Though only two members strong, hackers pose a credible threat to banks in Russia and multiple countries.
π Readvia "Dark Reading".
π‘ Cybersecurity & Privacy news π‘
Though only two members strong, hackers pose a credible threat to banks in Russia and multiple countries.
π ReadThe Iran-linked group is using a variant of the data-exfiltration OopsIE trojan to attack a Mideast government entity.
π ReadResearchers detected the vulnerability in an attack campaign two days after it was posted on social media.
π ReadThe web management interface of Ubiquiti airMAX, airFiber, airGateway and EdgeSwitch XP (formerly TOUGHSwitch) allows an unauthenticated attacker to upload and write arbitrary files using directory traversal techniques. An attacker can exploit this vulnerability to gain root privileges. This vulnerability is fixed in the following product versions (fixes released in July 2015, all prior versions are affected): airMAX AC 7.1.3; airMAX M (and airRouter) 5.6.2 XM/XW/TI, 5.5.11 XM/TI, and 5.5.10u2 XW; airGateway 1.1.5; airFiber AF24/AF24HD 2.2.1, AF5x 3.0.2.1, and AF5 2.2.1; airOS 4 XS2/XS5 4.0.4; and EdgeSwitch XP (formerly TOUGHSwitch) 1.3.2.Blockchain is being used as a security tool. If you haven't thought about adopting it, you might want to reconsider your take.Some of those who received the letters conjecture that it may be because they purchased the LuminosityLink RAT.With access control disabled, other people could download previous print files, or even maliciously damage the printer.The two bugs were disclosed Wednesday in Cisco Umbrella, the tech giant's cloud-based security service.The US government exposed dozens of people'sβ personal details, including social security numbers, due to an online mishap on a public transparency portal.The irony: Parents put it on kids' phones to protect them, but this breach exposed sensitive data including Whatsapp and Facebook messages.WordPress version <4.9 contains a CWE-20 Input Validation vulnerability in thumbnail processing that can result in remote code execution. This attack appears to be exploitable via thumbnail upload by an authenticated user and may require additional plugins in order to be exploited however this has not been confirmed at this time. This issue appears to have been partially, but not completely fixed in WordPress 4.9The slew of fixes address a critical vulnerability that could enable memory corruption.Why cybersecurity threat feeds from intel-sharing groups diminish in value and become just another source of noise. (And what to do about it.)The DoJ plans to charge North Korean threat actors for their involvement in two major cyberattacks, US officials report.The PowerPool gang launched its attack just two days after the zero-day in the Windows Task Scheduler was disclosed.Today's security operations center is all about reducing the number of alerts with emerging technologies - and enhancing old-school human collaboration. Here's how some real-world SOCs are evolving.In the same way that food is fuel to our bodies, data is the fuel on which our security programs run. Here are 10 action items to put on your cybersecurity menu.A data breach has a measurable impact on stock price, according to a report looking at incidents from the past six yearsIn Ice Qube Thermal Management Center versions prior to version 4.13, the web application does not properly authenticate users which may allow an attacker to gain access to sensitive information.New research sheds light on the biggest threats to strike ICS systems in the first half of 2018, and what's in store for the rest of this year.The DoJ said a DPRK spy, Park Jin-hyok, was involved in βa conspiracy to conduct multiple destructive cyberattacks around the world."Voting machines that do not provide a paper trail or cannot be independently audited should immediately be removed, concludes a new report from the National Academies of Sciences, Engineering, and Medicine.The main source of infection on industrial control systems was the internet, researchers at Kaspersky Lab found in a new report.A simple misconfiguration could expose the IP addresses of dark web sites.Mozilla's browser is waving goodbye to millions of XP holdouts.A macOS App called Adware Doctor blocks ads, but shareβs user browser history with a China-based domain.The teenager made bomb threats to schools, and to a flight between the UK and San Francisco while it was in mid-air.The Necurs Botnet, DarkHydrus and