Viry a Červi

Podcast: Breaking Down the Magecart Threat (Part Two)

VirusList.com - 30 Listopad, 2018 - 22:00
In part two of our podcast series on Magecart, we talk to expert Yonathan Klijnsma, who has been tracking the threat for years.
Kategorie: Viry a Červi

Bing Warns VLC Media Player Site is ‘Suspicious’ in Likely False-Positive Gaff

VirusList.com - 30 Listopad, 2018 - 19:01
After identifying the official VLC media download page as "unsafe" with its Bing search engine, Microsoft now suggests it was done in error.
Kategorie: Viry a Červi

Magecart fiends punch card-skimming code in Sotheby's Home website

The Register - Anti-Virus - 30 Listopad, 2018 - 17:50
If you shopped with 'em since March 2017, consider your deets in the haul

Toff tat bazaar Sotheby's Home website has become the latest casualty of Magecart after a breach saw card-skimming code deployed by infosec rotters.…

Kategorie: Viry a Červi

Marriott’s massive data breach – here’s what you need to know

Sophos Naked Security - 30 Listopad, 2018 - 16:49
The Marriott hotel empire's Starwood reservation database has been subject to unauthorised access since 2014, exposing 500 million guests.

Newsmaker Interview: Katie Moussouris on Improving Bug Bounty Programs

VirusList.com - 30 Listopad, 2018 - 15:30
The bug bounty "queen" Katie Moussouris discusses the biggest mistakes that companies launching these programs are making.
Kategorie: Viry a Červi

Little FYI: Wi-Fi calling services on AT&T, T-Mobile US, Verizon are insecure, say boffins

The Register - Anti-Virus - 30 Listopad, 2018 - 15:03
Subscribers using wireless calls wide open to attack

Boffins from Michigan State University in the US and National Chiao Tung University in Taiwan have found that the Wi-Fi calling services offered by AT&T, T-Mobile US, and Verizon suffer from four security flaws that can be exploited to attack mobile phone users, leaking private information, harassing them, or interfering with service.…

Kategorie: Viry a Červi

Marriott Hotel Data Breach: Ongoing Since 2014

VirusList.com - 30 Listopad, 2018 - 14:48
The hackers had access to the impacted database since 2014.
Kategorie: Viry a Červi

Busted! DOJ exposes huge ad-fraud operation, eight charged

Sophos Naked Security - 30 Listopad, 2018 - 13:47
The US Department of Justice has charged eight men with running a vast ad-fraud scheme.

Marriott's Starwood hotels mega-hack: Half a BILLION guests' deets exposed over 4 years

The Register - Anti-Virus - 30 Listopad, 2018 - 13:28
One of, but not the worst, in history

US hotel chain Marriott has admitted that a breach of its Starwood subsidiary's guest reservation network has exposed the entire database – all 500 million guest bookings over four years, making this one of the biggest hacks of an individual org ever.…

Kategorie: Viry a Červi

Prisoners allegedly posed as underage girls in $560K sextortion scam

Sophos Naked Security - 30 Listopad, 2018 - 13:26
They allegedly victimized 442 military men by sending nude photos and then calling, pretending to be irate fathers or police.

57m Americans’ details leaked online by another misconfigured server

Sophos Naked Security - 30 Listopad, 2018 - 12:30
Misconfigured Elasticsearch servers spilled personal details on 57 million Americans, said reports this week.

Driver loses his car to hackers. TWICE.

Sophos Naked Security - 30 Listopad, 2018 - 12:09
He slapped a tracker on the new one and installed CCTV... which did a fine job of recording the thieves' 90-second-long relay attack.

