β Used Nest cams were letting previous owners spy on you β
π Read
via "Naked Security".
Google says it's fixed the issue, but we haven't heard details on how many, and which, products were affected.π Read
via "Naked Security".
Naked Security
Used Nest cams were letting previous owners spy on you
Google says itβs fixed the issue, but we havenβt heard details on how many, and which, products were affected.
π΄ Attackers Exploit MSP's Tools to Distribute Ransomware π΄
π Read
via "Dark Reading: ".
Early information suggests threat actors gained access to the managed service provider's remote monitoring and management tools and used them to attack the firm's clients.π Read
via "Dark Reading: ".
Darkreading
Customers of 3 MSPs Hit in Ransomware Attacks
Early information suggests threat actors gained access to remote monitoring and management tools from Webroot and Kaseya to distribute malware.
β Microsoft uses AI to push Windows 10 upgrade to users β
π Read
via "Naked Security".
From November, users running some versions of Windows 10 will be required to upgrade or find themselves unable to receive security updates.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
π KGB agents' wearables: Watches, cufflinks, shoes, and more π
π Read
via "Security on TechRepublic".
The KGB Espionage Museum's curator Agne Urbaityte describes how agents concealed spying devices in what they wore when working in the field.π Read
via "Security on TechRepublic".
TechRepublic
KGB agents' wearables: Watches, cufflinks, shoes, and more
The KGB Espionage Museum's curator Agne Urbaityte describes how agents concealed spying devices in what they wore when working in the field.
π΄ Apply Military Strategy to Cybersecurity at Black Hat Trainings Virginia π΄
π Read
via "Dark Reading: ".
This special October event in Alexandria, Virginia offers unique, practical courses in everything from data breach response to military strategy for cybersecurity.π Read
via "Dark Reading: ".
Dark Reading
Apply Military Strategy to Cybersecurity at Black Hat Trainings Virginia
This special October event in Alexandria, Virginia offers unique, practical courses in everything from data breach response to military strategy for cybersecurity.
β Mozilla Fixes Second Actively-Exploited Firefox Flaw β
π Read
via "Threatpost".
Mozilla has patched a second actively-exploited vulnerability in Firefox this week.π Read
via "Threatpost".
Threat Post
Mozilla Fixes Second Actively-Exploited Firefox Flaw
Mozilla has patched a second actively-exploited vulnerability in Firefox this week.
π΄ Patrolling the New Cybersecurity Perimeter π΄
π Read
via "Dark Reading: ".
Remote work and other developments demand a shift to managing people rather than devices.π Read
via "Dark Reading: ".
Darkreading
Patrolling the New Cybersecurity Perimeter
Remote work and other developments demand a shift to managing people rather than devices.
π The KGB's eavesdropping and spying devices in everyday items π
π Read
via "Security on TechRepublic".
The KGB Espionage Museum's curator Agne Urbaityte explains why and how plates and ashtrays were used as eavesdropping and spying devices.π Read
via "Security on TechRepublic".
TechRepublic
The KGB's eavesdropping and spying devices in everyday items
The KGB Espionage Museum's curator Agne Urbaityte explains why and how plates and ashtrays were used as eavesdropping and spying devices.
π΄ Startup Raises $13.7M to Stop Breaches with Behavioral Analytics π΄
π Read
via "Dark Reading: ".
TrueFort plans to use the funding to expand sales, marketing, R&D, customer support, and go-to-market initiatives.π Read
via "Dark Reading: ".
Dark Reading
Startup Raises $13.7M to Stop Breaches with Behavioral Analytics
TrueFort plans to use the funding to expand sales, marketing, R&D, customer support, and go-to-market initiatives.
ATENTIONβΌ New - CVE-2016-7404
π Read
via "National Vulnerability Database".
OpenStack Magnum passes OpenStack credentials into the Heat templates creating its instances. While these should just be used for retrieving the instances' SSL certificates, they allow full API access, though and can be used to perform any API operation the user is authorized to perform.π Read
via "National Vulnerability Database".
π΄ Pledges to Not Pay Ransomware Hit Reality π΄
π Read
via "Dark Reading: ".
