π΄ Google: Chrome Will Remove Third-Party Cookies and Tracking π΄
π Read
via "Dark Reading: ".
It's "not about blocking" but removing them altogether, the company said.π Read
via "Dark Reading: ".
Dark Reading
Google: Chrome Will Remove Third-Party Cookies and Tracking
It's not about blocking but removing them altogether, the company said.
π΄ 'Fancy Bear' Targets Ukrainian Oil Firm Burisma in Phishing Attack π΄
π Read
via "Dark Reading: ".
The oil & gas company is at the heart of the ongoing US presidential impeachment case.π Read
via "Dark Reading: ".
Darkreading
'Fancy Bear' Targets Ukrainian Oil Firm Burisma in Phishing Attack
The oil & gas company is at the heart of the ongoing US presidential impeachment case.
β Microsoft Patches Major Crypto Spoofing Bug β
π Read
via "Threatpost".
January Patch Tuesday tackles 50 bugs, with eight rated critical, all as it pushes out its last regular Windows 7 patches.π Read
via "Threatpost".
Threat Post
Microsoft Patches Major Crypto Spoofing Bug
January Patch Tuesday tackles 50 bugs, with eight rated critical, all as it pushes out its last regular Windows 7 patches.
β Card Skimmer Hits Australian Bushfire Donation Site β
π Read
via "Threatpost".
Magecart groups using automated infection scans infected the site, which was running outdated Magento software.π Read
via "Threatpost".
Threat Post
Card Skimmer Hits Australian Bushfire Donation Site
Magecart groups using automated infection scans infected the site, which was running outdated Magento software.
β Intel Fixes High-Severity Flaw in Performance Analysis Tool β
π Read
via "Threatpost".
The flaw, in Intel VTune Profiler, could enable privilege escalation.π Read
via "Threatpost".
Threat Post
Intel Fixes High-Severity Flaw in Performance Analysis Tool
The flaw, in Intel VTune Profiler, could enable privilege escalation.
ATENTIONβΌ New - CVE-2011-3203
π Read
via "National Vulnerability Database".
A Code Execution vulnerability exists the attachment parameter to index.php in Jcow CMS 4.x to 4.2 and 5.2 to 5.2.π Read
via "National Vulnerability Database".
π΄ Processor Vulnerabilities Put Virtual Workloads at Risk π΄
π Read
via "Dark Reading: ".
Meltdown, Spectre exploits will likely lead to customers making tradeoffs between performance and security of applications, especially virtual and cloud-based appsπ Read
via "Dark Reading: ".
Darkreading
Processor Vulnerabilities Put Virtual Workloads at Risk
Meltdown, Spectre exploits will likely lead to customers making tradeoffs between performance and security of applications, especially virtual and cloud-based apps
β Serious Microsoft crypto vulnerability β patch right now β
π Read
via "Naked Security".
It's a big one. Don't wait around, get your updates right now!π Read
via "Naked Security".
Sophos News
Naked Security β Sophos News
ATENTIONβΌ New - CVE-2011-3202
π Read
via "National Vulnerability Database".
A Cross-Site Scripting (XSS) vulnerability exists in the g parameter to index.php in Jcow CMS 4.2 and earlier.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-3183
π Read
via "National Vulnerability Database".
A Cross-Site Scripting (XSS) vulnerability exists in the rcID parameter in Concrete CMS 5.4.1.1 and earlier.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-2934
π Read
via "National Vulnerability Database".
A Cross Site Request Forgery (CSRF) vulnerability exists in the administrator functions in WebsiteBaker 2.8.1 and earlier due to inadequate confirmation for sensitive transactions.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-2933
π Read
via "National Vulnerability Database".
An Arbitrary File Upload vulnerability exists in admin/media/upload.php in WebsiteBaker 2.8.1 and earlier due to a failure to restrict uploaded files with .htaccess, .php4, .php5, and .phtl extensions.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-2715
π Read
via "National Vulnerability Database".
An SQL Injection vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table names or column names.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-2714
π Read
via "National Vulnerability Database".
A Cross-Site Scripting vulnerability exists in Drupal 6.20 with Data 6.x-1.0-alpha14 due to insufficient sanitization of table descriptions, field names, or labels before display.π Read
via "National Vulnerability Database".
ATENTIONβΌ New - CVE-2011-2706
π Read
via "National Vulnerability Database".
A Cross-Site Scripting (XSS) vulnerability exists in the reorder administrator functions in sNews 1.71.π Read
via "National Vulnerability Database".
β Oracle Ties Previous All-Time Patch High with January Updates β
π Read
via "Threatpost".
The software giant patched 300+ bugs in its quarterly update.π Read
via "Threatpost".
Threat Post
Oracle Ties Previous All-Time Patch High with January Updates
The software giant patched 300+ bugs in its quarterly update.
π΄ Cloud Adoption & Technology Change Create Gaps in Enterprise Security π΄
π Read
via "Dark Reading: ".
Many companies are struggling to get a handle on risk exposure because of visibility issues, Radware survey shows.π Read
via "Dark Reading: ".
Darkreading
Cloud Adoption & Technology Change Create Gaps in Enterprise Security
Many companies are struggling to get a handle on risk exposure because of visibility issues, Radware survey shows.
π΄ Microsoft Patches Windows Vuln Discovered by the NSA π΄
π Read
via "Dark Reading: ".
The National Security Agency is publicly acknowledged for its finding and reporting of CVE-2020-0601, marking the start of what it says is a new approach to security.π Read
via "Dark Reading: ".
Darkreading
Microsoft Patches Windows Vuln Discovered by the NSA
The National Security Agency is publicly acknowledged for its finding and reporting of CVE-2020-0601, marking the start of what it says is a new approach to security.
β Apple says no to unlocking shooterβs phone; AG and Trump lash back β
π Read
via "Naked Security".
Attorney General Barr and President Trump are demanding Apple unlock the mass shooter's iPhone. Apple replies: You can't break just 1 phone.π Read
via "Naked Security".
Naked Security
Apple says no to unlocking shooterβs phone; AG and Trump lash back
Attorney General Barr and President Trump are demanding Apple unlock the mass shooterβs iPhone. Apple replies: You canβt break just 1 phone.
β Peekaboo Moments baby-recording app has a bad database booboo β
π Read
via "Naked Security".
No need to wait until you've gurgled out of your mother's womb to experience the joys of having your privacy breached.π Read
via "Naked Security".
Naked Security
Peekaboo Moments baby-recording app has a bad database booboo
No need to wait until youβve gurgled out of your motherβs womb to experience the joys of having your privacy breached.
β Oski Data-Stealing Malware Emerges to Target North America, China β
π Read
via "Threatpost".
The malware is new and in the early stages of its development -- but packs a sophisticated punch.π Read
via "Threatpost".
Threat Post
Oski Data-Stealing Malware Emerges to Target North America, China
The malware is new and in the early stages of its development β but packs a sophisticated punch.