🛡 Cybersecurity & Privacy 🛡 - News

ATENTION‼ New - CVE-2009-5042 (debian_linux, python-docutils)

python-docutils allows insecure usage of temporary files

📖 Read

via "National Vulnerability Database".

55 views21:28

❌ Trend Micro: Rogue Employee Sold Customer Data for 68K Accounts ❌

Trend Micro customers whose data was sold are getting scam calls from criminals purporting to be support staff.

📖 Read

via "Threatpost".

Rogue Trend Micro Employee Sold Customer Data for 68K Accounts

Trend Micro customers whose data was sold are getting scam calls from criminals purporting to be support staff.

59 views21:32

Google Announces App Defense Alliance

🕴 Google Announces App Defense Alliance 🕴

The industry partnership will scan apps for malware before they're published on the Google Play Store.

📖 Read

via "Dark Reading: ".

Dark Reading

The industry partnership will scan apps for malware before they're published on the Google Play Store.

62 views21:39

Vulnerabilities & Threats recent news | Dark Reading

🕴 Accounting Scams Continue to Bilk Businesses 🕴

Yes, ransomware is plaguing businesses and government organizations, but impersonators inserting themselves into financial workflows - most often via e-mail - continue to enable big paydays.

📖 Read

via "Dark Reading: ".

Dark Reading

Explore the latest news and expert commentary on Vulnerabilities & Threats, brought to you by the editors of Dark Reading

61 views22:09

❌ You’ve Been Served…with Subpoena-Themed Phishing Emails ❌

A targeted campaign is delivering an information-stealing malware called Predator the Thief.

📖 Read

via "Threatpost".

You’ve Been Served…with Subpoena-Themed Phishing Emails

A targeted campaign is delivering an information-stealing malware called Predator the Thief.

70 views22:22

❌ Microsegmentation and Isolation: 2 Essential Strategies in Zero-Trust Security ❌

Tactics for when authorized users need to connect to network resources, or need to venture out to the web to complete important tasks.

📖 Read

via "Threatpost".

Microsegmentation and Isolation: 2 Essential Strategies in Zero-Trust Security

Tactics for when authorized users need to connect to network resources, or need to venture out to the web to complete important tasks.

85 views22:32

⚠ Warrant let police search online DNA database ⚠

This is a "game changer" when it comes to genetic privacy rights, experts say.

📖 Read

via "Naked Security".

Warrant let police search online DNA database

This is a “game changer” when it comes to genetic privacy rights, experts say.

74 views12:10

⚠ Facebook scam steals famous faces and BBC branding ⚠

An email scam from earlier this year has resurfaced on Facebook - don't fall for it!

📖 Read

via "Naked Security".

Facebook scam steals famous faces and BBC branding

An email scam from earlier this year has resurfaced on Facebook – don’t fall for it!

76 views12:21

Black Hat Q&A: Hacking a '90s Sports Car

🕴 Black Hat Q&A: Hacking a '90s Sports Car 🕴

Security researcher Stanislas Lejay offers a preview of his upcoming Black Hat Europe talk on automotive engine computer management and hardware reverse engineering.

📖 Read

via "Dark Reading: ".

Darkreading

Security researcher Stanislas Lejay offers a preview of his upcoming Black Hat Europe talk on automotive engine computer management and hardware reverse engineering.

63 views12:39

Kaspersky Analysis Shines Light on DarkUniverse APT Group

🕴 Kaspersky Lab Analysis Shines Light on DarkUniverse APT Group 🕴

Threat actor was active between 2009 and 2017, targeting military, government, and private organizations.

📖 Read

via "Dark Reading: ".

Darkreading

Threat actor was active between 2009 and 2017, targeting military, government, and private organizations.

62 views12:49

⚠ Facebook confesses 100 devs may have accessed leaked Groups data ⚠

It shut down that access in April 2018, or at least thought it did. At least 11 improperly accessed data in the last two months.

📖 Read

via "Naked Security".

Facebook confesses 100 devs may have accessed leaked Groups data

It shut down that access in April 2018, or at least thought it did. At least 11 improperly accessed data in the last two months.

56 views12:55

❌ Google Enlists Help to Fight Bad Android Apps ❌

After years of unsuccessfully battling malware and bad apps in the Google Play store and on more than 2.5 billion Android devices, Google is finally doing something about it. The tech giant this week unveiled an alliance with three companies with specific expertise in endpoint security to help prevent the spread of malware on its […]

📖 Read

via "Threatpost".

Google Enlists Help to Fight Bad Android Apps

After years of unsuccessfully battling malware and bad apps in the Google Play store and on more than 2.5 billion Android devices, Google is finally doing something about it. The tech giant this week unveiled an alliance with three companies with specific…

58 views13:02

⚠ Pilot presses the wrong button, triggers airport hostage alarm ⚠

We've all been there - faced with a button that is just begging to be pressed...

📖 Read

via "Naked Security".

Pilot presses the wrong button, triggers airport hostage alarm

We’ve all been there – faced with a button that is just begging to be pressed…

55 views13:20

⚠ Linux users warned to update libarchive to beat flaw ⚠

The bug is identified as CVE-2019-18408, a high-priority ‘use-after-free’ bug when dealing with a failed archive.

📖 Read

via "Naked Security".

Linux users warned to update libarchive to beat flaw

The bug is identified as CVE-2019-18408, a high-priority ‘use-after-free’ bug when dealing with a failed archive.

56 views13:20

❌ Data Breach Fines: Are They Working to Boost Consumer Safety? ❌

Despite trillions of dollars in breach fine payouts, each year the number of compromised companies and individuals with private data exposed rise.

📖 Read

via "Threatpost".

Why Big Breach Fines Don’t Equal Fewer Breaches

Despite trillions of dollars in breach fine payouts, each year the number of compromised companies and individuals with private data exposed rise.

54 views13:52

⚠ WordPress sites hit by malvertising ⚠

An old piece of malware is storming the WordPress community, enabling its perpetrators to take control of sites and inject code of their choosing.

📖 Read

via "Naked Security".

WordPress sites hit by malvertising

An old piece of malware is storming the WordPress community, enabling its perpetrators to take control of sites and inject code of their choosing.

52 views14:10

You've got malware: Malicious actors are waiting in your inbox

🔐 You've got malware: Malicious actors are waiting in your inbox 🔐

Dangerous URL messages, the resurgence of Emotet, and banking trojans flood the cyberthreat landscape, Proofpoint found.

📖 Read

via "Security on TechRepublic".

TechRepublic

Dangerous URL messages, the resurgence of Emotet, and banking trojans flood the cyberthreat landscape, Proofpoint found.

49 views14:16

IBM social engineer easily hacked two journalists' information

🔐 IBM social engineer easily hacked two journalists' information 🔐

A member of IBM's X-Force Red team hacked two CBS reporters for three weeks. Find out what information she gathered, as well as what phishing entails.

📖 Read

via "Security on TechRepublic".

TechRepublic

A member of IBM's X-Force Red team hacked two CBS reporters for three weeks. Find out what information she gathered, as well as what phishing entails.

50 views14:16

❌ How to Secure Critical Infrastructure When Patching Isn’t Possible ❌

Mission-critical systems can't just be switched off to apply security updates -- so patching can take weeks if not years.

📖 Read

via "Threatpost".