🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2015-9410

The Blubrry PowerPress Podcasting plugin 6.0.4 for WordPress has XSS via the tab parameter.

📖 Read

via "National Vulnerability Database".

48 views09:01

⚠ Vimeo sued for storing faceprints of people without their say-so ⚠

The suit was filed under BIPA, the Illinois law that requires written consent to grab people's faceprints - the same law Facebook's battling.

📖 Read

via "Naked Security".

Vimeo sued for storing faceprints of people without their say-so

The suit was filed under BIPA, the Illinois law that requires written consent to grab people’s faceprints – the same law Facebook’s battling.

50 views09:52

⚠ Update ColdFusion now! Emergency patch for critical flaws ⚠

Adobe has rushed out fixes for three vulnerabilities in its ColdFusion web development platform, two of which have been given the top billing of ‘critical’.

📖 Read

via "Naked Security".

Update ColdFusion now! Emergency patch for critical flaws

Adobe has rushed out fixes for three vulnerabilities in its ColdFusion web development platform, two of which have been given the top billing of ‘critical’.

52 views10:22

⚠ Russian pleads guilty in massive JPMorgan hacking scheme ⚠

Andrei Tyurin is the first to be convicted in one of the largest thefts of customer data from a single US financial institution in history.

📖 Read

via "Naked Security".

Russian pleads guilty in massive JPMorgan hacking scheme

Andrei Tyurin is the first to be convicted in one of the largest thefts of customer data from a single US financial institution in history.

49 views10:27

⚠ Hackers are infecting WordPress sites via a defunct plug-in ⚠

If you're a Wordpress admin using a plug-in called Rich Reviews, you'll want to uninstall it. Now. The now-defunct plug-in has a major vulnerability that allows malvertisers to infect sites running Wordpress and redirect visitors to other sites.

📖 Read

via "Naked Security".

Hackers are infecting WordPress sites via a defunct plug-in

If you’re a Wordpress admin using a plug-in called Rich Reviews, you’ll want to uninstall it. Now.

48 views10:37

❌ Chrome Bug, Not Avid Software, Causes Damage to MacOS File Systems ❌

Users scrambled to find a fix for the problem and eventually Google took responsibility for the issue.

📖 Read

via "Threatpost".

Chrome Bug, Not Avid Software, Causes Damage to MacOS File Systems

Users scrambled to find a fix for the problem and eventually Google took responsibility for the issue.

45 views11:54

❌ Cyber-Risk Business Cases: Using Economic Impact to Justify TIG Investment ❌

How to determine -- and communicate -- the value of Threat Intelligence Gateways (TIGs) in your enterprise.

📖 Read

via "Threatpost".

Cyber-Risk Business Cases: Using Economic Impact to Justify TIG Investment

How to determine — and communicate — the value of Threat Intelligence Gateways (TIGs) in your enterprise.

45 views12:04

Why businesses would rather lose revenue than data

🔐 Why businesses would rather lose revenue than data 🔐

While businesses don't want to lose data, 66% of business decision makers said their current IT resources do not keep up with growing technological demands.

📖 Read

via "Security on TechRepublic".

TechRepublic

While businesses don't want to lose data, 66% of business decision makers said their current IT resources do not keep up with growing technological demands.

53 views13:09

⚠ S2 Ep10: Emotet’s back, mutant WannaCry and Insta scam – Naked Security Podcast ⚠

Here's the latest Naked Security podcast - listen now!

📖 Read

via "Naked Security".

S2 Ep10: Emotet’s back, mutant WannaCry and Insta scam – Naked Security Podcast

Here’s the latest Naked Security podcast – listen now!

57 views13:22

❌ CISOs: Support Vendor Security Ops for Best Cloud Results ❌

Despite CISOs' apprehension about increasing dependence on SaaS applications and the security risks the cloud represents, adoption isn’t slowing down.

📖 Read

via "Threatpost".