other threat actors are turning to the inconspicuous files.Richard Gregory Bauer allegedly weaseled private information out of the women on Facebook by pretending to be working on a class project.The Threatpost team breaks down the biggest news from the week ended Sept. 7.An exploitable denial of service exists in the the Joyent SmartOS OS 20161110T013148Z Hyprlofs file system. The vulnerability is present in the Ioctl system call with the command HYPRLOFSADDENTRIES when used with a 32 bit model. An attacker can cause a buffer to be allocated and never freed. When repeatedly exploit this will result in memory exhaustion, resulting in a full system denial of service.The data-driven nature of IR can provide many of the reporting requirements governing industrial control system safety, finance, consumer privacy, and notifications.The airline "is deeply sorry" for its worst-ever cyberattack, which has affected 380,000 customers.The airline said information like name, address and bank card details like CVC code were compromised.IBM Campaign 9.1, 9.1.2, and 10 is vulnerable to HTML injection. A remote attacker could inject malicious HTML code, which when viewed, would be executed in the victim's Web browser within the security context of the hosting site. IBM X-Force ID: 121153.IBM Campaign 9.1, 9.1.2, and 10 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM X-Force ID: 121152.'Big Bang' group returns with new campaign after last year's RAT attacks.An exploitable command execution vulnerability exists in Information Builders WebFOCUS Business Intelligence Portal 8.1 . A specially crafted web parameter can cause a command injection. An authenticated attacker can send a crafted web request to trigger this vulnerability.An exhaustive scan shows hundreds of thousands of websites potentially exposing sensitive data such as database passwords, API keys and so on.These methods may not yet be on your security team's radar, but given their impact, they should be.The newest version of TLS won't break everything in your security infrastructure, but you do need to be prepared for the changes it brings.The fact that the app likely has been exfiltrating data for years is "rather f#@&'d" up, says the security researcher who reported the issue to Apple one month ago.Spreading via fake Android apps, the malware lifts a range of sensitive information from victims' devices.Trusted execution environments are said to provide a hardware-protected enclave that runs software and cannot be accessed externally, but recent developments show they fall far short.NIST and DHS project publishes first draft of new BGP Route Origin Validation (ROV) standard that will help ISPs and cloud providers protect against BGP hijack attacks.If the Assistance and Access Bill becomes law as it stands, it could affect 'every website that is accessible from Australia' with relatively few constraints in the government's powers.ProtonVPN and NordVPN contain severe bugs which impact Windows users and threaten their privacy.From Google buying Mastercard card records and Google warning users of FBI snooping to Chrome making it harder to use Flash, and more!The IoT botnets are back with a new arsenal containing a vast array of vulnerabilities.The National Academy of Sciences says the US election system uses insecure technology and is fighting off attempts to destabilize it.Chrome will nowΒ generate a unique password for users as a part of the everyday credential creation process.Initial Coin Offerings (ICOs) are part of the cryptocurrency Wild West, but how do you know what is fraudulent and what is legitimate?Initial Coin Offerings (ICOs) are part of the cryptocurrency Wild West, but how do you know what is fake and what is legitimate?New malware persistence method works only on Windows 10 and abuses built-in UWP apps like the Cortana and People apps.Park Jin Hyok is allegedly with Lazarus Group, a hacking team connected to attacks on a wide array of industries and public utilities.Researchers have sounded a warning about the security of Baseboard Management Controllers (BMCs) - a critical component that datacentres depend on to manage servers.Apple is planning to create an online portal that will allow law enforcement officials around the world to request information about its users more easily.Cybersecurity programs have drastically improved since 2017, according to a recent DomainTools survey. Here's how you can improve your cybersecurity GPA.
