β Researchers crack digital safe using HSM flaw β
π Read
via "Naked Security".
French researchers have found a bug in a hardware security module (HSM) that could enable an attacker to steal highly prized secrets.π Read
via "Naked Security".
β Itβs a SCAM: Send Bitcoin or your companyβs reputation is TOAST! β
π Read
via "Naked Security".
"I will insult people. And everyone will not care that it's not you." But it's social-disaster baloney!π Read
via "Naked Security".
Naked Security
Itβs a SCAM: Send Bitcoin or your companyβs reputation is TOAST!
βI will insult people. And everyone will not care that itβs not you.β But itβs social-disaster baloney!
β iOS 13 will map the apps that are tracking you β
π Read
via "Naked Security".
A map will display the snail-slime trails that we all leave behind in our daily travels and through which background tracking apps follow us.π Read
via "Naked Security".
Naked Security
iOS 13 will map the apps that are tracking you
A map will display the snail-slime trails that we all leave behind in our daily travels and through which background tracking apps follow us.
β Critical flaws found in Amcrest security cameras β
π Read
via "Naked Security".
The Amcrest 721 family of security cameras features six security flaws discovered back in 2017 by a researcher at security outfit Synopsys.π Read
via "Naked Security".
Naked Security
Critical flaws found in Amcrest security cameras
The Amcrest 721 family of security cameras features six security flaws discovered back in 2017 by a researcher at security outfit Synopsys.
β Data Breach Exposes 100K U.S. Traveler Photos, License Plates β
π Read
via "Threatpost".
A recent breach of U.S. Customs and Border Protection traveler photo and license plate data has led experts to condemn the collection and storage of facial recognition data.π Read
via "Threatpost".
Threat Post
Data Breach Exposes 100K U.S. Traveler Photos, License Plates
A recent breach of U.S. Customs and Border Protection traveler photo and license plate data has led experts to condemn the collection and storage of facial recognition data.
π More than 3B fake emails sent daily as phishing attacks persist π
π Read
via "Security on TechRepublic".
Some 140,000 more domains are using DMARC records since the start of 2019, though DMARC-based enforcement remains complex to implement.π Read
via "Security on TechRepublic".
TechRepublic
More than 3B fake emails sent daily as phishing attacks persist
Some 140,000 more domains are using DMARC records since the start of 2019, though DMARC-based enforcement remains complex to implement.
π΄ Getting Up to Speed on Magecart π΄
π Read
via "Dark Reading: ".
Greater awareness of how Magecart works will give your company a leg up on the growing threat from this online credit card skimmer. Here are four places to start.π Read
via "Dark Reading: ".
Darkreading
Getting Up to Speed on Magecart
Greater awareness of how Magecart works will give your company a leg up on the growing threat from this online credit card skimmer. Here are four places to start.
β Troy Hunt Looks to Sell Have I Been Pwned β
π Read
via "Threatpost".
"Project Svalbard" has commenced, as Hunt looks for the right company to take over the password-focused service.π Read
via "Threatpost".
Threat Post
Troy Hunt Looks to Sell Have I Been Pwned
"Project Svalbard" has commenced, as Hunt looks for the right company to take over the password-focused service.
β Critical Adobe Flash, ColdFusion Vulnerabilities Patched β
π Read
via "Threatpost".
Adobe issued patches for 11 vulnerabilities overall across its Flash, ColdFusion and Campaign products.π Read
via "Threatpost".
Threat Post
Critical Adobe Flash, ColdFusion Vulnerabilities Patched
Adobe issued patches for 11 vulnerabilities overall across its Flash, ColdFusion and Campaign products.
β Linux Command-Line Editors Vulnerable to High-Severity Bug β
π Read
via "Threatpost".
A bug impacting editors Vim and Neovim could allow a trojan code to escape sandbox mitigations.π Read
via "Threatpost".
Threat Post
Linux Command-Line Editors Vulnerable to High-Severity Bug
A bug impacting editors Vim and Neovim could allow a trojan code to escape sandbox mitigations.
