018-001 Sierra, and Security Update 2018-001 El Capitan, a logic error existed in the validation of credentials. This was addressed with improved credential validation.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2017-13888
📖 Read
via "National Vulnerability Database".
In iOS before 11.2, a type confusion issue was addressed with improved memory handling.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2017-13887
📖 Read
via "National Vulnerability Database".
In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved state management.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2017-13886
📖 Read
via "National Vulnerability Database".
In macOS High Sierra before 10.13.2, an access issue existed with privileged WiFi system configuration. This issue was addressed with additional restrictions.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-7576
📖 Read
via "National Vulnerability Database".
In iOS before 9.3.3, a memory corruption issue existed in the kernel. This issue was addressed through improved memory handling.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-4644
📖 Read
via "National Vulnerability Database".
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a downgrade issue existed with HTTP authentication credentials saved in Keychain. This issue was addressed by storing the authentication types with the credentials.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-4643
📖 Read
via "National Vulnerability Database".
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, a validation issue existed in the parsing of 407 responses. This issue was addressed through improved response validation.📖 Read
via "National Vulnerability Database".
ATENTION‼ New - CVE-2016-4642
📖 Read
via "National Vulnerability Database".
In iOS before 9.3.3, tvOS before 9.2.2, and OS X El Capitan before v10.11.6 and Security Update 2016-004, proxy authentication incorrectly reported HTTP proxies received credentials securely. This issue was addressed through improved warnings.📖 Read
via "National Vulnerability Database".
🕴 SCOTUS Says Suit Over Fiat-Chrysler Hack Can Move Forward 🕴
📖 Read
via "Dark Reading: ".
A class-action suit over a 2015 attack demonstration against a Jeep Cherokee can move forward, US Supreme Court rules.📖 Read
via "Dark Reading: ".
Darkreading
SCOTUS Says Suit Over Fiat-Chrysler Hack Can Move Forward
A class-action suit over a 2015 attack demonstration against a Jeep Cherokee can move forward, US Supreme Court rules.
🕴 How Enterprises Are Attacking the Cybersecurity Problem 🕴
📖 Read
via "Dark Reading: ".
Data breach fears and the need to comply with regulations such as GDPR are two major drivers increased spending on security products and technologies. But other factors are contributing to the trend as well. Find out more about how enterprises are attacking the cybersecurity problem by reading our report today.📖 Read
via "Dark Reading: ".
🕴 Government Shutdown Brings Certificate Lapse Woes 🕴
📖 Read
via "Dark Reading: ".
Among the problems: TLS certificates are expiring and websites are becoming inaccessible.📖 Read
via "Dark Reading: ".
Dark Reading
Government Shutdown Brings Certificate Lapse Woes
Among the problems: TLS certificates are expiring and websites are becoming inaccessible.
❌ Pre-Installed Android App Impacts Millions with Slew of Malicious Activity ❌
📖 Read
via "Threatpost | The first stop for security news".
The app was developed by legitimate Chinese manufacturing giant TCL.📖 Read
via "Threatpost | The first stop for security news".
Threat Post
Pre-Installed Android App Impacts Millions with Slew of Malicious Activity
The app was developed by legitimate Chinese manufacturing giant TCL.
🔐 Good data in, good data out: How innovation in technology has evolved 🔐
📖 Read
via "Security on TechRepublic".
Xerox's CISO Alissa Abdullah discusses how innovation in technology and security has changed throughout her career.📖 Read
via "Security on TechRepublic".
TechRepublic
Good data in, good data out: How innovation in technology has evolved
Xerox's CISO Alissa Abdullah discusses how innovation in technology and security has changed throughout her career.
🔐 Good data in, good data out: How innovation in technology has evolved 🔐
📖 Read
via "Security on TechRepublic".
Xerox's CISO Alissa Abdullah discusses how innovation in technology and security has changed throughout her career.📖 Read
via "Security on TechRepublic".
TechRepublic
Good data in, good data out: How innovation in technology has evolved
Xerox's CISO Alissa Abdullah discusses how innovation in technology and security has changed throughout her career.