π ReadThe hacking group is covertly infecting Windows machines with Trojans by way of stolen certificates belonging to a Chinese security company.A company that sells exploits to government agencies drops Tor Browser zero-day on Twitter after recent Tor Browser update renders exploit less valuable.One of the most highly touted breakthroughs of the iPhone X--and soon to be the iPhone XS--is also its biggest drawback in usability and productivity.By implementing the "Equifax bug," it's the first known time a Mirai IoT botnet variant has targeted an Apache Struts vulnerability.Key starting points for those still struggling to understand the concept.Impersonation fraud is on the rise, and SMBs lose an average of $35,000 to these attacks, according to Lloyds Bank.Americans need more individualized and accessible digital services from their government agencies, according to a Conduent report.Andrei Tyurin was arrested for his involvement in a hacking campaign targeting US financial institutions, financial news publishers, brokerage firm, and other companies.Locky ransomware was once of the most prolific forms of ransomware - a new 'PyLocky' ransomware campaign by attempting to piggyback on its past success.foreman before version 1.15.0 is vulnerable to an information leak through organizations and locations feature. When a user is assigned _no_ organizations/locations, they are able to view all resources instead of none (mirroring an administrator's view). The user's actions are still limited by their assigned permissions, e.g. to control viewing, editing and deletion.foreman before 1.14.0 is vulnerable to an information leak. It was found that Foreman form helper does not authorize options for associated objects. Unauthorized user can see names of such objects if their count is less than 6.It was found that Kubernetes as used by Openshift Enterprise 3 did not correctly validate X.509 client intermediate certificate host name fields. An attacker could use this flaw to bypass authentication requirements by using a specially crafted X.509 certificate.It was found that the CloudForms before 5.6.2.2, and 5.7.0.7 did not properly apply permissions controls to VM IDs passed by users. A remote, authenticated attacker could use this flaw to execute arbitrary VMs on systems managed by CloudForms if they know the ID of the VM.Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.Hours after researchers publicly disclosed an app that was caught stealing and uploading browser history data, Apple removed it from the Mac App Store.The Equifax breach last September was the largest consumer breach in history. We talked to experts about lessons learned and steps companies can take to prevent and minimize future breaches.In parts of the developing world, dissidents and journalists face hostile governments and other threats -- and mobile is their only access to the internet.Whatever you do, try to avoid connecting to free wifi at these airports, begs TechRepublic's Tom MerrittTechRepublic's Tom Merritt counts down the top 5 riskiest wifi at airports in the U.S.An information disclosure vulnerability was found in JBoss Enterprise Application Platform before 7.0.4. It was discovered that when configuring RBAC and marking information as sensitive, users with a Monitor role are able to view the sensitive information.A timing attack flaw was found in OpenSSL 1.0.1u and before that could allow a malicious user with local access to recover ECDSA P-256 private keys.Drools Workbench contains a path traversal vulnerability. The vulnerability allows a remote, authenticated attacker to bypass the directory restrictions and retrieve arbitrary files from the affected host.An authorization flaw was found in Pacemaker before 1.1.16, where it did not properly guard its IPC interface. An attacker with an unprivileged account on a Pacemaker node could use this flaw to, for example, force the Local Resource Manager daemon to execute a script as root and thereby gain root access on the machine.With the growing need for cybersecurity professionals in the enterprise, sponsored tuition could help fill skill gaps, and 72% of workers are willing to go back to school for it.The flaws disclosed this month are related to a critical bug previously discovered by VerSprite in April 2018.A report from the Government Accountability Office details the issues found and opportunities missed in the huge 2017 Equifax data breach.After researchers found the security apps collecting and uploading users' browser histories, Apple removed the apps from its macOS app store and Trend Micro removed the apps' browser history collection capability.The Microsoft Security Response Center publishes two documents detailing internal procedures used by its staff to prioritize and classify security bugs.The Fallout exploit kit carries GandCrab into the Middle East in a new campaign.The Fallout exploit kit carries GandCrab into the Middle East in a new campaign.Security researchers finds over 3,000 TechNet pages flooded with tech support scams pushing shady phone numbers for cryptocurrency exchanges and social media platforms.Industry groups, associations, and people that know what they are talking about, line up to warn of drawbacks from Canberra's proposed Assistance and Access Bill.With all of the good a quantum computer promises, one of the side effects is that it will be able to break the mechanisms currently used to secure information. But the industry is onto it, and Australia's QuintessenceLabs is playing a key role.Network for