Security News

Pick your flavor of cybersecurity news

Two Critical RCE Bugs Patched in Drupal 7 and 8

On October 20, 2018Source: The first stop for security news | Threatpost

Drupal's advisory also included three patches for "moderately critical" bugs.Read more

New APT Could Signal Reemergence of Notorious Comment Crew

On October 18, 2018Source: The first stop for security news | Threatpost

A custom malware used in a five-pronged APT espionage campaign was largely built from the defunct CoRead more

Tumblr Privacy Bug Could Have Exposed Sensitive Account Data

On October 18, 2018Source: The first stop for security news | Threatpost

Tumblr stressed that there is no evidence the security bug was being abused or that unprotected accoRead more

Oracle Fixes 301 Flaws in October Critical Patch Update

On October 17, 2018Source: The first stop for security news | Threatpost

The update includes one critical flaw in Oracle GoldenGate with a CVSS 3.0 score of 10.0.Read more

libssh Authentication Bypass Makes it Trivial to Pwn Rafts of Servers

On October 17, 2018Source: The first stop for security news | Threatpost

The flaw affects thousands of servers; but GitHub, a major libssh user, is unaffected.Read more

On Heels of Criticism, Newly-Released Google Chrome 70 Prioritizes Privacy

On October 17, 2018Source: The first stop for security news | Threatpost

The update also features 23 security fixes.Read more

As End of Life Nears, More Than Half of Websites Still Use PHP V5

On October 16, 2018Source: The first stop for security news | Threatpost

Support for PHP 5.6 drops on December 31 - but a recent report found that almost 62 percent of websiRead more

ThreatList: Half of Execs Feel Unprepared to Respond to a Cyber-Incident

On October 16, 2018Source: The first stop for security news | Threatpost

Cybercrime costs are estimated to reach $6 trillion annually -- but companies still lag in preparednRead more

Facebook Expands Efforts to Squash Voter Suppression

On October 16, 2018Source: The first stop for security news | Threatpost

The social network will crack down on those spreading disinformation and looking to keep people awayRead more

Facebook Offers Details on ‘View As’ Breach, Revises Numbers

On October 15, 2018Source: The first stop for security news | Threatpost

Facebook's VP of product management was able to discuss more specifics about how the breach itself oRead more

Critical Code Execution Flaw Found in LIVE555 Streaming Library

On October 22, 2018

Security researchers have discovered a serious code execution vulnerability in the LIVE555 streamingRead more

8 Popular Courses to Learn Ethical Hacking – 2018 Bundle

On October 19, 2018

Update (Oct 2018) — Over 30,000 students from all around the world have joined this training programRead more

Critical Flaws Found in Amazon FreeRTOS IoT Operating System

On October 19, 2018

A security researcher has discovered several critical vulnerabilities in one of the most popular embRead more

Tumblr Patches A Flaw That Could Have Exposed Users’ Account Info

On October 17, 2018

Tumblr today published a report admitting the presence of a security vulnerability in its website thRead more

LibSSH Flaw Allows Hackers to Take Over Servers Without Password

On October 17, 2018

A four-year-old severe vulnerability has been discovered in the Secure Shell (SSH) implementation liRead more

Google Will Charge Android Phone Makers to Use Its Apps In Europe

On October 17, 2018

Would you prefer purchasing an Android device that doesn't have any apps or services from Google? NoRead more

New iPhone Bug Gives Anyone Access to Your Private Photos

On October 16, 2018

A security enthusiast who discovered a passcode bypass vulnerability in Apple's iOS 12 late last monRead more

Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020

On October 15, 2018

All major web browsers, including Google Chrome, Apple Safari, Microsoft Edge, Internet Explorer, anRead more

Google to Encrypt Android Cloud Backups With Your Lock Screen Password

On October 15, 2018

In an effort to secure users' data while maintaining privacy, Google has announced a new security meRead more

How Did Nature Form This Near-Perfect Rectangular Iceberg?

On October 22, 2018

The tabular iceberg recently broke from the Larsen C ice shelf on the Antarctic Peninsula.Read more

Artificial Clouds in Shipping Containers May Be the Solution to the World’s Water Crisis

On October 22, 2018

The Wood-to-Energy Deployed Water system pulls water from thin air by burning biomass and can producRead more

Watch Hackers Steal a Tesla

On October 22, 2018

The thieves appear to hack the key fob’s signal to open the doors and start the car.Read more

You Can Now Receive Slack Messages Inside a Super Nintendo Game

On October 22, 2018

Defying the laws of God and man, this engineer got Slack working inside an old Japanese SNES game.Read more

This SIM Card Forces all of Your Mobile Data Through Tor

On October 22, 2018

"This is about sticking a middle finger up to mobile filtering, mass surveillance."Read more

.0

National Ambulatory Hernia Institute notifies almost 16,000 patients of Gamma ransomware attack

