β Cryptolocking WordPress Plugin Locks Up Blog Posts β
π Read
via "Threatpost".
A new type of malicious plugin has been spotted in the wild with the capability of targeting individual blog posts.π Read
via "Threatpost".
β Democrats and Doctors Behind Latest Wave of Leaked Data β
π Read
via "Threatpost".
Patient medical history and over 6 million email addresses tied to Democrats were detailed in a misconfigured storage buckets over the past few weeks.π Read
via "Threatpost".
Threat Post
Democrats and Doctors Behind Latest Wave of Leaked Data
Patient medical history and over 6 million email addresses tied to Democrats were detailed in a misconfigured storage buckets over the past few weeks.
π΄ Ongoing Campaign Spoofs Walmart, Dating, Movie Sites π΄
π Read
via "Dark Reading: ".
A new investigation detects more than 540 domain names linked to the Walmart brand and camouflaged as career, dating, and entertainment websites.π Read
via "Dark Reading: ".
Darkreading
Ongoing Campaign Spoofs Walmart, Dating, Movie Sites
A new investigation detects more than 540 domain names linked to the Walmart brand and camouflaged as career, dating, and entertainment websites.
π΄ Russian Attack Group Uses Phones & Printers to Breach Corporate Networks π΄
π Read
via "Dark Reading: ".
Microsoft spotted Strontium, also known as APT28 or Fancy Bear, using IoT devices to breach businesses and seek high-value data.π Read
via "Dark Reading: ".
Darkreading
Russian Attack Group Uses Phones & Printers to Breach Corporate Networks
Microsoft spotted Strontium, also known as APT28 or Fancy Bear, using IoT devices to breach businesses and seek high-value data.
π΄ US Air Force Bug Bounty Program Nets 54 Flaws for $123,000 π΄
π Read
via "Dark Reading: ".
The Air Force brought together 50 vetted hackers to find the vulnerabilities in the latest bug-bounty program hosted by a branch of the US military.π Read
via "Dark Reading: ".
Dark Reading
US Air Force Bug Bounty Program Nets 54 Flaws for $123,000
The Air Force brought together 50 vetted hackers to find the vulnerabilities in the latest bug-bounty program hosted by a branch of the US military.
π΄ New Speculative Execution Vulnerability Gives CISOs a New Reason to Lose Sleep π΄
π Read
via "Dark Reading: ".
The vulnerability, dubbed SWAPGS, is an undetectable threat to data security, similar in some respects to Spectre and Meltdown.π Read
via "Dark Reading: ".
Darkreading
New Speculative Execution Vulnerability Gives CISOs a New Reason to Lose Sleep
The vulnerability, dubbed SWAPGS, is an undetectable threat to data security, similar in some respects to Spectre and Meltdown.
π 6 pillars of DevSecOps your business needs to know π
π Read
via "Security on TechRepublic".
Cloud security issues are growing more prevalent in the enterprise, according to the Cloud Security Alliance. Here's how to stay protected.π Read
via "Security on TechRepublic".
TechRepublic
6 pillars of DevSecOps your business needs to know
Cloud security issues are growing more prevalent in the enterprise, according to the Cloud Security Alliance. Here's how to stay protected.
β Latest Android patches fix critical βQualPwnβ Wi-Fi flaws β
π Read
via "Naked Security".
The August 2019 security bulletin is out - and two of the critical flaws could allow an attacker to compromise the Android system kernel.π Read
via "Naked Security".
Naked Security
Latest Android patches fix critical βQualPwnβ Wi-Fi flaws
The August 2019 security bulletin is out β and two of the critical flaws could allow an attacker to compromise the Android system kernel.
β Banking PINs exposed in Monzo secure storage slip-up β
π Read
via "Naked Security".
When is a secure PIN not a secure PIN? When you accidentally store it in your log files.π Read
via "Naked Security".
Naked Security
Banking PINs exposed in Monzo secure storage slip-up
When is a secure PIN not a secure PIN? When you accidentally store it in your log files.
π΄ The Key to Enterprisewide Encryption π΄
π Read
via "Dark Reading: ".
Security teams have been slow to embrace enterprisewide encryption, and for good reasons. But the truth is, it doesn't have to be an all-or-nothing endeavor.π Read
via "Dark Reading: ".
Dark Reading
The Key to Enterprisewide Encryption - Dark Reading
Security teams have been slow to embrace enterprisewide encryption, and for good reasons. But the truth is, it doesn't have to be an all-or-nothing endeavor.
β Black Hat: LeapFrog Tablet Flaws Let Attackers Track, Message Kids β
π Read
via "Threatpost".
