Viry a Červi

News in brief: Experian PIN fail; SEC hacked; AI vs terror

Sophos Naked Security - 21 Září, 2017 - 19:13
Your daily round-up of some of the other stories in the news

Joomla Patches Eight-Year-Old LDAP Injection Vulnerability - 21 Září, 2017 - 18:56
Joomla on Tuesday patched a critical LDAP injection vulnerability that had lingered in the content management system for eight years. Attackers could use this bug to steal admin login credentials.
Kategorie: Viry a Červi

Hot FinSpy research completes VB2017 programme

Virus Bulletin News - 21 Září, 2017 - 18:35
Researchers from ESET have found a new way in which the FinSpy/FinFisher 'government spyware' can infect users, details of which they will present at VB2017 in Madrid.

Read more
Kategorie: Viry a Červi

Hackers hold entire school district to ransom

Sophos Naked Security - 21 Září, 2017 - 17:56
The hacking group stole personal information and sent explicit death threats against children to their parents.

Researchers claim ISPs are 'complicit' in latest FinSpy snooping rounds

The Register - Anti-Virus - 21 Září, 2017 - 17:31
Dictators' favourite spyware is working at the top, says report

A surveillance campaign utilising a new variant of FinFisher, the infamous spyware also known as FinSpy, has been tracked by security researchers.…

Kategorie: Viry a Červi

Equifax fooled again! Blundering credit biz directs hack attack victims to parody site

The Register - Anti-Virus - 21 Září, 2017 - 16:15
Tim on the social media team will need a new job

You'd have thought that Equifax staff would be on their toes ever since the megahack that exposed the private data of over 143 million Americans but the corporation's social media certainly haven't got the message.…

Kategorie: Viry a Červi

“Admin from Hell” holds company to ransom with porn makeover

Sophos Naked Security - 21 Září, 2017 - 13:01
The IT admin demanded $10,000, when he didn't get it things got X-rated

Critical VMware vulnerability, patch and update now

Sophos Naked Security - 21 Září, 2017 - 11:41
The impact of this critical vulnerability has the potential to be great.

You lost your ballpoint pen, Slack? Why's your Linux version unsigned?

The Register - Anti-Virus - 21 Září, 2017 - 11:04
No digital signature on hipster collab app means it's easy to make dangerous fakes

Slack is distributing versions of its chatroom app for Linux machines that are not digitally signed, contrary to industry best practice.…

Kategorie: Viry a Červi

CCleaner targeted top tech companies in attempt to lift IP

The Register - Anti-Virus - 21 Září, 2017 - 06:04
Infected Avast tool's payload went after the likes of Microsoft, Intel and Cisco, hit 20 targets

Cisco's security limb Talos has probed the malware-laden CCleaner utility that Avast so kindly gave to the world and has concluded its purpose was to create secondary attacks that attempted to penetrate top technology companies. Talos also thinks the malware may have succeeded in delivering a payload to some of those firms targeted.…

Kategorie: Viry a Červi

Orland-whoa! Chap cops to masterminding $100m Microsoft piracy racket

The Register - Anti-Virus - 21 Září, 2017 - 00:02
Chinese national pleads guilty to running a massive counterfeiting ring

A Chinese national has admitted he coordinated a massive piracy ring that shifted more than $100m in bootleg Microsoft gear.…

Kategorie: Viry a Červi

FedEx: TNT NotPetya infection blew a $300m hole in our numbers

The Register - Anti-Virus - 20 Září, 2017 - 21:25
File-scrambling malware put a bomb under shipping giant's sales growth

FedEx has estimated this year's NotPetya ransomware outbreak cost it $300m in lost business and cleanup costs.…

Kategorie: Viry a Červi

Human failings undermine security – but who’s failing who?

Sophos Naked Security - 20 Září, 2017 - 20:29
A Ponemon survey puts “negligent employees” on the hook

What Triggers HTTPS Chrome Browser Warnings? - 20 Září, 2017 - 20:20
Researchers combed through 2,000 Chrome error reports to better classify HTTPS error warnings.
Kategorie: Viry a Červi

The Apache “Optionsbleed” security hole explained [VIDEO]

Sophos Naked Security - 20 Září, 2017 - 20:09
If you're looking for a non-techie, plain English, verbal explanation of the Apache "Optionsbleed" security bug, watch this!

IT fraudster facing four years' bird time for $10k blackmail

The Register - Anti-Virus - 20 Září, 2017 - 19:47
Blackmailed former employer, redirected company website for porn portal

An IT contractor who sabotaged a client's website and demanded $10,000 to restore it was this week convicted of wire fraud and sentenced to four years behind bars.…

Kategorie: Viry a Červi

Malware Steals Data From Air-Gapped Network via Security Cameras - 20 Září, 2017 - 19:40
Proof-of-concept malware called aIR-Jumper can be used to bypass air-gapped network protections and send data in and out of network.
Kategorie: Viry a Červi

News in brief: Twitter stops terrorists; WhatsApp stops UK gov; Russia stops Dark Web drugs

Sophos Naked Security - 20 Září, 2017 - 19:05
Your daily round-up of some of the other stories in the news

Deep-Learning PassGAN Tool Improves Password Guessing - 20 Září, 2017 - 19:00
A deep-learning network known as a GAN has been applied to passwords, and a tool called PassGAN significantly improves the ability to guess user passwords over tools such as Hashcat or John the Ripper.
Kategorie: Viry a Červi

Pirate Bay hits users’ CPUs with secret cryptocurrency mining

Sophos Naked Security - 20 Září, 2017 - 18:28
They should have asked. If they had, would it be better or worse than ads?
Syndikovat obsah