Electronic Transfers of Singapore (Nets) has inked an agreement with China's UnionPay to enable consumers to scan and pay for purchases at 7.5 million participating merchants worldwide.Security researchers find clues connecting the Magecart group to the breach at British Airways.Microsoft will provide security updates until 2023 to help business customers migrate to Windows 10 - if they pay.Respected researcher Wladimir Palant has recommended users βuninstall the Keybase browser extension ASAPβ after discovering a gap in its end-to-end encryption.An attack technique has been revealed which allows threat actors to unlock a Tesla vehicle in no time at all.The company has now removed a browser history data collection feature from its macOS products.19% of employees of small and medium-sized businesses share their passwords with coworkers or assistants, according to a recent survey.Whiplr, a naughty, naughty little app, has now secured passwords with "one-way encryption" and is "adding more security measures".The $7000 malware shows there is serious money to be made in the banking Trojan market.The Magecart Group has been blamed for the British Airways breach that compromised 380k payment cards.Trust your gut: if staring at that common object in your rental gives you the heebie jeebies, it might be because it's staring back at you.Ransomware hasn't gone away, but it is getting quieter and more targeted.BioCatch's VP Frances Zelazny explains why companies are dropping passwords in favor of biometric security like fingerprint and iris scanners.An issue has been found in PowerDNS before 3.4.11 and 4.0.2, and PowerDNS recursor before 3.7.4 and 4.0.4, allowing a remote, unauthenticated attacker to cause an abnormal CPU usage load on the PowerDNS server by sending crafted DNS queries, which might result in a partial denial of service if the system becomes overloaded. This issue is based on the fact that the PowerDNS server parses all records present in a query regardless of whether they are needed or even legitimate. A specially crafted query containing a large number of records can be used to take advantage of that behaviour.A flaw was found in the CloudForms API before 5.6.3.0, 5.7.3.1 and 5.8.1.2. A user with permissions to use the MiqReportResults capability within the API could potentially view data from other tenants or groups to which they should not have access.The hotrod java client in infinispan before 9.1.0.Final automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-crafted serialized object to attain remote code execution or conduct other attacks.Some 73% of institutions took three or more days to apply patches for cyberthreats, according to a recent EfficientIP report.This simple advice will help to protect you against hackers and government surveillance.Adobe issued fixes for versions of its ColdFusion web development platform - including six critical flaws.It's more critical than ever for states to protect our democratic system and voting infrastructure from foreign cyber espionage.California IoT security bill criticized by security researcher. Expert says bill "is based upon an obviously superficial understanding of the problem."Magecart attackers hit airline with the same "digital skimmers" they used on the entertainment company in June, researchers say.It was found that the improper default permissions on /tmp/auth directory in JBoss Enterprise Application Platform before 7.1.0 can allow any local user to connect to CLI and allow the user to execute any arbitary operations.Raspberry Pi's processing power versus Tesla's Model X cryptography - victory for the little guy!Pivotal Cloud Foundry Elastic Runtime version 1.4.0 through 1.4.5, 1.5.0 through 1.5.11 and 1.6.0 through 1.6.11 is vulnerable to a remote information disclosure. It was found that original mitigation configuration instructions provided as part of CVE-2016-0708 were incomplete and could leave PHP Buildpack, Staticfile Buildpack and potentially other custom Buildpack applications vulnerable to remote information disclosure. Affected applications use automated buildpack detection, serve files directly from the root of the application and have a buildpack that matched after the Java Buildpack in the system buildpack priority when Java Buildpack versions 2.0 through 3.4 were present.A team of hackers finds it's possible to steal a Tesla Model S by cloning the key fob.Exposed data included names, emails addresses and IP addresses.These stealthy downloaders initially infect systems and then only install additional malware on systems of interest.BioCatch's VP Frances Zelazny explains each step of social engineering hacks, low-tech cyberattacks that have a big impact on business.Microsoft engineers patch 62 vulnerabilities, including 17 rated 'Critical'A new version of Mirai exploits the Apache Struts flaw linked to the Equifax breach, while Gafgyt targets an old flaw in SonicWall.Microsoft's September Patch Tuesday release tackles three vulnerabilities actively being exploited in the wild.CVE-2018-8440, which was publicly disclosed on Twitter in August, has already been used in a malware campaign.Overall, the number of email fraud attacks per targeted company rose 25 percent from the previous quarter (to 35 on average) and 85 percent from the year-ago quarter.Judge rules that initial coin offerings are "securities" and SEC can go after ICO scammers for securities fraud under US securities laws.With banking the first sector to be overhauled under the impending Consumer Data Right, the ACCC will be