On October 21, 2018Source: DataBreaches.net

On October 5, HHS received a  HIPAA breach notification from the National Ambulatory Hernia InstitutRead more

Indiana National Guard reports ransomware attack to server

On October 20, 2018Source: DataBreaches.net

WISH-TV reports: The Indiana National Guard revealed Thursday that a state, nonmilitary server withRead more

Hack on 8 adult websites exposes oodles of intimate user data

On October 20, 2018Source: DataBreaches.net

Dan Goodin reports: A recent hack of eight poorly secured adult websites has exposed megabytes of peRead more

CT: City pays USD 2,000 in computer ransomware attack

On October 20, 2018Source: DataBreaches.net

AP reports: A Connecticut city has paid USD 2,000 to restore access to its computer system after a rRead more

Hackers breach HealthCare.gov system, get data on 75,000

On October 20, 2018Source: DataBreaches.net

Ricardo Alonso-Zaldivar reports: A government computer system that interacts with HealthCare.gov wasRead more

NC: Notice to Catawba Valley Medical Center Patients of a Phishing Email Incident

On October 19, 2018Source: DataBreaches.net

This notice from their web site just showed up in my searches: Catawba Valley Medical Center (CVMC)Read more

Ex-Virginia teacher charged in hack of celebrities, others

On October 19, 2018Source: DataBreaches.net

Denise Lavoie reports: A former Virginia high school teacher has agreed to plead guilty in a hackingRead more

Information of 396K Users Exposed in Facepunch Data Breach

On October 18, 2018Source: DataBreaches.net

Sergiu Gatlan reports: As reported by Troy Hunt’s Have I Been Pwned breach notification servicRead more

Ca: AHS failed to protect health information, privacy commissioner finds

On October 17, 2018Source: DataBreaches.net

We had noted this breach on this site back in 2016, but here’s the follow-up.  CBC reports: AlRead more

VA: Norfolk school parents notified of medical data breach

On October 17, 2018Source: DataBreaches.net

Sara Gregory reports: Norfolk school officials this week notified the parents of students and employRead more

Super Micro conducting investigation into Bloomberg claims

On October 22, 2018

Super Micro Computer says it is conducting an investigation into the claims made in a Bloomberg BusiRead more

CMS portal breach exposes 75,000 individuals' records

On October 22, 2018

An online portal run by the Centers for Medicare and Medicaid Services experienced a breach last weeRead more

Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'

On October 19, 2018

Influential national security blog Lawfare has been the target of a distributed denial-of-service atRead more

Coats: ODNI has seen 'no evidence' of supply chain hack detailed in Bloomberg story

On October 18, 2018

Director of National Intelligence Dan Coats told CyberScoop on Thursday that he’s seen no evidence oRead more

The key to protecting the midterms is resilience for election systems, experts say

On October 18, 2018

With less than three weeks until the midterm elections, a lot of work has gone into preparing for thRead more

Super Micro conducting investigation into Bloomberg claims

On October 22, 2018

Super Micro Computer says it is conducting an investigation into the claims made in a Bloomberg BusiRead more

CMS portal breach exposes 75,000 individuals' records

On October 22, 2018

An online portal run by the Centers for Medicare and Medicaid Services experienced a breach last weeRead more

Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'

On October 19, 2018

Influential national security blog Lawfare has been the target of a distributed denial-of-service atRead more

Coats: ODNI has seen 'no evidence' of supply chain hack detailed in Bloomberg story

On October 18, 2018

Director of National Intelligence Dan Coats told CyberScoop on Thursday that he’s seen no evidence oRead more

The key to protecting the midterms is resilience for election systems, experts say

On October 18, 2018

With less than three weeks until the midterm elections, a lot of work has gone into preparing for thRead more

Google Chrome Is Reportedly Coming to Windows on ARM PCs

On October 22, 2018Source: BleepingComputer

In an interview, Miguel Nunes, Qualcomm senior director of product management confirmed that the ARMRead more

Signal Upgrade Process Leaves Unencrypted Messages on Disk

On October 22, 2018Source: BleepingComputer

The desktop version for the encrypted communications app Signal does not provide protection for theRead more

McAfee Tech Support Scam Harvesting Credit Card Information

On October 22, 2018Source: BleepingComputer

A new tech support scam pretending to be from McAfee was discovered last week that is harvesting creRead more

Remote Code Execution Flaws Found in FreeRTOS - Popular OS for Embedded Systems

On October 22, 2018Source: BleepingComputer

FreeRTOS, the open-source operating system that powers most of the small microprocessors and microcoRead more

Kraken Cryptor Ransomware Connecting to BleepingComputer During Encryption

On October 21, 2018Source: BleepingComputer

Over the weekend, the Kraken Cryptor Ransomware released version 2.0.6, which now connects to BleepiRead more

.0

CALL ME
+
Call me!
Share This