β Alabama Hospitals Pay Up in Ransomware Attack β
π Read
via "Threatpost".
A trio of Alabama hospitals have decided to pay for a decryption key.π Read
via "Threatpost".
Threat Post
Alabama Hospitals Pay Up in Ransomware Attack
A trio of Alabama hospitals have decided to pay for a decryption key.
π Top 5 things to know about the splinternet π
π Read
via "Security on TechRepublic".
As the internet begins to split into different versions in different countries, the laws that govern data are changing. Tom Merritt explains five things you need to know about the splinternet.π Read
via "Security on TechRepublic".
TechRepublic
Top 5 things to know about the splinternet
As the internet begins to split into different versions in different countries, the laws that govern data are changing. Tom Merritt explains five things you need to know about the splinternet.
π Top 5 things to know about the splinternet π
π Read
via "Security on TechRepublic".
As the internet begins to split into different versions in different countries, the laws that govern data are changing. Tom Merritt explains five things you need to know about the splinternet.π Read
via "Security on TechRepublic".
TechRepublic
Top 5 things to know about the splinternet
As the internet begins to split into different versions in different countries, the laws that govern data are changing. Tom Merritt explains five things you need to know about the splinternet.
π΄ Magecart Skimmers Spotted on 2M Websites π΄
π Read
via "Dark Reading: ".
Researchers say supply chain attacks are responsible for the most significant spikes in Magecart detections.π Read
via "Dark Reading: ".
Darkreading
Magecart Skimmers Spotted on 2M Websites
Researchers say supply chain attacks are responsible for the most significant spikes in Magecart detections.
β D-Link Home Routers Open to Remote Takeover Will Remain Unpatched β
π Read
via "Threatpost".
CVE-2019-16920 allows remote unauthenticated attackers to execute code on a target device.π Read
via "Threatpost".
Threat Post
D-Link Home Routers Open to Remote Takeover Will Remain Unpatched
CVE-2019-16920 allows remote unauthenticated attackers to execute code on a target device.
π΄ 6 Active Directory Security Tips for Your Poor, Neglected AD π΄
π Read
via "Dark Reading: ".
The unappreciated core of your enterprise IT network needs your security team's TLC. Here are a few ways to give Active Directory the security love it needs.π Read
via "Dark Reading: ".
Dark Reading
6 Active Directory Security Tips for Your Poor, Neglected AD
The unappreciated core of your enterprise IT network needs your security team's TLC. Here are a few ways to give Active Directory the security love it needs.
π Cybercriminals using gifs to corrupt Drupal sites π
π Read
via "Security on TechRepublic".
Hackers are taking advantage of vulnerabilities in the Drupal CMS platform by using malicious code disguised as gifs.π Read
via "Security on TechRepublic".
TechRepublic
Cybercriminals using gifs to corrupt Drupal sites
Hackers are taking advantage of vulnerabilities in the Drupal CMS platform by using malicious code disguised as gifs.
β Vulnerable Twitter API Leaves Tens of Thousands of iOS Apps Open to Attacks β
π Read
via "Threatpost".
Millions of iOS users could be vulnerable to man-in-the-middle attacks that trace back to flawed Twitter code used in popular iPhone apps.π Read
via "Threatpost".
Threat Post
Vulnerable Twitter API Leaves Tens of Thousands of iOS Apps Open to Attacks
Millions of iOS users could be vulnerable to man-in-the-middle attacks that trace back to flawed Twitter code used in popular iPhone apps.
β California Bans Deepfakes in Elections, Porn β
π Read
via "Threatpost".
A pair of laws provides recourse for victims of deepfake technology.π Read
via "Threatpost".
Threat Post
California Bans Deepfakes in Elections, Porn
A pair of laws provides recourse for victims of deepfake technology.
π΄ Drupalgeddon2 Vulnerability Still Endangering CMSes π΄
π Read
via "Dark Reading: ".
A new wave of attacks has been discovered on Drupal-based content management systems that weren't patched for the older flaw.π Read
via "Dark Reading: ".
Darkreading
Drupalgeddon2 Vulnerability Still Endangering CMSes
A new wave of attacks has been discovered on Drupal-based content management systems that weren't patched for the older flaw.
