β Adult Sites Lack Privacy, Open the Door for Harassment and Tracking β
π Read
via "Threatpost".
Third-party tracking is rampant on sites like Pornhub, with users' sexual preferences on full view.π Read
via "Threatpost".
Threat Post
Adult Sites Lack Privacy, Open the Door for Harassment and Tracking
Third-party tracking is rampant on sites like Pornhub, with users' sexual preferences on full view.
β Iran-Linked APT34 Invites Victims to LinkedIn for Fresh Malware Infections β
π Read
via "Threatpost".
The group was posing as a researcher from Cambridge, and was found to have added three new malware families to its spy arsenal.π Read
via "Threatpost".
Threat Post
Iran-Linked APT34 Invites Victims to LinkedIn for Fresh Malware Infections
The group was posing as a researcher from Cambridge, and was found to have added three new malware families to its spy arsenal.
ATENTIONβΌ New - CVE-2002-0390
π Read
via "National Vulnerability Database".
** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2002-0639. Reason: This candidate is a reservation duplicate of CVE-2002-0639. Notes: All CVE users should reference CVE-2002-0639 instead of this candidate. All references and descriptions in this candidate have been removed to prevent accidental usage.π Read
via "National Vulnerability Database".
β Monday review β the hot 22 stories of the week β
π Read
via "Naked Security".
From the RDP exploit already at your door to Chrome's XSS Auditor - and everything in between. It's weekly roundup time.π Read
via "Naked Security".
Naked Security
Monday review β the hot 22 stories of the week
From the RDP exploit already at your door to Chromeβs XSS Auditor β and everything in between. Itβs weekly roundup time.
β Stop facial recognition trials now, warns UK committee β
π Read
via "Naked Security".
The UK government should suspend trials of automatic facial recognition systems until it can meet regulatorsβ concerns about the technology, according to a report released Friday.π Read
via "Naked Security".
Naked Security
Stop facial recognition trials now, warns UK committee
The UK government should suspend trials of automatic facial recognition systems until it can meet regulatorsβ concerns about the technology, according to a report released Friday.
β Hacked Bulgarian database reaches online forums β
π Read
via "Naked Security".
Data on millions of people stolen from the Bulgarian government has already popped up on hacker trading forums.π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
β Chrome 76 blocks websites from detecting incognito mode β
π Read
via "Naked Security".
Ever bypassed a website paywall using a browserβs privacy mode? It was once a simple hack, however, it no longer works for most websites.π Read
via "Naked Security".
Naked Security
Chrome 76 blocks websites from detecting incognito mode
Ever bypassed a website paywall using a browserβs privacy mode? It was once a simple hack, however, it no longer works for most websites.
π΄ 6 Actions that Made GDPR Real in 2019 π΄
π Read
via "Dark Reading: ".
In the wake of recent fines levied against British Airways, Marriott, and Facebook, companies are starting to take data privacy and security more seriously.π Read
via "Dark Reading: ".
Dark Reading
Cyber Risk recent news | Dark Reading
Explore the latest news and expert commentary on Cyber Risk, brought to you by the editors of Dark Reading
π΄ CISO Pressures: Why the Role Stinks and How to Fix It π΄
π Read
via "Dark Reading: ".
CISOs spend much less time in their role than other members of the boardroom. It's a serious problem that must be addressed.π Read
via "Dark Reading: ".
Darkreading
CISO Pressures: Why the Role Stinks and How to Fix It
CISOs spend much less time in their role than other members of the boardroom. It's a serious problem that must be addressed.
β Equifax to Pay $700 Million in 2017 Data Breach Settlement β
π Read
via "Threatpost".
Equifax will dish out as much as $700 million on the heels of its infamous 2017 data breach that impacted 150 million customers.π Read
via "Threatpost".
Threat Post
Equifax to Pay $700 Million in 2017 Data Breach Settlement
Equifax will dish out as much as $700 million on the heels of its infamous 2017 data breach that impacted 150 million customers.
π΄ Ex-NSA Contractor Gets 9 Years for Retaining Defense Data π΄
π Read
via "Dark Reading: ".
Law enforcement recovered two decades' worth of stolen material from the home and car of former government contractor Harold Martin.π Read
via "Dark Reading: ".
Darkreading
Ex-NSA Contractor Gets 9 Years for Retaining Defense Data
Law enforcement recovered two decades' worth of stolen material from the home and car of former government contractor Harold Martin.