β Near-Ubiquitous Critical Microsoft RCE Bugs Affect All Versions of Windows β
π Read
via "Threatpost".
The two CVEs allow bypasses to get around NTLM relay attack mitigations.π Read
via "Threatpost".
Threat Post
Near-Ubiquitous Microsoft RCE Bugs Affect All Versions of Windows
The two CVEs allow bypasses to get around NTLM relay attack mitigations.
π΄ FBI Warns of Dangers in 'Safe' Websites π΄
π Read
via "Dark Reading: ".
Criminals are using TLS certificates to convince users that fraudulent sites are worthy of their trust.π Read
via "Dark Reading: ".
Darkreading
FBI Warns of Dangers in 'Safe' Websites
Criminals are using TLS certificates to convince users that fraudulent sites are worthy of their trust.
π How to protect your network against security flaws in Microsoft's NTLM protocol π
π Read
via "Security on TechRepublic".
Vulnerabilities in NTLM recently discovered by security provider Preempt could allow attackers to remotely execute malicious code on any Windows machine or authenticate to any web server that supports Windows Integrated Authentication.π Read
via "Security on TechRepublic".
π΄ What 3 Powerful GoT Women Teach Us about Cybersecurity π΄
π Read
via "Dark Reading: ".
Imagine Game of Thrones' Daenerys Targaryen, Arya Stark, and Cersei Lannister on the front lines in the real-world battleground of enterprise security.π Read
via "Dark Reading: ".
Dark Reading
Cloud Security recent news | Dark Reading
Explore the latest news and expert commentary on Cloud Security, brought to you by the editors of Dark Reading
β Google Calendar Attacks Target Unwitting Mobile Users β
π Read
via "Threatpost".
Automatic invite notifications are spreading malicious links.π Read
via "Threatpost".
Threat Post
Google Calendar Attacks Target Unwitting Mobile Users
Automatic invite notifications are spreading malicious links.
ATENTIONβΌ New - CVE-2018-11801
π Read
via "National Vulnerability Database".
SQL injection vulnerability in Apache Fineract before 1.3.0 allows attackers to execute arbitrary SQL commands via a query on a m_center data related table.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-11800
π Read
via "National Vulnerability Database".
SQL injection vulnerability in Apache Fineract before 1.3.0 allows attackers to execute arbitrary SQL commands via a query on the GroupSummaryCounts related table.π Read
via "National Vulnerability Database".
π Adobe Updates Fix Critical Vulnerabilities in ColdFusion, Campaign, and Flash Player π
π Read
via "Subscriber Blog RSS Feed ".
Adobe is urging users to patch 10 vulnerabilities, five of them critical, in three different products this week.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Adobe Updates Fix Critical Vulnerabilities in ColdFusion, Campaign, and Flash Player
Adobe is urging users to patch 10 vulnerabilities, five of them critical, in three different products this week.
π΄ 'Have I Been Pwned' Is Up for Sale π΄
π Read
via "Dark Reading: ".
Troy Hunt, who has been running HIBP solo for six years, launched "Project Svalbard" so the site can evolve with more resources, funding, and support.π Read
via "Dark Reading: ".
Dark Reading
'Have I Been Pwned' Is Up for Sale
Troy Hunt, who has been running HIBP solo for six years, launched Project Svalbard so the site can evolve with more resources, funding, and support.
β Microsoft Patches Four Publicly-Known Vulnerabilities β
π Read
via "Threatpost".
In total, 88 unique vulnerabilities were patched as part of Microsoftβs June Patch Tuesday security bulletin.π Read
via "Threatpost".
Threat Post
Microsoft Patches Four Publicly-Known Vulnerabilities
In total, 88 unique vulnerabilities were patched as part of Microsoftβs June Patch Tuesday security bulletin.
π΄ Microsoft Issues Fixes for 88 Vulnerabilities π΄
π Read
via "Dark Reading: ".
Four of the flaws are publicly known but none have been listed as under active attack.π Read
via "Dark Reading: ".
Dark Reading
Vulnerabilities & Threats recent news | Dark Reading
Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading