ATENTIONβΌ New - CVE-2018-12389
π Read
via "National Vulnerability Database".
Mozilla developers and community members reported memory safety bugs present in Firefox ESR 60.2. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox ESR < 60.3 and Thunderbird < 60.3.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-12388
π Read
via "National Vulnerability Database".
Mozilla developers and community members reported memory safety bugs present in Firefox 62. Some of these bugs showed evidence of memory corruption and we presume that with enough effort that some of these could be exploited to run arbitrary code. This vulnerability affects Firefox < 63.π Read
via "National Vulnerability Database".
π΄ Solving Security: Repetition or Redundancy? π΄
π Read
via "Dark Reading: ".
To effectively defend against today's risks and threats, organizations must examine their failings as well as their successes.π Read
via "Dark Reading: ".
Dark Reading
Solving Security: Repetition or Redundancy?
To effectively defend against today's risks and threats, organizations must examine their failings as well as their successes.
π΄ Turkish Group Using Phishing Emails to Hijack Popular Instagram Profiles π΄
π Read
via "Dark Reading: ".
In some cases, attackers have demanded ransom, nude photos/videos of victims in exchange for stolen account, Trend Micro says.π Read
via "Dark Reading: ".
Darkreading
Turkish Group Using Phishing Emails to Hijack Popular Instagram Profiles
In some cases, attackers have demanded ransom, nude photos/videos of victims in exchange for stolen account, Trend Micro says.
β The βMomo challengeβ β why itβs time to stop the hype [VIDEO] β
π Read
via "Naked Security".
What's the real deal with the "Momo challenge"?π Read
via "Naked Security".
Naked Security
The βMomo challengeβ β why itβs time to stop the hype [VIDEO]
Whatβs the real deal with the βMomo challengeβ?
π Using your Office 365 Secure Score π
π Read
via "Security on TechRepublic".
Office 365, Microsoft 365 and the Security Graph are coming together at last.π Read
via "Security on TechRepublic".
β Dow Jones Watchlist of risky businesses exposed on public server β
π Read
via "Naked Security".
A company with access to the Dow Jones Watchlist of risky people and businesses left it on a public AWS server without a password.π Read
via "Naked Security".
Naked Security
Dow Jones Watchlist of risky businesses exposed on public server
A company with access to the Dow Jones Watchlist of risky people and businesses left it on a public AWS server without a password.
β Disgruntled dev blames crypto-wallet for losing cryptocoins β
π Read
via "Naked Security".
Warith Al Maawali is blaming wallet vendor Coinomi for the loss of $65,000 in bitcoin. Coinomi countered by blaming him for blackmail.π Read
via "Naked Security".
Naked Security
Disgruntled dev blames crypto-wallet for losing cryptocoins
Warith Al Maawali is blaming wallet vendor Coinomi for the loss of $65,000 in bitcoin. Coinomi countered by blaming him for blackmail.
β For sale: iPhone hacking tool, one previous (not very careful) owner β
π Read
via "Naked Security".
At $100, the old-gen iPhone encryption-cracking tools are a bargain to hackers looking to pick up leftover forensics or police Wi-Fi data.π Read
via "Naked Security".
Naked Security
For sale: iPhone hacking tool, one previous (not very careful) owner
At $100, the old-gen iPhone encryption-cracking tools are a bargain to hackers looking to pick up leftover forensics or police Wi-Fi data.
β Data-tracking Chrome flaw triggered by viewing PDFs β
π Read
via "Naked Security".
Researchers have spotted an unusual βtrackwareβ attack triggered by a viewing a PDF inside the Chrome browser.π Read
via "Naked Security".
Naked Security
Data-tracking Chrome flaw triggered by viewing PDFs
Researchers have spotted an unusual βtrackwareβ attack triggered by a viewing a PDF inside the Chrome browser.
π΄ Encryption Offers Safe Haven for Criminals and Malware π΄
π Read
via "Dark Reading: ".
The same encryption that secures private enterprise data also provides security to malware authors and criminal networks.π Read
via "Dark Reading: ".
Darkreading
Encryption Offers Safe Haven for Criminals and Malware
The same encryption that secures private enterprise data also provides security to malware authors and criminal networks.
