Security News
Pick your flavor of cybersecurity news
 Two Critical RCE Bugs Patched in Drupal 7 and 8On October 20, 2018Source: The first stop for security news | ThreatpostDrupal's advisory also included three patches for "moderately critical" bugs.… Read more |
 New APT Could Signal Reemergence of Notorious Comment CrewOn October 18, 2018Source: The first stop for security news | ThreatpostA custom malware used in a five-pronged APT espionage campaign was largely built from the defunct Co… Read more |
 Tumblr Privacy Bug Could Have Exposed Sensitive Account DataOn October 18, 2018Source: The first stop for security news | ThreatpostTumblr stressed that there is no evidence the security bug was being abused or that unprotected acco… Read more |
 Oracle Fixes 301 Flaws in October Critical Patch UpdateOn October 17, 2018Source: The first stop for security news | ThreatpostThe update includes one critical flaw in Oracle GoldenGate with a CVSS 3.0 score of 10.0.… Read more |
 libssh Authentication Bypass Makes it Trivial to Pwn Rafts of ServersOn October 17, 2018Source: The first stop for security news | ThreatpostThe flaw affects thousands of servers; but GitHub, a major libssh user, is unaffected.… Read more |
 On Heels of Criticism, Newly-Released Google Chrome 70 Prioritizes PrivacyOn October 17, 2018Source: The first stop for security news | ThreatpostThe update also features 23 security fixes.… Read more |
 As End of Life Nears, More Than Half of Websites Still Use PHP V5On October 16, 2018Source: The first stop for security news | ThreatpostSupport for PHP 5.6 drops on December 31 - but a recent report found that almost 62 percent of websi… Read more |
 ThreatList: Half of Execs Feel Unprepared to Respond to a Cyber-IncidentOn October 16, 2018Source: The first stop for security news | ThreatpostCybercrime costs are estimated to reach $6 trillion annually -- but companies still lag in preparedn… Read more |
 Facebook Expands Efforts to Squash Voter SuppressionOn October 16, 2018Source: The first stop for security news | ThreatpostThe social network will crack down on those spreading disinformation and looking to keep people away… Read more |
 Facebook Offers Details on ‘View As’ Breach, Revises NumbersOn October 15, 2018Source: The first stop for security news | ThreatpostFacebook's VP of product management was able to discuss more specifics about how the breach itself o… Read more |
 Critical Code Execution Flaw Found in LIVE555 Streaming LibraryOn October 22, 2018Security researchers have discovered a serious code execution vulnerability in the LIVE555 streaming… Read more |
 8 Popular Courses to Learn Ethical Hacking – 2018 BundleOn October 19, 2018Update (Oct 2018) — Over 30,000 students from all around the world have joined this training program… Read more |
 Critical Flaws Found in Amazon FreeRTOS IoT Operating SystemOn October 19, 2018A security researcher has discovered several critical vulnerabilities in one of the most popular emb… Read more |
 Tumblr Patches A Flaw That Could Have Exposed Users’ Account InfoOn October 17, 2018Tumblr today published a report admitting the presence of a security vulnerability in its website th… Read more |
 LuminosityLink Hacking Tool Author Gets 30-Months Prison SentenceOn October 17, 2018A 21-year-old Kentucky man who previously pleaded guilty to developing, marketing, and selling an in… Read more |
 LibSSH Flaw Allows Hackers to Take Over Servers Without PasswordOn October 17, 2018A four-year-old severe vulnerability has been discovered in the Secure Shell (SSH) implementation li… Read more |
 Google Will Charge Android Phone Makers to Use Its Apps In EuropeOn October 17, 2018Would you prefer purchasing an Android device that doesn't have any apps or services from Google? No… Read more |
 New iPhone Bug Gives Anyone Access to Your Private PhotosOn October 16, 2018A security enthusiast who discovered a passcode bypass vulnerability in Apple's iOS 12 late last mon… Read more |
 Chrome, Firefox, Edge and Safari Plans to Disable TLS 1.0 and 1.1 in 2020On October 15, 2018All major web browsers, including Google Chrome, Apple Safari, Microsoft Edge, Internet Explorer, an… Read more |
 Google to Encrypt Android Cloud Backups With Your Lock Screen PasswordOn October 15, 2018In an effort to secure users' data while maintaining privacy, Google has announced a new security me… Read more |
How Did Nature Form This Near-Perfect Rectangular Iceberg?