While risk analysts and security experts continue to urge companies to secure systems against ransomware, they are now also advising that firms be ready to pay.π Read
via "Dark Reading: ".
Darkreading
Pledges to Not Pay Ransomware Hit Reality
While risk analysts and security experts continue to urge companies to secure systems against ransomware, they are now also advising that firms be ready to pay.
π Friday Five: 6/21 Edition π
π Read
via "Subscriber Blog RSS Feed ".
A $600,000 ransom is paid, a phishing attack yields more victims than expected, and a trio of university data breaches - catch up on the week's news with this roundup!π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Friday Five: 6/21 Edition
A $600,000 ransom is paid, a phishing attack yields more victims than expected, and a trio of university data breaches - catch up on the week's news with this roundup!
π΄ Four CVEs Describe SACKs of Linux and FreeBSD Vulnerabilities π΄
π Read
via "Dark Reading: ".
Four new CVEs present issues that have a potential DoS impact on almost every Linux user.π Read
via "Dark Reading: ".
Darkreading
Four CVEs Describe SACKs of Linux and FreeBSD Vulnerabilities
Four new CVEs present issues that have a potential DoS impact on almost every Linux user.
ATENTIONβΌ New - CVE-2017-15694
π Read
via "National Vulnerability Database".
When an Apache Geode server versions 1.0.0 to 1.8.0 is operating in secure mode, a user with write permissions for specific data regions can modify internal cluster metadata. A malicious user could modify this data in a way that affects the operation of the cluster.π Read
via "National Vulnerability Database".
π΄ Cyber-Risks Hiding Inside Mobile App Stores π΄
π Read
via "Dark Reading: ".
As the number of blacklisted apps on Google Play continues to drop, attackers find new ways to compromise smartphones.π Read
via "Dark Reading: ".
Darkreading
Cyber-Risks Hiding Inside Mobile App Stores
As the number of blacklisted apps on Google Play continues to drop, attackers find new ways to compromise smartphones.
β Podcast: Dating App Privacy and NASA Cyberattack β
π Read
via "Threatpost".
The Threatpost team discusses the top news of the week - from a NASA cyberincident to dating app privacy issues.π Read
via "Threatpost".
Threat Post
Podcast: Dating App Privacy and NASA Cyberattack
The Threatpost team discusses the top news of the week - from a NASA cyberincident to dating app privacy issues.
β Microsoft Outlook for Android Open to XSS Attacks β
π Read
via "Threatpost".
A spoofing bug (CVE-2019-1105) can open the door to an email attack chain.π Read
via "Threatpost".
Threat Post
Microsoft Outlook for Android Open to XSS Attacks
A spoofing bug (CVE-2019-1105) can open the door to an email attack chain.
β MobOk Malware Hides in Photo Editors on Google Play, Siphons Cash β
π Read
via "Threatpost".
Pink Camera apps secretly signed users up for premium subscription services.π Read
via "Threatpost".
Threat Post
MobOk Malware Hides in Photo Editors on Google Play, Siphons Cash
Pink Camera apps secretly signed users up for premium subscription services.
π How to view your privacy settings for Microsoft Office 365 π
π Read
via "Security on TechRepublic".
You can and should review your privacy settings for Microsoft Office 365. Learn how in this step-by-step tutorial.π Read
via "Security on TechRepublic".
TechRepublic
How to view your privacy settings for Microsoft Office 365
You can and should review your privacy settings for Microsoft Office 365. Learn how in this step-by-step tutorial.
β Monday review β the hot 20 stories of the week β
π Read
via "Naked Security".
From Bella Thorne publishing her own nudes to the Yubikey recall - and everything in between. It's weekly roundup time.π Read
via "Naked Security".
Naked Security
Monday review β the hot 20 stories of the week
From Bella Thorne publishing her own nudes to the Yubikey recall β and everything in between. Itβs weekly roundup time.
β Facebook posts reveal your hidden illnesses, say researchers β
π Read
via "Naked Security".
The language we use could be indicators of disease and, with patient consent, could be monitored just like physical symptoms.π Read
via "Naked Security".
Naked Security
Facebook posts reveal your hidden illnesses, say researchers
The language we use could be indicators of disease and, with patient consent, could be monitored just like physical symptoms.