Viry a Červi

Facebook security chief stands by “college campus” comments

Sophos Naked Security - 23 Říjen, 2017 - 18:43
Stamos took to Twitter to clarify his leaked remarks

Latest Sofacy Campaign Targeting Security Researchers - 23 Říjen, 2017 - 18:00
Sofacy has been using a lure document connected to a cyber conflict conference to target researchers and others interested in cybersecurity.
Kategorie: Viry a Červi

'We've nothing to hide': Kaspersky Lab offers to open up source code

The Register - Anti-Virus - 23 Říjen, 2017 - 16:21
Response to US fretting over alleged ties to Russian snoops

Russian cybersecurity software flinger Kaspersky Lab has offered to open up its source code for third-party review.…

Kategorie: Viry a Červi

DHS Alert on Dragonfly APT Contains IOCs, Rules Likely to Trigger False Positives - 23 Říjen, 2017 - 15:52
A joint Technical Alert, TA17–293A, describing the activities of a Russian APT may contain signatures and rules likely to trigger false positives in some security systems.
Kategorie: Viry a Červi

What the KRACK was that? [Chet Chat Podcast 264]

Sophos Naked Security - 23 Říjen, 2017 - 15:44
Live from BSides Calgary in Alberta, Canada, here's this week's Chet Chat podcast...

Phone crypto shut FBI out of 7,000 devices, complains chief g-man

The Register - Anti-Virus - 23 Říjen, 2017 - 13:03
But he gets it, there's a balance to be struck, yada yada

The FBI has been locked out of almost 7,000 seized mobile phones thanks to encryption, director Christopher Wray has said.…

Kategorie: Viry a Červi

Microsoft tears into Chrome security as patching feud continues

Sophos Naked Security - 23 Říjen, 2017 - 12:11
Everybody wins as Google and Microsoft's security one-upmanship continues

Wowee. Look at this server. Definitely keep critical data in there. Yup

The Register - Anti-Virus - 23 Říjen, 2017 - 11:04
Tech laces networks with decoys to contain breaches

Israel-based Illusive Networks claims that its approach of planting poison-pill servers in a network can detect incoming attacks faster than any other method.…

Kategorie: Viry a Červi

Gábor Szappanos wins fourth Péter Szőr Award

Virus Bulletin News - 23 Říjen, 2017 - 10:25
At the VB2017 gala dinner, the fourth Péter Szőr Award was presented to Sophos researcher Gábor Szappanos for his paper "AKBuilder – the crowdsourced exploit kit".

Read more
Kategorie: Viry a Červi

Monday review – the hot 20 stories of the week

Sophos Naked Security - 23 Říjen, 2017 - 09:45
From Wi-Fi targeting KRACK attack and Microsoft's Edge smoking out Google Chrome to the IRS's warning about your identity, and more!

Sarahah anonymous feedback app told: 'You're riddled with web app flaws'

The Register - Anti-Virus - 23 Říjen, 2017 - 09:05
I'm... going to sit down and think about that. *Sniff*

The web-based version of anonymous feedback app Sarahah is riddled with security flaws, according to a researcher.…

Kategorie: Viry a Červi

Google slides text message 2FA a little closer to the door

The Register - Anti-Virus - 23 Říjen, 2017 - 05:05
A Prompt response to insecurity

Text messages aren't a great way to implement two-factor authentication, but it's a technique that's stubbornly persistent. Now Google has decided to push things along by pushing its alternative into production.…

Kategorie: Viry a Červi

New phishing campaign uses 30-year-old Microsoft mess as bait

The Register - Anti-Virus - 23 Říjen, 2017 - 01:58
Necurs botnet spreads ransomware carried in Office documents

The ever-vigilant folk at the Internet Storm Centre (SANS) have spotted yet another campaign trying to drop the Locky ransomware using compromised Word files.…

Kategorie: Viry a Červi

NetBSD, OpenBSD improve kernel security, randomly

The Register - Anti-Virus - 22 Říjen, 2017 - 23:58
Q: 'Where in memory did you put that kernel?' A: 'Sorry, I have no idea'

The folks at NetBSD have released their first cut of code to implement kernel ASLR – Address Space Layout Randomisation – for 64-bit AMD processors.…

Kategorie: Viry a Červi

US energy, nuke and aviation sectors under sustained attack

The Register - Anti-Virus - 22 Říjen, 2017 - 23:39
Homeland Security says 'Dragonfly' campaign has cracked networks

The United States' Department of Homeland Security has issued an alert that warns of “advanced persistent threat (APT) actions targeting government entities and organizations in the energy, nuclear, water, aviation, and critical manufacturing sectors.”…

Kategorie: Viry a Červi

Office DDE attack works in Outlook too – here’s what to do

Sophos Naked Security - 22 Říjen, 2017 - 11:25
DDE attacks can be run from within Outlook emails and calendar invites
Syndikovat obsah