shaping its rules framework on the new data-sharing requirements of financial sector.WordPress security firm Defiant reports "very noticeable uptick" in scans for vulnerable plugin installations.The Australian Medical Association has said privacy experts are comparing My Health Record with a utopian ideal, not a doctor's lived reality.The worst vulnerabilities lead to arbitrary code execution.The server was reportedly available for anyone to access and lacked any form of protection against intrusion.Millions of smart TVs may soon be forced to admit to viewers that they spied on them, and then sold their data.Business users looking for a USB flash drive that offers built-in encryption and a broad range of storage capacities, all at an affordable price need look no further.TLS 1.3 brings speed improvements and better cryptography to OpenSSL, the most popular open source cryptography library on the marketBiometrics, from fingerprints to iris- and facial-recognition, are advancing, with behavioral biometrics quickly becoming the security access of choice, says BioCatch VP Frances Zelazny.They also appear to be more privacy-wary, with 64% changing their settings, comparing to just a third of older users."I can send a picture where all of us are together," says "Olivia," before sending a porn URL. Tell kids not to click!Jake Dilemani, Senior Vice President Mercury Communication, explains how cyber-attacks targeting communication systems and critical infrastructure can alter the course of history.Microsoft has taken down thousands of ads for tech support scams that infested the companyβs TechNet support domain.You've just upgraded to the most recent version of Windows 10. Before you get back to work, use this checklist to ensure that your privacy and security settings are correct and that you've cut annoyances to a bare minimum.BlackBerry Security Summit London: CEO John Chen details how the company wants to harness machine learning and AI.And just one mistake can compromise an entire organisation.Okta will give away two free Okta-branded YubiKey Experience Packs to every Okta customer organization using Okta MFA and Okta Adaptive MFA.Estimated reading time: 1 minuteThe recent zero-day vulnerability CVE-2018-8440 in Windows Task Scheduler enables attackers to perform a privilege elevation on targeted machines. Microsoft has released a security advisory CVE-2018-8440 on September 11, 2018 to address this issue. According to Microsoft, successful exploitation of this vulnerability could run arbitrary code in the security context of the local system. About the vulnerability CVE-2018-8440 is a local privilege escalation vulnerability in the Windows Task Schedulerβs Advanced Local Procedure Call (ALPC) interface. The ALPC endpoint in Windows task scheduler exports the SchRpcSetSecurity function, which allows us to set an arbitrary DACL without checking permissions. Exploiting the vulnerability ultimately allows a local unprivileged user to change the permissions of any file on the system. The exploit code release was announced on twitter, on 27th August 2018, by a security researcher who goes with the handle βSandboxEscaperβ.Β Within days, PowerPool malware was found using the exploit to infect users. Vulnerable versions Windows 7 Windows 8.1 Windows 10 Windows Server 2008, 2012 and 2016 Quick Heal detection Quick Heal has released the following detection for the vulnerability CVE-2018-8440: Trojan.Win64 Trojan.IGeneric Quick Heal Security Labs is actively looking for new in-the-wild exploits for this vulnerability and ensuring coverage for them. References https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-8440 Subject Matter Experts Sameer Patil |Β Quick Heal Security Labs The post CVE-2018-8440 β Task Scheduler ALPC Zero-Day Exploit in the Wild appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.Password inadequacy remains a top threat in internet security, according to a new report from WatchGuard Technologies.BlackBerry Security Summit London: CEO John Chen details how the company wants to harness machine learning and AI.Cryptojacking attacks at the hands of cryptomining malware is on the rise as these variants of Trojans, worms, and exploit kits make their rounds.Osirisβ fundamental makeup positions it in the fore of malware trends, despite being based on old source code thatβs been knocking around for years.A flaw in Safari - that allows an attacker to spoof websites and trick victims into handing over their credentials - has yet to be patched.One-third of all fraud targets are mobile, a growing source of all digital transactions.Jack Wallen activates and enables Android Pie's new lockdown mode.IoT attacks, budget shortfalls, and the skills gap are among the problems keeping security pros up at night.Biometric authentication can be good for security and for business, according to a new study from Goode IntelligenceThe development fits a trend that sees threat actors turning to well-known, commodity malware, overcoming its easy detection with ever-better obfuscation methods.In their place is a collection of new exploits for more recently disclosed - and therefore not likely widely patched - vulnerabilities.A site spoofing the official Jaxx website was discovered packing several infections for Windows and Mac machines, and has been shut down.Read about the saga of Facebook's failures in ensuring privacy for user data, including how it relates to Cambridge Analytica, the GDPR, the Brexit campaign, and the 2016 US presidential election.A new malware technique