Viry a Červi

Google's Project Zero reveals Apple jailbreak exploit

The Register - Anti-Virus - 6 hodin 34 min zpět
Holy Moley! iOS and MacOS were wholly holey

Ian Beer of Google's Project Zero bod has followed up on a “coming soon” Twitter teaser with a jailbreakable iOS and Mac OS vulnerability.…

Kategorie: Viry a Červi

Archive of 1.4 BEEELION credentials in clear text found in dark web archive

The Register - Anti-Virus - 7 hodin 30 min zpět
Find shows people still suck at passwords

A data dump containing over 1.4 billion email addresses, passwords, and other credentials, all in clear text, has been found online by security shop @4iQ.…

Kategorie: Viry a Červi

HP leaves accidental keylogger in laptop keyboard driver

Sophos Naked Security - 8 hodin 1 min zpět
HP didnt beat around the bush - when a researcher found a left-over keylogger, the company fessed up and fixed it fast. Result!

Vulnerability Found in Two Keyless Entry Locks

VirusList.com - 9 hodin 2 min zpět
Researchers are warning of a default-configuration vulnerability in the enterprise-class keyless entry products made by AMAG Technology.
Kategorie: Viry a Červi

Mailsploit: using emails to attack mail software

Sophos Naked Security - 11 Prosinec, 2017 - 21:56
Mailsploit bugs allow attackers to bypass anti-spam protections and, in some cases, run hostile code

Leftover Debugger Doubles as a Keylogger on Hundreds of HP Laptop Models

VirusList.com - 11 Prosinec, 2017 - 18:59
HP released an update that fixes debugger code that could allow an attacker to use a Synaptics Touchpad driver as a keylogger.
Kategorie: Viry a Červi

New Ruski hacker clan exposed: They're called MoneyTaker, and they're gonna take your money

The Register - Anti-Virus - 11 Prosinec, 2017 - 18:58
Subtly named group has gone largely unnoticed until now

Security researchers have lifted the lid on a gang of Russian-speaking cybercrooks, dubbed MoneyTaker.…

Kategorie: Viry a Červi

Lifestyle pin-up site Pinterest: Hack attempts blamed on 'credential stuffing'

The Register - Anti-Virus - 11 Prosinec, 2017 - 17:04
You might just have to wing it with that potpourri recipe

There’s a chill going around cyberspace with an upsurge of people concerned that their Pinterest account has been hacked.…

Kategorie: Viry a Červi

Lil Bub, a special-needs celebrity cat, gets hacked

Sophos Naked Security - 11 Prosinec, 2017 - 14:51
The Instagram account of a kitty who suffers from extreme feline dwarfism and terminal cuteness has been hacked by somebody who says they're 11.

Blighty flogs Qatar a bunch of missiles and Typhoon fighter jets

The Register - Anti-Virus - 11 Prosinec, 2017 - 14:09
And Hawk training aircraft as well. Just don't say 'despite Br-'

Qatar has agreed its long-awaited order for 24 British-built Eurofighter Typhoon fighter jets and a billion pounds' worth of missiles assembled in the UK to go with them.…

Kategorie: Viry a Červi

Hackers' delight: Mobile bank app security flaw could have smacked millions

The Register - Anti-Virus - 11 Prosinec, 2017 - 13:33
Certificate pinning unpicked

Security researchers from the University of Birmingham last week went public about security shortcomings in mobile banking apps that leave millions of users at a heightened risk of hacking.…

Kategorie: Viry a Červi

Warrantless surveillance can continue until April, say Feds

Sophos Naked Security - 11 Prosinec, 2017 - 13:15
Thought FISA Section 702 was due to bite the dust on New Year's Eve? Think again, say Trump's lawyers: you're stuck with it until the spring

Monday review – the hot 21 stories of the week

Sophos Naked Security - 11 Prosinec, 2017 - 11:23
Get yourself up to date with everything we've written in the last seven days - it's weekly roundup time.

VB2017 video: Spora: the saga continues a.k.a. how to ruin your research in a week

Virus Bulletin News - 11 Prosinec, 2017 - 11:15
Today, we publish the video of the VB2017 presentation by Avast researcher Jakub Kroustek and his former colleague Előd Kironský, now at ESET, who told the story of Spora, one of of the most prominent ransomware families of 2017.

Read more
Kategorie: Viry a Červi

Language bugs infest downstream software, fuzzer finds

The Register - Anti-Virus - 11 Prosinec, 2017 - 09:04
And you worked so hard to make it secure

Developers working in secure development guidelines can still be bitten by upstream bugs in the languages they use.…

Kategorie: Viry a Červi

Leftover Synaptics debugger puts a keylogger on HP laptops

The Register - Anti-Virus - 11 Prosinec, 2017 - 07:03
Vendor first to patch, expect other OEMs to follow

For the second time this year, HP has had to patch its laptops after a security researcher found a driver-level keylogger – and this time, other laptop-makers might have to check their own products.…

Kategorie: Viry a Červi

Dynamics 365 sandbox leaked TLS certificates

The Register - Anti-Virus - 11 Prosinec, 2017 - 01:31
Hey Microsoft, is this your private key?

Another day, another credential found wandering without a leash: Microsoft accidentally left a Dynamics 365 TLS certificate and private key where they could leak, and according to the discoverer, took 100 days to fix the bungle.…

Kategorie: Viry a Červi

Android Flaw Allows Attackers to Poison Signed Apps with Malicious Code

VirusList.com - 8 Prosinec, 2017 - 23:20
An Android vulnerability called Janus allows attackers to inject malicious code into signed Android apps.
Kategorie: Viry a Červi

Android flaw lets attack code slip into signed apps

The Register - Anti-Virus - 8 Prosinec, 2017 - 22:06
Janus bug leaves APKs vulnerable to poisoning

Researchers say a recently patched vulnerability in Android could leave users vulnerable to attack from signed apps.…

Kategorie: Viry a Červi

Apple Fixes Flaw Impacting HomeKit Devices

VirusList.com - 8 Prosinec, 2017 - 16:31
Apple said it has fixed an undisclosed vulnerability in its HomeKit framework that could have allowed unauthorized remote control of HomeKit devices such as smart locks and connected garage door openers.
Kategorie: Viry a Červi
Syndikovat obsah