🛡 Cybersecurity & Privacy 🛡 - News

Exploits Released for As-Yet Unpatched Critical Citrix Flaw

Organizations need to apply mitigations for vulnerability in Citrix Application Delivery Controller and Citrix Gateway ASAP, security researchers say.

116 views22:11

🕴 Website Collecting Australian Fire Donations Hit by Magecart 🕴

The attack may have compromised donors' payment information.

📖 Read

via "Dark Reading: ".

Cyberattacks & Data Breaches recent news | Dark Reading

Explore the latest news and expert commentary on Cyberattacks & Data Breaches, brought to you by the editors of Dark Reading

123 views22:11

What to do if you're still running Windows 7

🔐 What to do if you're still running Windows 7 🔐

Your best bet is to finish a migration to Windows 10 ASAP, but there are other options in the interim, says content delivery company Kollective.

📖 Read

via "Security on TechRepublic".

TechRepublic

Your best bet is to finish a migration to Windows 10 ASAP, but there are other options in the interim, says content delivery company Kollective.

118 views09:54

Naked Security – Sophos News

⚠ Microsoft now reviewing Skype audio in ‘secure’ places (not China) ⚠

A former contractor in Beijing: “It sounds a bit crazy now [...] that they gave me the URL, a username and password sent over email.”

📖 Read

via "Naked Security".

Sophos News

115 views11:23

⚠ Lottery hacker gets 9 months for his £5 cut of the loot ⚠

We don't care how little you made from your crimes, the judge said. We care that you went after an outfit that gives a ton to charities.

📖 Read

via "Naked Security".

Lottery hacker gets 9 months for his £5 cut of the loot

We don’t care how little you made from your crimes, the judge said. We care that you went after an outfit that gives a ton to charities.

103 views11:23

⚠ Google tests biometric authentication for Android autofill ⚠

Google is testing out a feature to make Android's built-in password manager safer.

📖 Read

via "Naked Security".

Google tests biometric authentication for Android autofill

Google is testing out a feature to make Android’s built-in password manager safer.

103 views11:53

⚠ ‘Cable Haunt’ vulnerability exposes 200 million cable modem users ⚠

A fortnight in to 2020 and we have the first security flaw to be given its own name: Cable Haunt - complete with eye-catching logo.

📖 Read

via "Naked Security".

‘Cable Haunt’ vulnerability exposes 200 million cable modem users

A fortnight in to 2020 and we have the first security flaw to be given its own name: Cable Haunt – complete with eye-catching logo.

108 views11:53

❌ Apple Denies FBI Request to Unlock Shooter’s iPhone—Again ❌

Refusal to unlock the phones of a Florida shooter could set up another legal battle between Apple and the Feds over data privacy in the case of criminal investigations.

📖 Read

via "Threatpost".

Apple Denies FBI Request to Unlock Shooter’s iPhone—Again

Refusal to unlock the phones of a Florida shooter could set up another legal battle between Apple and the Feds over data privacy in the case of criminal investigations.

108 views13:18

🕴 How to Keep Security on Life Support After Software End-of-Life 🕴

It's the end of support this week for Windows 7 and Server 2008. But what if you truly can't migrate off software, even after security updates stop coming?

📖 Read

via "Dark Reading: ".

How to Keep Security on Life Support After Software End-of-Life

It's the end of support this week for Windows 7 and Server 2008. But what if you truly can't migrate off software, even after security updates stop coming?

98 views14:41

🕴 Industrial Control System Features at Risk 🕴

How some ICS product functions can be weaponized by altering their configurations.

📖 Read

via "Dark Reading: ".

Industrial Control System Features at Risk

How some ICS product functions can be weaponized by altering their configurations.

94 views14:41

🕴 Processor Vulnerabilites Put Virtual Workloads at Risk 🕴

Meltdown, Spectre exploits will likely lead to customers making tradeoffs between performance and security of applications, especially virtual and cloud-based apps

📖 Read

via "Dark Reading: ".

Cloud Security recent news | Dark Reading

Explore the latest news and expert commentary on Cloud Security, brought to you by the editors of Dark Reading

94 views15:11

ATENTION‼ New - CVE-2011-5018 (koala_framework)

Koala Framework before 2011-11-21 has XSS via the request_uri parameter.

📖 Read

via "National Vulnerability Database".

96 views15:39

Dustman Attack Underscores Iran's Cyber Capabilities

🕴 Dustman Attack Underscores Iran's Cyber Capabilities 🕴

For nearly six months, an attack group linked to Iran reportedly had access to the network of Bahrain's national oil company, Bapco, before it executed a destructive payload.

📖 Read

via "Dark Reading: ".

Darkreading

For nearly six months, an attack group linked to Iran reportedly had access to the network of Bahrain's national oil company, Bapco, before it executed a destructive payload.

95 views15:41

❌ Adobe Patches Five Critical Illustrator CC Flaws ❌

Overall Adobe patched nine flaws in Illustrator CC and Experience Manager.

📖 Read

via "Threatpost".

Adobe Patches Five Critical Illustrator CC Flaws

Overall Adobe patched nine flaws in Illustrator CC and Experience Manager.

94 views15:48

⚠ Fleeceware is back in Google Play – massive fees for not much at all ⚠

The apps itself isn't malicious - the treachery lies in the payment model.

📖 Read

via "Naked Security".

Fleeceware is back in Google Play – massive fees for not much at all

The apps itself isn’t malicious – the treachery lies in the payment model.

93 views15:53

Consumer Reports Calls for IoT Manufacturers to Raise Security Standards

🕴 Consumer Reports Calls for IoT Manufacturers to Raise Security Standards 🕴

A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards.

📖 Read

via "Dark Reading: ".

Darkreading

A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards.

92 views16:11

Packet Fence 9.3.0 ≈ Packet Storm

🛠 Packet Fence 9.3.0 🛠

PacketFence is a network access control (NAC) system. It is actively maintained and has been deployed in numerous large-scale institutions. It can be used to effectively secure networks, from small to very large heterogeneous networks. PacketFence provides NAC-oriented features such as registration of new network devices, detection of abnormal network activities including from remote snort sensors, isolation of problematic devices, remediation through a captive portal, and registration-based and scheduled vulnerability scans.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

107 views16:18

⚠ Windows 7 computers will no longer be patched after today ⚠

Today's the day. The balloon goes up. The ship goes down. The patches fall behind. The crooks pull ahead.

📖 Read

via "Naked Security".

Windows 7 computers will no longer be patched after today

Today’s the day. The balloon goes up. The ship goes down. The patches fall behind. The crooks pull ahead.

111 views16:23

❌ Public Bug Bounty Takes Aim at Kubernetes Container Project ❌

The cloud-focused program will pay out $10,000 as its top reward.

📖 Read

via "Threatpost".

Public Bug Bounty Takes Aim at Kubernetes Container Project

The cloud-focused program will pay out $10,000 as its top reward.

105 views17:18

❌ Google to Nix Chrome Support for Third-Party Cookies by 2022 ❌

Google says it has a two-year timeline for phasing out support for third-party cookies in its Chrome web browser.

📖 Read

via "Threatpost".

Google to Nix Chrome Support for Third-Party Cookies by 2022

Google says it has a two-year timeline for phasing out support for third-party cookies in its Chrome web browser.

102 views19:18