CISOs: Support Vendor Security Ops for Best Cloud Results

CISOs' apprehension about increasing dependence on SaaS applications and the security risks the cloud represents isn’t slowing down cloud adoption.

53 views13:34

75% of execs cite phishing as the most significant security threat to businesses

🔐 75% of execs cite phishing as the most significant security threat to businesses 🔐

Training is the key to helping the enterprise avoid cyber threats from phishing or other means.

📖 Read

via "Security on TechRepublic".

TechRepublic

Training is the key to helping the enterprise avoid cyber threats from phishing or other means.

58 views13:34

Why You Need to Think About API Security

🕴 Why You Need to Think About API Security 🕴

Businesses of all sorts are increasingly relying on APIs to interact with customers in smartphone apps, but they have their own unique set of vulnerabilities.

📖 Read

via "Dark Reading: ".

Darkreading

Businesses of all sorts are increasingly relying on APIs to interact with customers in smartphone apps, but they have their own unique set of vulnerabilities.

54 views14:13

❌ Vimeo Slapped With Lawsuit Over Biometrics Privacy Policy ❌

Vimeo is under fire for allegedly collecting and storing users' facial biometrics in videos and photos without their consent or knowledge.

📖 Read

via "Threatpost".

Vimeo Slapped With Lawsuit Over Biometrics Privacy Policy

Vimeo is under fire for allegedly collecting and storing users' facial biometrics in videos and photos without their consent or knowledge.

57 views15:09

❌ Phish Uses Google’s URL Decoding to Swim Past Defenses ❌

Percentage-based URL encoding plus Google domain trickery is helping malicious emails to evade filters.

📖 Read

via "Threatpost".

Phish Uses Google’s URL Decoding to Swim Past Defenses

Percentage-based URL encoding plus Google domain trickery is helping malicious emails to evade filters.

57 views15:19

❌ Cisco Patches 13 High-Severity Router and Switch Bugs ❌

One Cisco bug impacting its 800 and 1000 series routers had a CVSS severity score of 9.9.

📖 Read

via "Threatpost".

Cisco Patches 13 High-Severity Router and Switch Bugs

One Cisco bug impacting its 800 and 1000 series routers had a CVSS severity score of 9.9.

56 views16:29

❌ 5G and IoT: How to Approach the Security Implications ❌

Experts from Nokia, iboss and Sectigo talk 5G mobile security for internet of things (IoT) devices in this webinar YouTube video (transcript included).

📖 Read

via "Threatpost".

5G and IoT: How to Approach the Security Implications

Experts from Nokia, iboss and Sectigo talk 5G mobile security for internet of things (IoT) devices in this webinar YouTube video (transcript included).

57 views16:39

Falco 0.17.1 ≈ Packet Storm

🛠 Falco 0.17.1 🛠

Sysdig falco is a behavioral activity monitoring agent that is open source and comes with native support for containers. Falco lets you define highly granular rules to check for activities involving file and network activity, process execution, IPC, and much more, using a flexible syntax. Falco will notify you when these rules are violated. You can think about falco as a mix between snort, ossec and strace.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

56 views16:46

EU Court Limits 'Right to Be Forgotten'

🔏 EU Court Limits 'Right to Be Forgotten' 🔏

Google won what many viewed as a milestone case this week as Europe's top court ruled it doesn't have to extend the "right to be forgotten" privacy rule beyond the EU’s 28 states.

📖 Read

via "Subscriber Blog RSS Feed ".

Digital Guardian

Google won what many viewed as a milestone case this week as Europe's top court ruled it doesn't have to extend the "right to be forgotten" privacy rule beyond the EU’s 28 states.

55 views17:27

❌ Rash of Exploits Targets Critical vBulletin RCE Bug ❌

After someone dropped a zero-day exploit on Securelist this week, the platform rushed out a fix -- time to apply it.

📖 Read

via "Threatpost".