Security  

  •  
  • By Sergiu Gatlan
  • October 16th, 2018
VMware ESXi, Workstation, Fusion Affected by Critical Out-of-Bounds Read

VMware ESXi, Workstation, Fusion Affected by Critical Out-of-Bounds Read

SVGA security bug allows guest to execute code on host

  •  
  • By Sergiu Gatlan
  • October 16th, 2018
New iOS Passcode Bypass Allows Viewing and Sharing Photos from Locked iPhones

New iOS Passcode Bypass Allows Viewing and Sharing Photos from Locked iPhones

Works on iOS 12.0.1, uses VoiceOver to bypass screen lock

  •  
  • By Sergiu Gatlan
  • October 16th, 2018
Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers

Multiple Vulnerabilities Allow Attackers to Take Full Control of Linksys Routers

Linksys fixed all vulnerabilities, patch available

  •  
  • By Sergiu Gatlan
  • October 16th, 2018
Info of 685 Million Users at Risk Because of Multiple Branch.io XSS Flaws

Info of 685 Million Users at Risk Because of Multiple Branch.io XSS Flaws

The DOM-based XSS vulnerabilities are now fixed

  •  
  • By Sergiu Gatlan
  • October 15th, 2018
400 Percent Increase in Cryptocurrency Mining Attacks Against iOS Devices

400 Percent Increase in Cryptocurrency Mining Attacks Against iOS Devices

Four-fold increase against devices using the Safari browser

  •  
  • By Sergiu Gatlan
  • October 15th, 2018
Malware Campaign Distributes Data Stealer Trojan/RAT, Circumvents Anti-Malware

Malware Campaign Distributes Data Stealer Trojan/RAT, Circumvents Anti-Malware

Uses complex obfuscation techniques to avoid detection

  •  
  • By Sergiu Gatlan
  • October 15th, 2018
TLS 1.0 / 1.1 Deprecated in Chrome, Safari, Firefox, and Edge Starting 2020

TLS 1.0 / 1.1 Deprecated in Chrome, Safari, Firefox, and Edge Starting 2020

IETF is expected to formally deprecate TLS 1.0 / 1.1 in 2018

  •  
  • By Sergiu Gatlan
  • October 15th, 2018
Duo Accused of Dark Web Drug Dealing Faces 20 Years of Prison Time

Duo Accused of Dark Web Drug Dealing Faces 20 Years of Prison Time

The two were caught after undercover NCIDE Task Force sting

  •  
  • By Sergiu Gatlan
  • October 15th, 2018
More Than $600K Lost by Henderson ISD After BEC Attack

More Than $600K Lost by Henderson ISD After BEC Attack

Crooks stole $609,615 from the Independent School District

  •  
  • By Sergiu Gatlan
  • October 15th, 2018
Multiple Vulnerabilities Discovered in PHP Lead to Arbitrary Code Execution, DoS

Multiple Vulnerabilities Discovered in PHP Lead to Arbitrary Code Execution, DoS

Security issues fixed in PHP 7.1.23 / 7.2.11 releases

  •  
  • By Sergiu Gatlan
  • October 12th, 2018
FDA Issues Warning about Security Vulnerabilities in Pacemaker Programmers

FDA Issues Warning about Security Vulnerabilities in Pacemaker Programmers

Medtronic users vulnerable to malicious cyberattacks

  •  
  • By Sergiu Gatlan
  • October 12th, 2018
Almost 12K MikroTik Routers Are Hunting Around for Cryptojacking Opportunities

Almost 12K MikroTik Routers Are Hunting Around for Cryptojacking Opportunities

Infected routers get backdoored and set up as cryptojackers

  •  
  • By Sergiu Gatlan
  • October 12th, 2018
Facebook Says FBI Asked Them Not to Reveal Attackers Behind Last Month's Breach

Facebook Says FBI Asked Them Not to Reveal Attackers Behind Last Month's Breach

30 million out of the estimated 50 had access tokens stolen

  •  
  • By Sergiu Gatlan
  • October 12th, 2018
Proof-of-Concept Available for Edge Remote Code Execution Vulnerability

Proof-of-Concept Available for Edge Remote Code Execution Vulnerability

The RCE bug exploitable from attacker-controlled websites

  •  
  • By Sergiu Gatlan
  • October 12th, 2018
Fake Miners Mine Fake Coins, Make Money by Displaying Ads

Fake Miners Mine Fake Coins, Make Money by Displaying Ads

The fake cryptomining apps claim to mine for unminable coins

  •  
  • By Sergiu Gatlan
  • October 12th, 2018
Micropatch Released to Correct Partially Fixed JET DB Engine RCE Vulnerability

Micropatch Released to Correct Partially Fixed JET DB Engine RCE Vulnerability

0patch issued 18 bytes micropatch for 32- and 64-bit systems

  •  
  • By Sergiu Gatlan
  • October 11th, 2018
GPlayed Android Trojan Can Wipe Your Device, Steal Data, Make Calls, Send SMS

GPlayed Android Trojan Can Wipe Your Device, Steal Data, Make Calls, Send SMS

The malware comes with an extensive set of capabilities

 
Want more? Browse: