π Friday Five: 4/12 Edition π
π Read
via "Subscriber Blog RSS Feed ".
A once defunct hacking forum returns, the New York Times on privacy, and spyware apps - catch up on the week's infosec news with this roundup!π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Friday Five: 4/12 Edition
A once defunct hacking forum returns, the New York Times on privacy, and spyware apps - catch up on the week's infosec news with this roundup!
π΄ Romanians Convicted in Cybertheft Scheme π΄
π Read
via "Dark Reading: ".
Working out of Bucharest since 2007, a pair of criminals infected and controlled more than 400,000 individual computers, mostly in the US.π Read
via "Dark Reading: ".
Dark Reading
Cyberattacks & Data Breaches recent news | Dark Reading
Explore the latest news and expert commentary on Cyberattacks & Data Breaches, brought to you by the editors of Dark Reading
ATENTIONβΌ New - CVE-2017-14199
π Read
via "National Vulnerability Database".
A buffer overflow has been found in the Zephyr Project's getaddrinfo() implementation in 1.9.0 and 1.10.0.π Read
via "National Vulnerability Database".
π 5 best password managers for Android π
π Read
via "Security on TechRepublic".
If you're looking for a password manager for your Android device, Jack Wallen offers his list of what he considers to be the best five on the market.π Read
via "Security on TechRepublic".
π΄ This Week in Security Funding: Where the Money Went π΄
π Read
via "Dark Reading: ".
Predictions for cybersecurity investment in 2019 are holding true with funding announcements from four startups.π Read
via "Dark Reading: ".
Dark Reading
This Week in Security Funding: Where the Money Went
Predictions for cybersecurity investment in 2019 are holding true with funding announcements from four startups.
π 5 best password managers for Android π
π Read
via "Security on TechRepublic".
If you're looking for a password manager for your Android, below are five of the best.π Read
via "Security on TechRepublic".
TechRepublic
5 best password managers for Android
If you're looking for a password manager for your Android, below are five of the best.
π΄ US-CERT, CISA Warn of Vuln in at Least 4 Major VPNs π΄
π Read
via "Dark Reading: ".
VPN products by Cisco, Palo Alto Networks, F5 Networks, Pulse Secure, insecurely store session cookies.π Read
via "Dark Reading: ".
Dark Reading
US-CERT, CISA Warn of Vuln in at Least 4 Major VPNs
VPN products by Cisco, Palo Alto Networks, F5 Networks, Pulse Secure, insecurely store session cookies.
π΄ Senate Report on Equifax Raises Questions Ahead of FICO Product Announcement π΄
π Read
via "Dark Reading: ".
Equifax is slammed in a Senate subcommittee report ahead of the announcement of a joint service with FICO.π Read
via "Dark Reading: ".
Darkreading
Senate Report on Equifax Raises Questions Ahead of FICO Product Announcement
Equifax is slammed in a Senate subcommittee report ahead of the announcement of a joint service with FICO.
β Can you detect hidden cameras in hotel rooms? [VIDEO] β
π Read
via "Naked Security".
Naked Security Live investigates how to sniff out snoopy spycams. We explain what works, and what doesn't, when it comes to hidden cameras.π Read
via "Naked Security".
Naked Security
Can you detect hidden cameras in hotel rooms? [VIDEO]
Naked Security Live investigates how to sniff out snoopy spycams. We explain what works, and what doesnβt, when it comes to hidden cameras.
β Facebook admits βsupply chain data leakβ in new Oculus headsets β
π Read
via "Naked Security".
One week out from Easter, and Facebook's Oculus subsidiary has admitted a "hidden message Easter Egg" gone wrong. Coincidence? Or...π Read
via "Naked Security".
Naked Security
Facebook admits βsupply chain data leakβ in new Oculus headsets
One week out from Easter, and Facebookβs Oculus subsidiary has admitted a βhidden message Easter Eggβ gone wrong. Coincidence? Orβ¦
β Monday review β the hot 24 stories of the week β
π Read
via "Naked Security".
From hidden cameras in Airbnb rentals to iPads locked for 48 years - here's everything we wrote last week.π Read
via "Naked Security".
Sophos
Monday review β the hot 24 stories of the week β Naked Security
From hidden cameras in Airbnb rentals to iPads locked for 48 years - here's everything we wrote last week.
β Dragonblood: Data-leaking flaw in WPA3 Wi-Fi authentication β
π Read
via "Naked Security".
Researchers have discovered several holes in a new security protocol for wireless networks.π Read
via "Naked Security".
Naked Security
Dragonblood: Data-leaking flaw in WPA3 Wi-Fi authentication
Researchers have discovered several holes in a new security protocol for wireless networks.
β Rogue Waves: Preparing the Internet for the Next Mega DDoS Attack β
π Read
via "Threatpost".
Why many attack techniques can be reused β but organizations can't defend against them.π Read
via "Threatpost".
Threat Post
Rogue Waves: Preparing the Internet for the Next Mega DDoS Attack
Why many attack techniques can be reused β but organizations can't defend against them. We look at some likely attack vectors for the next 12 months, and analyze some of the most recent and successful adversarial groups, and the types of attacks they deployedβ¦
ATENTIONβΌ New - CVE-2018-16259 (wp_all_import)
π Read
via "National Vulnerability Database".
There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-settings large_feed_limit.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-16258 (wp_all_import)
π Read
via "National Vulnerability Database".
There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via pmxi-admin-import custom_type.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-16257
π Read
via "National Vulnerability Database".
There are multiple XSS vulnerabilities in WP All Import plugin 3.4.9 for WordPress via action=template.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-16256 (wp_all_import)
π Read
via "National Vulnerability Database".
There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via Add Filtering Options(Add Rule).π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-16255
π Read
via "National Vulnerability Database".
There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via action=evaluate.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-16254
π Read
via "National Vulnerability Database".
There is an XSS vulnerability in WP All Import plugin 3.4.9 for WordPress via action=options.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-13137
π Read
via "National Vulnerability Database".
The Events Manager plugin 5.9.4 for WordPress has XSS via the dbem_event_reapproved_email_body parameter to the wp-admin/edit.php?post_type=event&page=events-manager-options URI.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2017-7772
π Read
via "National Vulnerability Database".
Heap-based Buffer Overflow in Graphite2 library in Firefox before 54 in lz4::decompress function.π Read
via "National Vulnerability Database".