π 4 ways to avoid malware on Android π
π Read
via "Security on TechRepublic".
Users can avoid malware on their Android devices if they follow four, easy tips.π Read
via "Security on TechRepublic".
TechRepublic
4 ways to avoid malware on Android
Users can avoid malware on their Android devices if they follow four, easy tips.
β Large-Scale Government Hacks Hit Russia, Bulgaria β
π Read
via "Threatpost".
The Bulgarian attack impacted almost tax information for the entire country.π Read
via "Threatpost".
Threat Post
Large-Scale Government Hacks Hit Russia, Bulgaria
The Bulgarian attack impacted almost tax information for the entire country.
π 40% of enterprises experienced Office 365 credential theft, report finds π
π Read
via "Security on TechRepublic".
While 80% of organizations use more than the default security provided by Office 365, additional measures are needed to secure enterprise email.π Read
via "Security on TechRepublic".
TechRepublic
40% of enterprises experienced Office 365 credential theft, report finds
While 80% of organizations use more than the default security provided by Office 365, additional measures are needed to secure enterprise email.
ATENTIONβΌ New - CVE-2018-2024
π Read
via "National Vulnerability Database".
IBM QRadar SIEM 7.2 and 7.3 specifies permissions for a security-critical resource in a way that allows that resource to be read or modified by unintended actors. IBM X-Force ID: 155350.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-13927
π Read
via "National Vulnerability Database".
Debug policy with invalid signature can be loaded when the debug policy functionality is disabled by using the parallel image loading in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, SD 410/12, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM630, SDM660, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-13924
π Read
via "National Vulnerability Database".
Lack of check to prevent the buffer length taking negative values can lead to stack overflow. in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables, Snapdragon Wired Infrastructure and Networking in IPQ8074, MDM9150, MDM9206, MDM9607, MDM9615, MDM9625, MDM9635M, MDM9640, MDM9650, MDM9655, MSM8909W, MSM8996AU, QCA6174A, QCA8081, QCS404, QCS405, QCS605, Qualcomm 215, SD 210/SD 212/SD 205, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 615/16/SD 415, SD 625, SD 632, SD 636, SD 650/52, SD 665, SD 675, SD 712 / SD 710 / SD 670, SD 730, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, SDX20, Snapdragon_High_Med_2016, SXR1130π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2018-13896
π Read
via "National Vulnerability Database".
XBL_SEC image authentication and other crypto related validations are accessible to a compromised OEM XBL Loader due to missing lock at XBL_SEC stage.. in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wired Infrastructure and Networking in MDM9206, MDM9607, MDM9650, MDM9655, MSM8996AU, QCS404, QCS605, Qualcomm 215, SD 410/12, SD 425, SD 427, SD 430, SD 435, SD 439 / SD 429, SD 450, SD 625, SD 632, SD 636, SD 712 / SD 710 / SD 670, SD 820, SD 820A, SD 835, SD 845 / SD 850, SD 855, SD 8CX, SDA660, SDM439, SDM630, SDM660, Snapdragon_High_Med_2016, SXR1130π Read
via "National Vulnerability Database".
β Amazon Alexa, Google Home On Collision Course With Regulation β
π Read
via "Threatpost".
Threatpost talks to Tim Mackey with Synopsys about recent Amazon Echo and Google Home privacy faux pas. Will GDPR and other regulations catch up to the voice assistants?π Read
via "Threatpost".
Threat Post
Amazon Alexa, Google Home On Collision Course With Regulation
Threatpost talks to Tim Mackey with Synopsys about recent Amazon Echo and Google Home privacy faux pas. Will GDPR and other regulations catch up to the voice assistants?
π΄ Firmware Vulnerabilities Show Supply Chain Risks π΄
π Read
via "Dark Reading: ".
A recently announced pair of vulnerabilities in server firmware could put enterprise IT at risk.π Read
via "Dark Reading: ".
Darkreading
Firmware Vulnerabilities Show Supply Chain Risks
A recently announced pair of vulnerabilities in server firmware could put enterprise IT at risk.
π Equifax to Pay Upwards of $700 Million in Data Breach Settlement π
π Read
via "Subscriber Blog RSS Feed ".
Once approved, the settlement will be the largest ever paid by a company over a data breach.π Read
via "Subscriber Blog RSS Feed ".
Digital Guardian
Equifax to Pay Upwards of $700 Million in Data Breach Settlement
Once approved, the settlement will be the largest ever paid by a company over a data breach.