Several serious privacy flaws in a kid's tablet were disclosed this year at Black Hat, which could allow a bad actor to track or send messages to children.π Read
via "Threatpost".
Threat Post
Black Hat: LeapFrog Tablet Flaws Let Attackers Track, Message Kids
Several serious privacy flaws in a kid's tablet were disclosed this year at Black Hat, which could allow a bad actor to track or send messages to children.
β Donβt fall for fake Equifax settlement sites, warns FTC β
π Read
via "Naked Security".
Equifictitious sites popped up within days of Equifax agreeing to pay up to $700m to settle claims over the 2017 data breach.π Read
via "Naked Security".
Naked Security
Donβt fall for fake Equifax settlement sites, warns FTC
Equifictitious sites popped up within days of Equifax agreeing to pay up to $700m to settle claims over the 2017 data breach.
β Security Vulnerabilities Are Increasingly Putting Kids at Risk β
π Read
via "Threatpost".
A kid's tablet with security vulnerabilities is only the latest privacy faux pas in a children's connected device.π Read
via "Threatpost".
Threat Post
Security Vulnerabilities Are Increasingly Putting Kids at Risk
A kid's tablet with security vulnerabilities is only the latest privacy faux pas in a children's connected device.
β Scammers recruiting money mules on dating sites is on the rise, says FBI β
π Read
via "Naked Security".
It's not longer enough to be wary of flash-in-the-pan "lovers" who ask you to send money; now they're asking you to open accounts for them.π Read
via "Naked Security".
Naked Security
Scammers recruiting money mules on dating sites is on the rise, says FBI
Itβs no longer enough to be wary of flash-in-the-pan βloversβ who ask you to send money; now theyβre asking you to open accounts for them.
π Why do so many wireless routers lack basic security protections? π
π Read
via "Security on TechRepublic".
Many popular routers include security flaws, but here are some tips on how to secure your wireless router, according to Consumer Reports.π Read
via "Security on TechRepublic".
TechRepublic
Why do so many wireless routers lack basic security protections?
Many popular routers include security flaws, but here are some tips on how to secure your wireless router, according to Consumer Reports.
β New SWAPGS Side-Channel Attack Bypasses Spectre and Meltdown Defenses β
π Read
via "Threatpost".
Researchers demonstrate a new side-channel attack that bypass mitigations against Spectre and Meltdown.π Read
via "Threatpost".
Threat Post
New SWAPGS Side-Channel Attack Bypasses Spectre and Meltdown Defenses
Researchers demonstrate a new side-channel attack that bypass mitigations against Spectre and Meltdown.
π΄ Rethinking Website Spoofing Mitigation π΄
π Read
via "Dark Reading: ".
Deception technology is evolving rapidly, making it easier for organizations to turn the tables on their attackers. Here's how.π Read
via "Dark Reading: ".
Darkreading
Rethinking Website Spoofing Mitigation
Deception technology is evolving rapidly, making it easier for organizations to turn the tables on their attackers. Here's how.
β Donβt let the crooks βborrowβ your home router as a hacking server β
π Read
via "Naked Security".
Crooks don't have to break *into* your network to benefit - they can bounce *off* it so you take the blame and look like a hacker yourself.π Read
via "Naked Security".
Naked Security
Donβt let the crooks βborrowβ your home router as a hacking server
Crooks donβt have to break *into* your network to benefit β they can bounce *off* it so you take the blame and look like a hacker yourself.
π How the Air Force used a bug bounty program to hack its own cloud server π
π Read
via "Security on TechRepublic".
The Air Force paid out $123,000 to researchers who found vulnerabilities in the organization's move to the cloud. Here's why.π Read
via "Security on TechRepublic".
TechRepublic
How the Air Force used a bug bounty program to hack its own cloud server
The Air Force paid out $123,000 to researchers who found vulnerabilities in the organization's move to the cloud. Here's why.
π Businesses need to patch for BlueKeep to avoid another WannaCry π
π Read
via "Security on TechRepublic".
BitSight is sounding an alarm over the potential for patching to taper off, leaving legacy systems at risk for the potentially potent vulnerability.π Read
via "Security on TechRepublic".
TechRepublic
Businesses need to patch for BlueKeep to avoid another WannaCry
BitSight is sounding an alarm over the potential for patching to taper off, leaving legacy systems at risk for the potentially potent vulnerability.
β Smominru Cryptominer Scrapes Credentials for Half-Million Machines β
π Read
via "Threatpost".
The adversaries have retooled with EternalBlue and credential theft to add a new "access mining" revenue stream.π Read
via "Threatpost".
Threat Post
Smominru Cryptominer Scrapes Credentials for Half-Million Machines
The adversaries have retooled with EternalBlue and credential theft to add a new "access mining" revenue stream.