Syndikovat obsah Threatpost | The first stop for security news
The First Stop For Security News
Aktualizace: 52 sek zpět

Multiple Vulnerabilities in LibXL Library Open Door to RCE Attacks

17 Listopad, 2017 - 22:50
Hackers using a specially crafted XLS files can trigger several remote code execution vulnerabilities in the LibXL library.
Kategorie: Viry a Červi

Amazon Promises Fix to Stop Key Service Hack

17 Listopad, 2017 - 19:59
Amazon said it will offer a fix for its Amazon Key delivery service that allows hackers to tamper with a home security camera.
Kategorie: Viry a Červi

Oracle Issues Emergency Patches for ‘JoltandBleed’ Vulnerabilities

16 Listopad, 2017 - 23:05
Oracle pushed out an emergency update for vulnerabilities dubbed 'JoltandBleed' affecting five of its products that rely on its proprietary Jolt protocol.
Kategorie: Viry a Červi

White House Releases VEP Disclosure Rules

16 Listopad, 2017 - 20:19
The White House released a charter document on Wednesday outlining how the U.S. government will disclose cyber security flaws and when it will keep them secret.
Kategorie: Viry a Červi

Cisco Warns of Critical Flaw in Voice OS-based Products

15 Listopad, 2017 - 23:35
Cisco Systems issued patch that fixes a critical vulnerability impacting 12 products running the Cisco Voice Operating System software.
Kategorie: Viry a Červi

Microsoft Patches 17-Year-Old Office Bug

15 Listopad, 2017 - 19:11
Researchers warn of a Microsoft remote code execution bug that has persisted for 17 years in Office, leaving the OS unprotected until the vulnerability was patched Tuesday.
Kategorie: Viry a Červi

Microsoft Patches 20 Critical Vulnerabilities

14 Listopad, 2017 - 23:10
This month, Microsoft's Patch Tuesday updates tackle fixes for 53 security bugs in Windows, Office, Internet Explorer, Edge, ASP.NET Core, .NET Core, and its Chackra Core browser engine.
Kategorie: Viry a Červi

Debugging Tool Left on OnePlus Phones, Enables Root Access

14 Listopad, 2017 - 20:21
Phone maker OnePlus is being blasted for leaving a developer debugging app on its handsets allowing phones to be rooted by an attacker with physical access to the device.
Kategorie: Viry a Červi

Adobe Patches Flash Player, 56 Bugs in Reader and Acrobat

14 Listopad, 2017 - 18:14
Adobe released a monster update for Acrobat and Reader patching dozens of remote code execution vulnerabilities, along with a Flash Player update addressing a handful of critical flaws.
Kategorie: Viry a Červi

Apple iPhone X Face ID Fooled by a Mask

14 Listopad, 2017 - 15:00
Vietnamese security company Bkav says it has built a proof-of-concept mask that fools Apple’s Face ID technology.
Kategorie: Viry a Červi

Phishing Biggest Threat to Google Account Security

13 Listopad, 2017 - 19:29
Phishing remains the biggest account takeover threat to Google users, surpassing keyloggers and credential leaks.
Kategorie: Viry a Červi

New IcedID Trojan Targets US Banks

13 Listopad, 2017 - 18:42
A new banking Trojan dubbed IcedID is is being distributed by a seasoned cybergang or hacker targeting U.S. financial institutions.
Kategorie: Viry a Červi

AutoIt Scripting Used By Overlay Malware to Bypass AV Detection

10 Listopad, 2017 - 18:00
IBM’s X-Force Research team reports hackers attacking Brazilian banks are using the Windows scripting tool called AutoIt to reduces the likelihood of antivirus software detection.
Kategorie: Viry a Červi

Threatpost News Wrap Podcast for Nov. 10

10 Listopad, 2017 - 15:00
Threatpost editors Mike Mimoso and Tom Spring discuss the week's information security news.
Kategorie: Viry a Červi

Eavesdropper Vulnerability Exposes Mobile Call, Text Data

9 Listopad, 2017 - 19:48
Developers using the Twilio platform to build enterprise mobile communications apps have put call and text data at risk for exposure.
Kategorie: Viry a Červi

Microsoft Provides Guidance on Mitigating DDE Attacks

9 Listopad, 2017 - 15:15
Microsoft published guidance for Windows admins on how to safely disable Dynamic Data Exchange (DDE) fields in Office that are being used to spread malware in email-based attacks.
Kategorie: Viry a Červi

IoT is Insecure, Get Over It! Say Researchers

8 Listopad, 2017 - 21:29
Security experts Charlie Miller and Chris Valasek, contemplate the larger universe of the Internet of things and security.
Kategorie: Viry a Červi

Hundreds of Millions in Digital Currency Remains Frozen

8 Listopad, 2017 - 19:31
Between $150 million and $300 million in digital currency called ether remains inaccessible today after a user said he “accidentally” triggered a vulnerability that froze the funds in the popular Parity wallet.
Kategorie: Viry a Červi

Google Patches KRACK Vulnerability in Android

8 Listopad, 2017 - 16:10
Google this week finally addressed the KRACK vulnerability in Android, three weeks after the WPA2 protocol flaw was publicly disclosed.
Kategorie: Viry a Červi

Privacy Clouds Form Over Mantistek Gaming Keyboard

8 Listopad, 2017 - 14:00
Questions brew over whether Mantistek GK2 Mechanical Gaming Keyboard is snooping on users as they type.
Kategorie: Viry a Červi