π΄ Security Pros Agree: Cloud Adoption Outpaces Security π΄
π Read
via "Dark Reading: ".
Oftentimes, responsibility for securing the cloud falls to IT instead of the security organization, researchers report.π Read
via "Dark Reading: ".
Dark Reading
Security Pros Agree: Cloud Adoption Outpaces Security
Oftentimes, responsibility for securing the cloud falls to IT instead of the security organization, researchers report.
π What is SOX Compliance? 2019 SOX Requirements & More π
π Read
via "Subscriber Blog RSS Feed ".
A DEFINITION OF SOX COMPLIANCEπ Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
What is SOX Compliance? 2023 SOX Requirements & More
Learn about SOX compliance in Data Protection 101, our series on the fundamentals of data security.
π Your systems, their profit: How IT rights can be abused for shadow mining of cryptocurrency π
π Read
via "Security on TechRepublic".
IT professionals have the know-how and requisite privileges to deploy Bitcoin miners, and to cover their tracks. Could your organization be at risk?π Read
via "Security on TechRepublic".
TechRepublic
Your systems, their profit: How IT rights can be abused for shadow mining of cryptocurrency
IT professionals have the know-how and requisite privileges to deploy Bitcoin miners, and to cover their tracks. Could your organization be at risk?
π Why ransomware attacks are growing more targeted π
π Read
via "Security on TechRepublic".
Ransomware attacks in 2018 used Remote Desktop Protocol (RDP) as a main attack vector, according to a Webroot report.π Read
via "Security on TechRepublic".
TechRepublic
Why ransomware attacks are growing more targeted
Ransomware attacks in 2018 used Remote Desktop Protocol (RDP) as a main attack vector, according to a Webroot report.
π΄ Security Experts, Not Users, Are the Weakest Link π΄
π Read
via "Dark Reading: ".
CISOs: Stop abdicating responsibility for problems with users - it's part of your job.π Read
via "Dark Reading: ".
Darkreading
Security Experts, Not Users, Are the Weakest Link
CISOs: Stop abdicating responsibility for problems with users, it's part of your job.
β Necurs Botnet Evolves to Hide in the Shadows, with New Payloads β
π Read
via "Threatpost".
Using an on-again, off-again strategy of C2 communication helps it hide from researchers.π Read
via "Threatpost".
Threat Post
Necurs Botnet Evolves to Hide in the Shadows, with New Payloads
Using an on-again, off-again strategy of C2 communication helps it hide from researchers.
β The Momo Challenge urban legend β what on earth is going on? β
π Read
via "Naked Security".
Why you shouldn't worry about the Momo Challenge, and what we can learn from it.π Read
via "Naked Security".
Naked Security
The Momo Challenge urban legend β what on earth is going on?
Why you shouldnβt worry about the Momo Challenge, and what we can learn from it.
π΄ Dow Jones Leak Exposes Watchlist Database π΄
π Read
via "Dark Reading: ".
The Watchlist, which contained the identities of government officials, politicians, and people of political interest, is used to identify risk when researching someone.π Read
via "Dark Reading: ".
Dark Reading
Data Leak Exposes Dow Jones Watchlist Database
The Watchlist, which contained the identities of government officials, politicians, and people of political interest, is used to identify risk when researching someone.
π Friday Five: 3/1 Edition π
π Read
via "Subscriber Blog RSS Feed ".
News on a new data privacy bill, the FTC's latest $5.7M fine, and hacking Instagram profiles - catch up on the week's infosec news with this roundup!π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Friday Five: 3/1 Edition
News on a new data privacy bill, the FTC's latest $5.7M fine, and hacking Instagram profiles - catch up on the week's infosec news with this roundup!
β Podcast: RSA Conference 2019 Preview β
π Read
via "Threatpost".
The Threatpost team talks about the biggest cybersecurity stories, trends and research we'll see at RSA this year.π Read
via "Threatpost".
Threat Post
Podcast: RSA Conference 2019 Preview
The Threatpost team talks about the biggest cybersecurity stories, trends and research weβll see at RSA this year.