Q: If Pesky Pepper had a peek at patient papers, at how many patient papers did Pesky Pepper peek? A: 231

The Register - Anti-Virus - 30 Listopad, 2018 - 11:52
Bored secretary at GP fined for sneaky look at medical records

A bored trainee secretary at a GP practice has been fined for snooping on the health records of colleagues, friends and strangers.…

Kategorie: Viry a Červi

Support whizz 'fixes' screeching laptop with a single click... by closing 'malware-y' browser tab

The Register - Anti-Virus - 30 Listopad, 2018 - 08:54
Nope, no new computer for you. Move along

On Call  Welcome once more to On Call, our weekly column where Reg readers share their tales of tech support problems solved.…

Kategorie: Viry a Červi

Here are another 45,000 reasons to patch Windows systems against old NSA exploits

The Register - Anti-Virus - 30 Listopad, 2018 - 02:58
It's 2018 and UPnP is still opening up networks - this time to leaked SMB cyber-weapons

Earlier this year, Akamai warned that vulnerabilities in Universal Plug'N'Play (UPnP) had been exploited by scumbags to hijack 65,000 home routers. In follow-up research released this week, it revealed little has changed.…

Kategorie: Viry a Červi

GCHQ pushes for 'virtual crocodile clips' on chat apps – the ability to silently slip into private encrypted comms

The Register - Anti-Virus - 29 Listopad, 2018 - 23:31
Sliding into your DMs unnoticed, literally

Analysis  Britain's surveillance nerve-center GCHQ is trying a different tack in its effort to introduce backdoors into encrypted apps: reasonableness.…

Kategorie: Viry a Červi

Big Blue shoos Db2 blues before rogue staff turn the screws in hijack ruse (translation: patch your IBM databases)

The Register - Anti-Virus - 29 Listopad, 2018 - 22:06
Buffer overflow flaw could lead to privilege escalation

IBM is advising folks this week to check if they should update their Db2 database installations following the discovery of a potentially serious security vulnerability.…

Kategorie: Viry a Červi

First Annual Cyberwarcon

Kaspersky Securelist - 29 Listopad, 2018 - 20:14

Cyberwarcon is a brand new event organized yesterday in Arlington, Virginia, and delivered eight hours of fantastic content. “CyberwarCon is a one-day conference in the Washington D.C. area focused on the specter of destruction, disruption, and malicious influence on our society through cyber capabilities. We are increasingly concerned that aggressive behavior in this space is not abating and public discourse is necessary to shore up our defenses and prepare for inevitable incidents”. The list of speakers was diverse in their interests, from big data visualization technologies and analysis of social media misinformation campaigns, to incidents of Russian speaking APT in the US electrical grid. Thomas Rid keynoted with a presentation full of newly unearthed images and details on the earliest known misinformation campaign targeting the US, with some hints of what is to come for his upcoming book “Active Measures: A History of Disinformation”, certain to be another fascinating study and read. The full agenda can be found here.

Our participation included my lightning talk presentation “Barely Whispering – Recent RU-speaking APT findings”. I attempted to clarify several transitively related clusters of RU-speaking APT activity and resources that we label Sofacy, BE/GreyEnergy, Zebrocy, and an advanced cluster, Hades, and introduced some data points new to public discussion about the groups. Three have exhibited disruptive and destructive behavior. It’s nice to see that some of the information I mentioned yesterday, Zebrocy’s nine month long and increasingly large wave of spearphishing, is in the news today. I briefly mentioned that their remote template spearphishing techniques, along with a switch back to the Delphi backdoor from a C# “Cannon” backdoor, was spreading to western networks. Timely stuff.

Check out the images and tweets at #CYBERWARCON. Hope to see you next year!

Critical Zoom Flaw Lets Hackers Hijack Conference Meetings

VirusList.com - 29 Listopad, 2018 - 20:02
Hackers can spoof messages, hijack screen controls and kick others out of meetings.
Kategorie: Viry a Červi

Cisco Patches Critical Bug in License Management Tool

VirusList.com - 29 Listopad, 2018 - 17:11
The vulnerability could allow attacker to execute arbitrary SQL queries.
Kategorie: Viry a Červi
Syndikovat obsah