π΄ Lack of Role Models, Burnout & Pay Disparity Hold Women Back π΄
π Read
via "Dark Reading: ".
New ISACA data emphasizes a gap between men and women who share their opinions on underrepresentation of women and equal pay in the tech industry.π Read
via "Dark Reading: ".
Dark Reading
Lack of Role Models, Burnout & Pay Disparity Hold Women Back
New ISACA data emphasizes a gap between men and women who share their opinions on underrepresentation of women and equal pay in the tech industry.
β Facebookβs Libra cryptocurrency dealt blow by PayPalβs departure β
π Read
via "Naked Security".
PayPal abruptly announced that it was leaving the Libra Association.π Read
via "Naked Security".
Naked Security
Facebookβs Libra cryptocurrency dealt blow by PayPalβs departure
PayPal abruptly announced that it was leaving the Libra Association.
β Nationwide facial recognition ID program underway in France β
π Read
via "Naked Security".
It's coming next month, in spite of a lawsuit and the data regulator's protests about lack of consent, data security and privacy.π Read
via "Naked Security".
Naked Security
Nationwide facial recognition ID program underway in France
Itβs coming next month, in spite of a lawsuit and the data regulatorβs protests about lack of consent, data security and privacy.
β GPS tracker from stalked womanβs car led to indictment of 20 mobsters β
π Read
via "Naked Security".
Girlfriend found it, girlfriend popped it onto a city bus, gadget got found, multiyear investigation got launched, 20 got indicted.π Read
via "Naked Security".
Naked Security
GPS tracker from stalked womanβs car led to indictment of 20 mobsters
Girlfriend found it, girlfriend popped it onto a city bus, gadget got found, multiyear investigation got launched, 20 got indicted.
β Signal immediately fixed FaceTime-style eavesdropping bug β
π Read
via "Naked Security".
Remember the FaceTime bug that allowed a caller to eavesdrop on your phone? Researchers just discovered another - this time in Signal.π Read
via "Naked Security".
Naked Security
Signal immediately fixed FaceTime-style eavesdropping bug
Remember the FaceTime bug that allowed a caller to eavesdrop on your phone? Researchers just discovered another β this time in Signal.
π΄ Iranian Cyberattack on US Presidential Campaign Could Be a Sign of Things to Come π΄
π Read
via "Dark Reading: ".
Political parties and election systems will be heavily targeted in the months leading up to the 2020 general elections, some security experts say.π Read
via "Dark Reading: ".
Darkreading
Iranian Cyberattack on US Presidential Campaign Could Be a Sign of Things to Come
Political parties and election systems will be heavily targeted in the months leading up to the 2020 general elections, some security experts say.
β APT Groups Exploiting Flaws in Unpatched VPNs, Officials Warn β
π Read
via "Threatpost".
U.S. and U.K. agencies warn consumers to update technologies from Fortinet, Pulse Secure and Palo Alto Networks to mitigate attacks that are likely coming from Chinaπ Read
via "Threatpost".
Threat Post
APT Groups Exploiting Flaws in Unpatched VPNs, Officials Warn
U.S. and U.K. agencies warn consumers to update technologies from Fortinet, Pulse Secure and Palo Alto Networks to mitigate attacks that are likely coming from China
ATENTIONβΌ New - CVE-2015-9456
π Read
via "National Vulnerability Database".
The orbisius-child-theme-creator plugin before 1.2.8 for WordPress has incorrect access control for file modification via the wp-admin/admin-ajax.php?action=orbisius_ctc_theme_editor_ajax&sub_cmd=save_file theme_1, theme_1_file, or theme_1_file_contents parameter.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9455
π Read
via "National Vulnerability Database".
The buddypress-activity-plus plugin before 1.6.2 for WordPress has CSRF with resultant directory traversal via the wp-admin/admin-ajax.php bpfb_photos[] parameter in a bpfb_remove_temp_images action.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2015-9454
π Read
via "National Vulnerability Database".
The smooth-slider plugin before 2.7 for WordPress has SQL Injection via the wp-admin/admin.php?page=smooth-slider-admin current_slider_id parameter.π Read
via "National Vulnerability Database".