is making phishing attacks harder to spot when they succeed.Septemberβs Patch Tuesday is upon Windows users - 61 CVEs, 17 flaws rated as critical, a zero-day and a flaw affecting Adobe Flash Player.California looks set to regulate IoT devices, becoming the first US state to do so and beating the Federal Government to the post.The infosec community say California's IoT security bill is "nice," but doesn't hit on the important issues....and using the credit card terminals to allegedly issue themselves fraudulent returns and to steal taxpayer IDs and bank info.The data-management firm's customer database held names, email addresses, some IP addresses and more: a wealth of ammo for phishers.Nation-state adversaries from Iran to Russia have leveraged the supply chain as a vehicle to compromise infrastructure and disrupt businesses.Malicious Microsoft Office attachments are more common than malicious batch scripts and PowerShell scripts, according to Cofense Intelligence. Here's how to protect your business.The companies join forces to broaden their privileged access management portfolio and will take on the BeyondTrust name.The 38-year-old Russian national operated several botnets and infected thousands of systems with malware.What would it look like if more than a tiny fraction of enterprises had access to all the signals hidden in their big data today?The second-most popular delivery method is CVE-2017-11882, a patched Microsoft vulnerability that allows the attacker to perform arbitrary code-execution.It's in the terms of service, as one man found out after Apple removed three movies from his iTunes library.Jail time for fake reviews is βa landmark ruling for the Internet,β TripAdvisor said.Less than a week after Chrome was updated to hide the "www" from users, Google have put the subdomain back into the address bar, but only temporarily.Jail time for fake reviews is βa landmark ruling for the Internet,β TripAdvisor said.Project Verify from Verizon, AT&T, Sprint and T-Mobile aims to replace your password.A hacker used their own code to tamper with a smart contract run by a betting company, and walked off with $24,000.The threat group has racked up a list of victims including Feedify, Groopdealz and British Airways.North America is the region where C-Suite leaders are most likely to be blamed for a breach.A quarter of German manufacturing companies reported losing sensitive mobile phone data, according to a Bitkom survey.Protecting the 2018 election cycle means fixing the information infrastructure.Four-year, four-month term will follow a longer sentence in hacker's home country of Romania.Third-party breaches have become an epidemic as cybercriminals target the weakest link. Organizations such as BestBuy, Sears, Delta and even NYU Medical Center are just a few that have felt the impact of cyberattacks through third-party vendors. The fallout from these breaches can be costly, as the average enterprise pays $1.23 million per incident, up [β¦]New report comes out just as group of US senators chastise Secretary of State Mike Pompeo for not using multifactor authentication.Indonesia, Taiwan, Vietnam, Thailand, Egypt, Russia, China, among the top 10 nations with the most machines infected with the exploit.The rules would apply to all hosting service providers offering services in the E.U., regardless of size, even if theyβre not based there.Anomali CEO Hugh Njemanze discusses the importance of sharing threat intelligence across the country's highly decentralized voting systems to safeguard the integrity of upcoming elections.The attack bypasses BIOS mitigations for cold-boot compromise on models from Apple, Dell, Lenovo and all others made in the last 10 years.Annoying spam calls are on the rise, and here's how to block 'em, explains TechRepublic's Tom MerrittFrom the hidden camera found in an AirBnb room and the smart TVs now admitting to viewers they spied on them to Google Chrome creating passwords for you, and more!Like a good junior programmer, Facebook's AI is cutting its teeth with a bit of bug fixing.The romance and business email compromise scammer pled guilty to fraud amounting to $25m.The social network is expanding its effort to stamp out fake news.Those annoying spam calls are on the rise, but TechRepublic's Tom Merritt has 5 solutionsYour web browser goes with you everywhere on the web. But how much do you trust it?Security requires smart people, processes, and technology. Too often, the "people" portion of the PPT equation is neglected.The attack stems from a glitch in WebKit, an HTML layout browser engine in Appleβs Safari browser.A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache SpamAssassin, using HTML::Parser, we setup an object and hook into the begin and end tag event handlers In both cases, the "open" event is immediately followed by a "close" event - even if the tag *does not* close in the HTML being parsed. Because of this, we are missing the "text" event to deal with the object normally. This can cause carefully crafted emails that might take more scan time than expected leading to a Denial of Service. The issue is possibly a bug or design decision in HTML::Parser that specifically impacts the way Apache SpamAssassin uses the module with poorly formed html. The exploit has been seen in the wild but not believed to have been purposefully part of a Denial of Service attempt. We are concerned that there may be attempts to abuse the vulnerability in the future.A code execution vulnerability exists in ProcessMaker Enterprise Core 3.0.1.7-community. