Threats & Malware, Vulnerabilities
July 7, 2021
Via: MalwarebytesLast week we wrote about PrintNightmare, a vulnerability that was supposed to be patched but wasn’t. After June’s Patch Tuesday, researchers found that the patch did not work in every case, most notably on modern domain controllers. Yesterday, Microsoft issued […]
April 22, 2021
Via: Hot for SecurityFacebook has announced that it managed to take down two significant groups of hackers based in Palestine that were working to compromise Windows, Android, and Apple devices by using all kinds of tricks, includes social engineering, malware, modified apps and […]
April 9, 2021
Via: TechRadarThreat actors have reportedly posted Facebook ads for a malware-laden download that pretended to be a Clubhouse app for Windows. Cybercriminals often piggyback on the popularity of successful apps to lure innocent users to download infected clones – and with […]
December 30, 2020
Via: CSO OnlineThere have been several recent reports of fake updaters that spoof Google Chrome, Mozilla Firefox, and Internet Explorer landing pages. When the user clicks on the upgrade option, a JavaScript file is downloaded and executes malware. You have several options […]
December 18, 2020
Via: Security AffairsCrooks are spreading fake Windows and Android versions of installers for the new Cyberpunk 2077 video game that is delivering the CoderWare ransomware. Cyberpunk 2077 is a 2020 action role-playing video game developed and published by CD Projekt. It is […]
Threats & Malware, Vulnerabilities
December 8, 2020
Via: Security WeekThe PlayStation Now application allows users to access an on-demand game collection directly from their Windows PCs. To enjoy the games, users also need a PlayStation Network account and a compatible controller. As part of Sony’s bug bounty program on […]
Threats & Malware, Vulnerabilities
November 11, 2020
Via: The Hacker NewsMicrosoft formally released fixes for 112 newly discovered security vulnerabilities as part of its November 2020 Patch Tuesday, including an actively exploited zero-day flaw disclosed by Google’s security team last week. The rollout addresses flaws, 17 of which are rated […]
Threats & Malware, Vulnerabilities
November 3, 2020
Via: Threat PostAdobe has fixed critical-severity flaws tied to four CVEs in the Windows and macOS versions of its Acrobat and Reader family of application software services. The vulnerabilities could be exploited to execute arbitrary code on affected products. These critical flaws […]
Threats & Malware, Vulnerabilities
November 3, 2020
Via: Security AffairsGoogle has released Chrome 86.0.4240.183 for Windows, Mac, and Linux that address ten security vulnerabilities including a remote code execution (RCE) zero-day (CVE-2020-16009) exploited by threat actors in the wild. The RCE is an inappropriate implementation in V8, which is […]
Threats & Malware, Vulnerabilities
October 14, 2020
Via: Security WeekTracked as CVE-2020-16898, the issue is triggered when the TCP/IP stack doesn’t handle ICMPv6 Router Advertisement packets properly. An attacker could send specially crafted ICMPv6 Router Advertisement packets to a remote Windows machine to exploit the flaw and execute arbitrary […]
Cyber-crime, Malware, Phishing
September 9, 2020
Via: CSO OnlineThe biggest security trend for 2020 has been the increase of COVID-19-related phishing and other attacks targeting remote workers. New York City, for example, has gone from having to protect 80,000 endpoints to around 750,000 endpoints in its threat management […]
Threats & Malware, Virus & Malware
August 31, 2020
Via: WiredFOR DECADES, MAC users had to worry less about malware than their Windows-using counterparts, but over the last few years that’s begun to change. In an attempt to crack down on growing threats like adware and ransomware, in February Apple […]
Threats & Malware, Vulnerabilities
August 21, 2020
Via: Security AffairsMicrosoft released this week an out-of-band security update for Windows 8.1 and Windows Server 2012 R2 systems that address two privilege escalation vulnerabilities in Windows Remote Access. Both vulnerabilities were addressed by Microsoft in August, the August 2020 Patch Tuesday […]
Threats & Malware, Vulnerabilities
August 12, 2020
Via: Security AffairsMicrosoft August 2020 Patch Tuesday updates have addressed 120 flaws, including two zero-day vulnerabilities that have been exploited in attacks in the wild. The two issues are a Windows spoofing bug and a remote code execution flaw in Internet Explorer. […]
Threats & Malware, Vulnerabilities
July 30, 2020
Via: Security WeekFirmware security company Eclypsium revealed on Wednesday that billions of Windows and Linux devices are affected by a potentially serious vulnerability that can be exploited to install stealthy and persistent malware. The firm says the weakness affects devices that use […]
Threats & Malware, Virus & Malware
June 5, 2020
Via: TechRadarA new ransomware strain is targeting Linux and Windows systems across a number of industries, security experts have warned. The malware, given the name Tycoon by the researchers at BlackBerry Research and Intelligence Team in partnership with KPMG’s UK Cyber […]
Application security, Security
May 29, 2020
Via: Naked SecurityWindows 10 release 2004 is out, with a slew of new features. They include several updates to its security and privacy. Here’s what you get when you download it, as outlined in the company’s blog post. Microsoft has updated its […]
Threats & Malware, Vulnerabilities
May 11, 2020
Via: Security WeekThe new attack method, dubbed Thunderspy, was discovered by Björn Ruytenberg of the Eindhoven University of Technology in the Netherlands. The researcher has discovered a total of 7 vulnerabilities related to improper firmware verification, weak device authentication, the use of […]
Network security, Security, Threats & Malware, Vulnerabilities
April 22, 2020
Via: CSO OnlineNow that you’re settling into the new normal of abnormality, it’s time to review the insecurity you might have introduced into your organization in the rush to support a remote workforce. As a recent twitter post from Jake Williams, founder […]
April 1, 2020
Via: CSO OnlineThe headlines make it clear that we are in unusual times. Working from home will be the new norm for many of us for the near term at least. As IT and security teams work to meet the challenge of […]