🛡 Cybersecurity & Privacy 🛡 - News

Researchers have discovered bad authentication bypass vulnerabilities affecting two WordPress plugins which should be patched as soon as possible.

116 views13:53

❌ ‘Fleeceware’ Apps Downloaded 600M Times from Google Play ❌

New research shows apps that dupe users into being charged excessively with little reward persist on the Android app store.

📖 Read

via "Threatpost".

‘Fleeceware’ Apps Downloaded 600M Times from Google Play

New research shows apps that dupe users into being charged excessively with little reward persist on the Android app store.

111 views14:48

🕴 Active Directory Needs an Update: Here's Why 🕴

AD is still the single point of authentication for most companies that use Windows. But it has some shortcomings that should be addressed.

📖 Read

via "Dark Reading: ".

Active Directory Needs an Update: Here's Why

AD is still the single point of authentication for most companies that use Windows. But it has some shortcomings that should be addressed.

109 views15:11

❌ PoC Exploits Published For Microsoft Crypto Bug ❌

Two proof-of-concept exploits were publicly released for the major Microsoft crypto-spoofing vulnerability.

📖 Read

via "Threatpost".

PoC Exploits Published For Microsoft Crypto Bug

Two proof-of-concept exploits were publicly released for the major Microsoft crypto-spoofing vulnerability.

107 views16:18

⚠ S2 Ep23: Snake ransomware, VPN holes and phone spying – Naked Security Podcast ⚠

New episode - listen now!

📖 Read

via "Naked Security".

S2 Ep23: Snake ransomware, VPN holes and phone spying – Naked Security Podcast

New episode – listen now!

111 views16:53

Wireshark Analyzer 3.2.1 ≈ Packet Storm

🛠 Wireshark Analyzer 3.2.1 🛠

Wireshark is a GTK+-based network protocol analyzer that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and Win32 and to give Wireshark features that are missing from closed-source sniffers.

📖 Go!

via "Security Tool Files ≈ Packet Storm".

Packetstormsecurity

Information Security Services, News, Files, Tools, Exploits, Advisories and Whitepapers

136 views17:02

🕴 NY Fed Reveals Implications of Cyberattack on US Financial System 🕴

A "pre-mortem analysis" sheds light on the potential destruction of a cyberattack against major US banks.

📖 Read

via "Dark Reading: ".

NY Fed Reveals Implications of Cyberattack on US Financial System

A pre-mortem analysis sheds light on the potential destruction of a cyberattack against major US banks.

107 views17:41

⚠ NSA and Github ‘rickrolled’ using Windows CryptoAPI bug ⚠

We said, "Assume that someone will find out how to do it pretty soon," and that's exactly what happened.

📖 Read

via "Naked Security".

NSA and Github ‘rickrolled’ using Windows CryptoAPI bug

We said, “Assume that someone will find out how to do it pretty soon,” and that’s exactly what happened.

105 views17:53

🕴 CISO Resigns From Pete Buttigieg Presidential Campaign 🕴

The only Democratic campaign known to have a CISO loses Mick Baccio due to a "fundamental philosophical difference with campaign management."

📖 Read

via "Dark Reading: ".

CISO Resigns From Pete Buttigieg Presidential Campaign

The only Democratic campaign known to have a CISO loses Mick Baccio due to a fundamental philosophical difference with campaign management.

97 views18:11

How to add a host to Observium

🔐 How to add a host to Observium 🔐

Now that you have the Observium network monitoring platform installed, it's time to add a host.

📖 Read

via "Security on TechRepublic".

TechRepublic

Now that you have the Observium network monitoring platform installed, it's time to add a host.

98 views18:42

❌ Satan Ransomware Reborn to Torment Businesses ❌

A hellish mix of features shows the 5ss5c ransomware to be the son of Satan.

📖 Read

via "Threatpost".

Satan Ransomware Reborn to Torment Businesses

A hellish mix of features shows the 5ss5c ransomware to be the son of Satan.

103 views18:48

ATENTION‼ New - CVE-2010-3048

Cisco Unified Personal Communicator 7.0 (1.13056) does not free allocated memory for received data and does not perform validation if memory allocation is successful, causing a remote denial of service condition.

📖 Read

via "National Vulnerability Database".

100 views19:39

🕴 Phishing Today, Deepfakes Tomorrow: Training Employees to Spot This Emerging Threat 🕴

Cybercriminals are evolving their tactics, and the security community anticipates voice and video fraud to play a role in one of the next big data breaches -- so start protecting your business now.

📖 Read

via "Dark Reading: ".

Phishing Today, Deepfakes Tomorrow: Training Employees to Spot This Emerging Threat

Cybercriminals are evolving their tactics, and the security community anticipates voice and video fraud to play a role in one of the next big data breaches -- so start protecting your business now.

107 views19:41

🔐 How a researcher exploited the Windows 10 bug patched by Microsoft 🔐

The work by security researcher Saleem Rashid shows that the bug could be exploited in the real world to spoof security certificates on machines without Microsoft's patch.

📖 Read

via "Security on TechRepublic".

105 views19:42

These subject lines are the most clicked for phishing

🔐 These subject lines are the most clicked for phishing 🔐

The most successful email lures don't promise riches, but issue imminent cybersecurity warnings or urgent office messages, a report reveals.

📖 Read

via "Security on TechRepublic".

TechRepublic

The most successful email lures don't promise riches, but issue imminent cybersecurity warnings or urgent office messages, a report reveals.

108 views19:42

Federal Health IT Plan Prioritizes Security, Privacy

🔏 Federal Health IT Plan Prioritizes Security, Privacy 🔏

The U.S. HHS released a draft of its federal health IT plan for 2020-2025 and health and privacy are top of mind.

📖 Read

via "Subscriber Blog RSS Feed ".

Digital Guardian

The U.S. HHS released a draft of its federal health IT plan for 2020-2025 and health and privacy are top of mind.

107 views20:57

❌ Google Account Security Keys Launch for iPhone ❌

iPhone users can now use Bluetooth to secure their Google accounts.

📖 Read

via "Threatpost".

Google Account Security Keys Launch for iPhone

iPhone users can now use Bluetooth to secure their Google accounts.

110 views22:31

❌ Critical Cisco Flaws Now Have PoC Exploit ❌

The flaws affect a key tool for managing its network platform and switches.

📖 Read

via "Threatpost".

Critical Cisco Flaws Now Have PoC Exploit

The flaws affect a key tool for managing its network platform and switches.

108 views22:31

New Attack Campaigns Suggest Emotet Threat Is Far From Over

🕴 New Attack Campaigns Suggest Emotet Threat Is Far From Over 🕴

Malware described by the DHS as among the worst ever continues to evolve and grow, researchers from Cisco Talos, Cofense, and Check Point Software say.

📖 Read

via "Dark Reading: ".

Darkreading

Malware described by the DHS as among the worst ever continues to evolve and grow, researchers from Cisco Talos, Cofense, and Check Point Software say.

128 views22:53

With International Tensions Flaring, Cyber-Risk Is Heating Up for All Businesses

🕴 With International Tensions Flaring, Cyber Risk is Heating Up for All Businesses 🕴

Risks of nation-state attacks go beyond Iran, and the need for awareness and security don't stop at any national border.

📖 Read

via "Dark Reading: ".

Darkreading

Risks of nation-state attacks go beyond Iran, and the need for awareness and security don't stop at any national border.

131 views23:23

⚠ EDRi’s guidelines call for more ethical websites ⚠

Recommendations cover areas including security and privacy while listing alternatives to free online services that slurp your users' data.

📖 Read

via "Naked Security".