Viry a Červi

Hey there, want to break into computers like an Iranian hacker crew? IBM finds 40GB of videos that include how-tos

The Register - Anti-Virus - 20 Červenec, 2020 - 12:15
Plus: BitTorrent CEO puts a $1m bounty on Twitter hackers

In Brief  Here's something you don't see everyday. The crew at IBM X-Force has uncovered a massive cache of files, including about five hours of training videos intended for a select crew of hackers in Iran known as ITG18.…

Kategorie: Viry a Červi

Monday review – the hot stories of the week

Sophos Naked Security - 20 Červenec, 2020 - 11:38
Catch up on the past week's stories, and watch our latest Naked Security Live video.

Twitter hackers busted 2FA to access accounts and then reset user passwords

The Register - Anti-Virus - 20 Červenec, 2020 - 08:25
Perps tried to sell high-profile usernames after possibly perusing private data

Twitter has revealed more about the July 15 attack that saw several prominent accounts hijacked to promote a Bitcoin scam.…

Kategorie: Viry a Červi

Seven 'no log' VPN providers accused of leaking – yup, you guessed it – 1.2TB of user logs onto the internet

The Register - Anti-Virus - 17 Červenec, 2020 - 23:51
Maybe it was the old Lionel Hutz play: 'No-logging VPN? I meant, No! Logging VPN!'

A string of "zero logging" VPN providers have some explaining to do after more than a terabyte of user logs were found on their servers unprotected and facing the public internet.…

Kategorie: Viry a Červi

Thousands of Vulnerable F5 BIG-IP Users Still Open to Takeover - 17 Červenec, 2020 - 22:59
Less than 500 machines have been patched since U.S. Cyber Command issued an alert to patch a critical bug that's under active exploit.
Kategorie: Viry a Červi

Judge green-lights Facebook, WhatsApp hacking lawsuit against spyware biz NSO, unleashing Zuck's lawyers

The Register - Anti-Virus - 17 Červenec, 2020 - 21:27
Legal discovery team could turn up some very interesting, and possibly embarrassing details

Facebook won a significant legal victory on Thursday when the judge hearing the lawsuit against Israeli spyware maker NSO Group declined to dismiss the case – and allowed the crucial discovery process to move forward.…

Kategorie: Viry a Červi

Cloud biz Blackbaud caved to ransomware gang's demands – then neglected to inform customers for two months

The Register - Anti-Virus - 17 Červenec, 2020 - 20:10
Just a coincidence it put out a statement amid the Twitter mega-hack

Blackbaud, a cloud software provider specializing in fundraising suites for charities and educational institutions, quietly paid off a ransomware attacker – and then got around to telling customers about it a full two months later.…

Kategorie: Viry a Červi

Twitter Hack Update: What We Know (and What We Don’t) - 17 Červenec, 2020 - 19:36
With limited confirmed information, a raft of theories and circumstantial evidence has come to light as to who was behind the attack and how they carried it out.
Kategorie: Viry a Červi

Ew, that's unsanitary: SEO plugin for WordPress would run arbitrary JavaScript inputs instead of scrubbing them

The Register - Anti-Virus - 17 Červenec, 2020 - 18:46
XSS vuln could hijack websites so update your All in One pack

A popular WordPress search engine optimisation plugin with around two million installs could have been abused to hijack a target website, according to a threat intel firm.…

Kategorie: Viry a Červi

CISA Emergency Directive Orders Immediate Fix of Windows DNS Server Bug - 17 Červenec, 2020 - 17:43
An emergency directive orders some federal agencies to apply Microsoft’s patch for a critical DNS vulnerability by Friday, July 17 at 2 p.m. (ET).
Kategorie: Viry a Červi

Apple’s latest updates are out for iPhones and Macs – get them now!

Sophos Naked Security - 17 Červenec, 2020 - 17:08
None of Apple's bugs have nicknames like Microsoft's recent "SIGRed" - but there are nevertheless kernel-level code holes to be patched...

Twitter admits 130 A-lister accounts compromised to promote Bitcoin scam after 'social engineering' attack

The Register - Anti-Virus - 17 Červenec, 2020 - 15:20
Which, let's be real, is a fancy way to say 'we got phished'

Updated  Twitter has said that around 130 accounts were targeted by miscreants this week as high-profile individuals and businesses had their accounts hijacked to promote a Bitcoin scam.…

Kategorie: Viry a Červi

This week of never-ending security updates continue. Now Apple emits dozens of fixes for iOS, macOS, etc

The Register - Anti-Virus - 16 Červenec, 2020 - 23:08
Make sure your iThing installs these patches

Apple has released a fresh batch of software security updates for its flagship devices.…

Kategorie: Viry a Červi

Enterprise Data Security: It’s Time to Flip the Established Approach - 16 Červenec, 2020 - 22:25
Companies should forget about auditing where data resides and who has access to it.
Kategorie: Viry a Červi

FYI Russia is totally hacking the West's labs in search of COVID-19 vaccine files, say UK, US, Canada cyber-spies

The Register - Anti-Virus - 16 Červenec, 2020 - 20:56
'Completely unacceptable' spouts British Foreign Secretary

Russian hackers at the state's FSB spy agency have been caught breaking into Western institutions working on potential vaccines for the COVID-19 coronavirus in hope of stealing said research. That's according to the British National Cyber Security Centre and America's NSA today.…

Kategorie: Viry a Červi

Hackers Look to Steal COVID-19 Vaccine Research - 16 Červenec, 2020 - 20:05
The Russia-linked APT29 has set its sights on pharma research in Western nations in a likely attempt to get ahead on a cure for coronavirus.
Kategorie: Viry a Červi

Zoom Addresses Vanity URL Zero-Day - 16 Červenec, 2020 - 18:14
An attacker could pose as a company employee, invite customers or partners to meetings, then use socially engineered conversation to extract sensitive information.
Kategorie: Viry a Červi

Privacy Shield binned after EU court rules transatlantic data protection arrangements 'inadequate'

The Register - Anti-Virus - 16 Červenec, 2020 - 17:12
The spice data must flow (and it will – just through SCCs)

The EU Court of Justice has struck down the so-called Privacy Shield data protection arrangements between the political bloc and the US, triggering a fresh wave of legal confusion over the transfer of EU subjects' data to America.…

Kategorie: Viry a Červi

Amazon-Themed Phishing Campaigns Swim Past Security Checks - 16 Červenec, 2020 - 15:00
A pair of recent campaigns aim to lift credentials and other personal information under the guise of Amazon package-delivery notices.
Kategorie: Viry a Červi

Threat Actors Introduce Unique ‘Newbie’ Hacker Forum - 16 Červenec, 2020 - 14:33
CryptBB becomes more inclusive by inviting less experienced hackers to learn from expert cybercriminals and one another.
Kategorie: Viry a Červi
Syndikovat obsah