Kapersky Labs

Subscribe to Kapersky Labs feed
The First Stop For Security News
Updated: 23 min 55 sec ago

Google Patches Critical Remote Code-Execution Flaws in Android

Wed, 08/05/2019 - 18:35
The Android security update patches 15 bugs, four rated critical, 10 rated high and one ranked moderate in severity.
Categories: News

Lax Telco Security Allows Mobile Phone Hijacking and Redirects

Wed, 08/05/2019 - 18:14
A Q&A with Kaspersky Lab researcher David Jacoby examines a gaping hole in the telco customer-service process that allows adversaries to commandeer phone calls.
Categories: News

Google Touts Android Q’s New Security Update Process and Better Privacy Controls for Apps

Wed, 08/05/2019 - 17:03
At Google I/O, the tech giant announced it is beefing up security in phones with its latest Android Q operating system by offering direct updates and privacy controls.
Categories: News

Verizon Data Breach Report: Espionage, C-Suite and Cloud Attacks on the Rise

Wed, 08/05/2019 - 17:01
Cloud misconfigurations, business email compromise (BEC) and intellectual property theft are all up in the Verizon DBIR 2019 from last year.
Categories: News

Top 5 Configuration Mistakes That Create Field Days for Hackers

Wed, 08/05/2019 - 13:30
Having appropriate security configurations requires your applications, servers and databases to be hardened in accordance with best practices.
Categories: News

Cynet Provides Security Responders with Free IR Tool to Validate and Respond to Active Threats

Wed, 08/05/2019 - 13:01
Cynet Free IR empowers its users with a solution that is accessible and easy to use, bringing crucial incident response services in-house, while saving them valuable time and resources.
Categories: News

Critical Flaw in Cisco Elastic Services Controller Allows Full System Takeover

Tue, 07/05/2019 - 21:38
Cisco has patched a critical flaw in its virtualized function automation tool, Cisco Elastic Services Controller.
Categories: News

Chinese Spies Stole NSA Cyberweapons Long Before Shadow Brokers Leak

Tue, 07/05/2019 - 18:52
Forensic analysis shows a Chinese APT using Equation Group hacking tools at least a year before Shadow Brokers dumped its cache in April 2017.
Categories: News

Ukrainian Charged With Launching 100 Million Malicious Ads

Tue, 07/05/2019 - 16:30
Oleksii Petrovich Ivanov has been extradited in the U.S. after allegedly launching malvertising campaigns that caused victims to view malicious ads on more than 100 million occasions.
Categories: News

WP Live Chat WordPress Plugin Re-Patches File Upload Flaw

Mon, 06/05/2019 - 22:42
After researchers were able to bypass a file upload validation flaw patch in WP Live Chat, a new patch has been issued.
Categories: News

Oracle WebLogic Exploit-fest Continues with GandCrab Ransomware, XMRig

Mon, 06/05/2019 - 21:04
Snowballing attacks using a recently patched critical bug show no sign of abating.
Categories: News

High-Severity Bug Leaves Cisco TelePresence Gear Open to Attack

Mon, 06/05/2019 - 20:03
Cisco patches two high-severity bugs that could be exploited by remote attackers.
Categories: News

Avengers: Endgame Sites Promise Digital Downloads, Deliver Info-Harvesting

Mon, 06/05/2019 - 17:00
Web scammers are going after Marvel fans as the movie passes the $2.2 billion box-office mark, making it the second-highest grossing film of all time, behind only Avatar.
Categories: News

High-Severity PrinterLogic Flaws Enable Remote Code Execution

Mon, 06/05/2019 - 16:13
The three flaws enable an unauthenticated attacker to launch remote code execution attacks on printers.
Categories: News

Tor Security Add-On Abruptly Killed by Mozilla Bug

Mon, 06/05/2019 - 15:42
A digital signing flaw killed add-ons for Firefox as well as Tor -- and no patch is yet available for Tor users.
Categories: News

Extinguishing the IoT Insecurity Dumpster Fire

Mon, 06/05/2019 - 15:10
Will connected devices be insecure forever? Or will legislation - such as the recent UK mandate announced this week - help boost IoT security?
Categories: News

Amid Bug Bounty Hype, Sometimes Security is Left in the Dust

Mon, 06/05/2019 - 14:00
Amidst the PR glitz and popularity of bug bounty programs, experts worry that actual smart security strategy is being left behind.
Categories: News

Researchers Weigh in on Trump’s Cyber Workforce Executive Order

Fri, 03/05/2019 - 22:16
Short on concrete details but long on affirming cybersecurity skills as a critical piece of federal defense, the White House executive order aims to bolster the national cyber workforce.
Categories: News

News Wrap: Cartoon Network Hack, the Catholic Church and Jason Statham Scams

Fri, 03/05/2019 - 20:14
The Threatpost team breaks down the strangest security stories this week - from Cartoon Network hacked to show stripper videos, to a church being scammed out of $1.75 million.
Categories: News

Retefe Banking Trojan Resurfaces, Says Goodbye to Tor

Fri, 03/05/2019 - 15:58
The malware has new tricks, like using the stunnel encrypted tunneling mechanism and abusing a legitimate shareware app.
Categories: News