On October 22, 2018The tabular iceberg recently broke from the Larsen C ice shelf on the Antarctic Peninsula.… Read more
Artificial Clouds in Shipping Containers May Be the Solution to the World’s Water Crisis
On October 22, 2018The Wood-to-Energy Deployed Water system pulls water from thin air by burning biomass and can produc… Read more
Watch Hackers Steal a Tesla
On October 22, 2018The thieves appear to hack the key fob’s signal to open the doors and start the car.… Read more
You Can Now Receive Slack Messages Inside a Super Nintendo Game
On October 22, 2018Defying the laws of God and man, this engineer got Slack working inside an old Japanese SNES game.… Read more
This SIM Card Forces all of Your Mobile Data Through Tor
On October 22, 2018"This is about sticking a middle finger up to mobile filtering, mass surveillance."… Read more
.0
National Ambulatory Hernia Institute notifies almost 16,000 patients of Gamma ransomware attackOn October 21, 2018Source: DataBreaches.netOn October 5, HHS received a HIPAA breach notification from the National Ambulatory Hernia Institut… Read more |
Indiana National Guard reports ransomware attack to serverOn October 20, 2018Source: DataBreaches.netWISH-TV reports: The Indiana National Guard revealed Thursday that a state, nonmilitary server with… Read more |
Hack on 8 adult websites exposes oodles of intimate user dataOn October 20, 2018Source: DataBreaches.netDan Goodin reports: A recent hack of eight poorly secured adult websites has exposed megabytes of pe… Read more |
CT: City pays USD 2,000 in computer ransomware attackOn October 20, 2018Source: DataBreaches.netAP reports: A Connecticut city has paid USD 2,000 to restore access to its computer system after a r… Read more |
Hackers breach HealthCare.gov system, get data on 75,000On October 20, 2018Source: DataBreaches.netRicardo Alonso-Zaldivar reports: A government computer system that interacts with HealthCare.gov was… Read more |
NC: Notice to Catawba Valley Medical Center Patients of a Phishing Email IncidentOn October 19, 2018Source: DataBreaches.netThis notice from their web site just showed up in my searches: Catawba Valley Medical Center (CVMC)… Read more |
Ex-Virginia teacher charged in hack of celebrities, othersOn October 19, 2018Source: DataBreaches.netDenise Lavoie reports: A former Virginia high school teacher has agreed to plead guilty in a hacking… Read more |
Information of 396K Users Exposed in Facepunch Data BreachOn October 18, 2018Source: DataBreaches.netSergiu Gatlan reports: As reported by Troy Hunt’s Have I Been Pwned breach notification servic… Read more |
Ca: AHS failed to protect health information, privacy commissioner findsOn October 17, 2018Source: DataBreaches.netWe had noted this breach on this site back in 2016, but here’s the follow-up. CBC reports: Al… Read more |
VA: Norfolk school parents notified of medical data breachOn October 17, 2018Source: DataBreaches.netSara Gregory reports: Norfolk school officials this week notified the parents of students and employ… Read more |
Super Micro conducting investigation into Bloomberg claims
On October 22, 2018Super Micro Computer says it is conducting an investigation into the claims made in a Bloomberg Busi… Read more
CMS portal breach exposes 75,000 individuals' records
On October 22, 2018An online portal run by the Centers for Medicare and Medicaid Services experienced a breach last wee… Read more
Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
On October 19, 2018Influential national security blog Lawfare has been the target of a distributed denial-of-service at… Read more
Coats: ODNI has seen 'no evidence' of supply chain hack detailed in Bloomberg story
On October 18, 2018Director of National Intelligence Dan Coats told CyberScoop on Thursday that he’s seen no evidence o… Read more
The key to protecting the midterms is resilience for election systems, experts say
On October 18, 2018With less than three weeks until the midterm elections, a lot of work has gone into preparing for th… Read more
Super Micro conducting investigation into Bloomberg claims
On October 22, 2018Super Micro Computer says it is conducting an investigation into the claims made in a Bloomberg Busi… Read more
CMS portal breach exposes 75,000 individuals' records
On October 22, 2018An online portal run by the Centers for Medicare and Medicaid Services experienced a breach last wee… Read more
Lawfare editor on persistent DDoS attack: 'We wish they'd knock it off'
On October 19, 2018Influential national security blog Lawfare has been the target of a distributed denial-of-service at… Read more
Coats: ODNI has seen 'no evidence' of supply chain hack detailed in Bloomberg story
On October 18, 2018Director of National Intelligence Dan Coats told CyberScoop on Thursday that he’s seen no evidence o… Read more
The key to protecting the midterms is resilience for election systems, experts say
On October 18, 2018With less than three weeks until the midterm elections, a lot of work has gone into preparing for th… Read more
Google Chrome Is Reportedly Coming to Windows on ARM PCs
On October 22, 2018Source: BleepingComputerIn an interview, Miguel Nunes, Qualcomm senior director of product management confirmed that the ARM… Read more
Signal Upgrade Process Leaves Unencrypted Messages on Disk
On October 22, 2018Source: BleepingComputerThe desktop version for the encrypted communications app Signal does not provide protection for the… Read more
McAfee Tech Support Scam Harvesting Credit Card Information
On October 22, 2018Source: BleepingComputerA new tech support scam pretending to be from McAfee was discovered last week that is harvesting cre… Read more
Remote Code Execution Flaws Found in FreeRTOS - Popular OS for Embedded Systems
On October 22, 2018Source: BleepingComputerFreeRTOS, the open-source operating system that powers most of the small microprocessors and microco… Read more
Kraken Cryptor Ransomware Connecting to BleepingComputer During Encryption
On October 21, 2018Source: BleepingComputerOver the weekend, the Kraken Cryptor Ransomware released version 2.0.6, which now connects to Bleepi… Read more
.0