News

Microsoft emits free remote-desktop security patches for WinXP to Server 2008 to avoid another WannaCry

The Register - Wed, 15/05/2019 - 02:48
Plus plenty of other fixes from Redmond and Adobe – and special guest star Citrix

Patch Tuesday  It’s that time of the month again, and Microsoft has released a bumper bundle of security fixes for Patch Tuesday, including one for out-of-support operating systems Windows XP and Server 2003.…

Categories: News

Microsoft Patches Zero-Day Bug Under Active Attack

Kapersky Labs - Tue, 14/05/2019 - 21:49
Microsoft Patch Tuesday security bulletin tackles 22 critical vulnerabilities.
Categories: News

Apple Patches Intel Side-Channel Bugs; Updates iOS, macOS and More

Kapersky Labs - Tue, 14/05/2019 - 21:31
A massive update addresses the breadth of the computing giant's product portfolio.
Categories: News

Intel CPUs Impacted By New Class of Spectre-Like Attacks

Kapersky Labs - Tue, 14/05/2019 - 19:01
Intel has disclosed a new class of speculative execution side channel attacks.
Categories: News

Buffer the Intel flayer: Chipzilla, Microsoft, Linux world, etc emit fixes for yet more data-leaking processor flaws

The Register - Tue, 14/05/2019 - 18:00
Intel CPUs dating back a decade are vulnerable to latest cousin of Spectre

Intel on Tuesday plans to release a set of processor microcode fixes, in conjunction with operating system and hypervisor patches from vendors like Microsoft and those distributing Linux and BSD code, to address a novel set of side-channel attacks that allow microarchitecture data sampling (MDS).…

Categories: News

Adobe Addresses Critical Adobe Flash Player, Acrobat Reader Flaws

Kapersky Labs - Tue, 14/05/2019 - 17:18
Adobe has issued patches for 87 vulnerabilities on Patch Tuesday - the bulk of which exist in Adobe's Acrobat and Reader product.
Categories: News

Linux Kernel Flaw Allows Remote Code-Execution

Kapersky Labs - Tue, 14/05/2019 - 16:21
The bug is remotely exploitable without authentication or user interaction.
Categories: News

WhatsApp Zero-Day Exploited in Targeted Spyware Attacks

Kapersky Labs - Tue, 14/05/2019 - 13:58
WhatsApp has patched a vulnerability that allowed attackers to install spyware on victims' phones.
Categories: News

Cynet: An Autonomous Security Platform for Any Size Organization

Kapersky Labs - Tue, 14/05/2019 - 13:00
Cynet  protects the entire internal environment – including hosts, files, users and the network.
Categories: News

Seize the chance to boost your IT security skills: Trio of training events to choose from

The Register - Tue, 14/05/2019 - 10:03
SANS brings three immersive training events to London

Promo  IT security training specialist SANS Institute is bringing three major training events to London this summer and autumn, each offering a bumper programme of intensive courses designed to arm security professionals with the skills they need to defend against data breaches and malicious attacks.…

Categories: News

It's 2019 and a WhatsApp call can hack a phone: Zero-day exploit infects mobes with spyware

The Register - Tue, 14/05/2019 - 02:18
Rap for surveillanceware chaps in chat app voice yap trap flap – now everyone patch

A security flaw in WhatsApp can be, and has been, exploited to inject spyware into victims' smartphones: all a snoop needs to do is make a booby-trapped voice call to a target's number, and they're in. The victim doesn't need to do a thing other than leave their phone on.…

Categories: News

It's 2019 so now security vulnerabilities are branded using emojis: Meet

The Register - Mon, 13/05/2019 - 23:50
It's pronounced Thrangrycat: A means to bury spyware deep inside pwned networking gear

Security weaknesses at the heart of some of Cisco's network routers, switches, and firewalls can be exploited by hackers to hide spyware deep inside compromised equipment.…

Categories: News

Pair of Cisco Bugs, One Unpatched, Affect Millions of Devices

Kapersky Labs - Mon, 13/05/2019 - 23:17
The two high-severity bugs impact a wide array of enterprise, military and government networks.
Categories: News

Twitter Leaks Apple iOS Users’ Location Data to Ad Partner

Kapersky Labs - Mon, 13/05/2019 - 22:02
A Twitter glitch "inadvertently" leaked iOS users' location data to an unnamed partner.
Categories: News

ScarCruft APT Adds Bluetooth Harvester to its Malware Bag of Tricks

Kapersky Labs - Mon, 13/05/2019 - 17:46
In its latest observed campaign, there were also overlaps in victimology with the DarkHotel APT.
Categories: News

ThreatList: Top 5 Most Dangerous Attachment Types

Kapersky Labs - Mon, 13/05/2019 - 17:38
From ZIP attachments spreading Gandcrab, to DOC files distributing Trickbot, researchers tracked five widescale spam campaigns in 2019 that have made use of malicious attachments.
Categories: News

Go on, Skippy, spill yer guts: 10.5 million+ Australians' data was breached in past 3 months

The Register - Mon, 13/05/2019 - 10:29
Out of 25 million? Cripes

The Office of the Australian Data Information Commissioner's quarterly report has revealed that more than 10.5 million Ozzies – about 40 per cent of the lot of them – had their personal data slurped in one single incident in the first three months of 2019.…

Categories: News

Baltimore hit with more ransomware, ChinaMobile gets the boot in the US, and another (mild) Systemd system-d'oh!

The Register - Mon, 13/05/2019 - 06:55
Plus, Diachenko strikes again with Indian data find

Roundup  Last week, a Symantec boss stepped down, a Chinese hacker was called out, and an AirBnB hidden camera creep was cuffed.…

Categories: News

Panic as panic alarms meant to keep granny and little Timmy safe prove a privacy fiasco

The Register - Sat, 11/05/2019 - 08:56
Simple hack turns them into super secret spying tool

A GPS tracker used by elderly people and young kids has a security hole that could allow others to track and secretly record their wearers.…

Categories: News

FIN7 Linked to Escalating Active Exploits for Microsoft SharePoint Bug

Kapersky Labs - Fri, 10/05/2019 - 22:29
Using a bug patched in March, the attacks are starting to ramp up worldwide.
Categories: News

Pages

Subscribe to Sec Tec Limited aggregator - News