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker can send a crafted web parameter to trigger this vulnerability.The attack left airport staff to post flight times and gates on whiteboards at Bristol Airport in Britain.Old instances of the popular WordPress Duplicator Plugin are leaving sites open to remote code execution attacks.The newly expanded Facebook bug bounty program sniffs out access token exposure flaws.An exploitable heap overflow vulnerability exists in the ipStringCreate function of Iceni Argus Version 6.6.05. A specially crafted pdf file can cause an integer overflow resulting in heap overflow. An attacker can send file to trigger this vulnerability.An exploitable information leak vulnerability exists in Insteon Hub running firmware version 1012. The HTTP server implementation incorrectly checks the number of GET parameters supplied, leading to an arbitrarily controlled information leak on the whole device memory. An attacker can send an authenticated HTTP request to trigger this vulnerability.Altaba tells SEC it will incur $47 million to settle consumer litigation for massive Yahoo data breaches.Jack Wallen walks you activating and enabling Android Pie's new lockdown mode and shows why you should use it.An information disclosure vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10001 can allow for a user to retrieve sensitive information without authentication.Remote desktop protocol access continues to thrive in underground markets, primarily to hackers who lack expertise to find exposed ports themselves.Firmware used in up to 800,000 CCTV cameras open to attack thanks to buffer overflow zero-day bug.The new malware tool targeting Windows and Linux systems combines cryptomining, ransomware, botnet, and self-propagation capabilities.Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A HTTP request can allow for a user to perform a firmware upgrade using a crafted image. Before any firmware upgrades in this image are flashed to the device, binaries as well as arguments to shell commands contained in the image are executed with elevated privileges.An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue HTTP server.An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue HTTP server.An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue HTTP server.Senators have discovered that the State Department is breaking the law by not using multi-factor authentication in its emails.New Mexico's AG filed a lawsuit accusing a popular app maker, plus Google's and Twitter's ad platforms, of illegally collecting kids' data.Millions of documents have been stolen from top UK universities and are being sold over WhatsApp for as little as Β£2.The enemy within the enterprise is often employees who are either malicious or unwittingly allowing attackers inside a protected network.Modern apps and the cloud mean that organizations must now rethink older security practices.The malicious spyware has also been found in use in countries known for targeting human rights.Another month where Android finds itself with a mixture of Critical and High vulnerabilities. Jack Wallen offers highlights.Thousands of US state and local governments use the service to process online payments for everything from traffic tickets to court fines.The battery saver feature was turned on as an 'internal experiment,' which Google has since rolled back.More than half (55%) of malware infected sites were running on their latest core versions when they were attacked, according to a recent SiteLock report.Security vendor offers US election jurisdictions its Project Dolphin phishing/website spoofing-detection service and security resources.Outdated security practices made it simple to access other people's receipts for everything from traffic tickets to paying bail.Phishing is the biggest threat facing SMBs, according to the 2018 Webroot SMB Pulse Report.While vastly different than their IT counterparts, operational technology environments share common risks and best practices.Rapidly evolving malware is posing an ever-greater threat to the IoT - and business users of the Internet.Itβs only September and yet 2018 is well on its way to being remembered as the year of fixing flaws we didnβt realise were possible in hardware weβd never heard of.A honeypot set up to sniff out data on infected IoT devices found a broad array of compromised devices β from Mikrotik routers to dishwashers.New data shows hackers hit websites, on average, every 25 minutes.In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing the function for writing device values into flash, uninitialized memory can be written to flash.In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while accessing the keystore in LK, an integer overflow vulnerability exists which may potentially lead to a buffer overflow.In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while processing a gpt update, an out of bounds memory access may potentially occur.In all android releases(Android for MSM, Firefox OS for MSM, QRD Android) from CAF using the linux kernel, while loading a user application in qseecom, an integer overflow could potentially occur if the application partition size is rounded up to page_size.More than 60% of organizations report the bulk of new applications are built in the cloud. What does this mean for security?Zero-day flaw in China-based NUUO's video recorder technology still unfixed three months after vendor was alerted.Cross-site scripting (XSS) vulnerability in the Open-Xchange webmail before 7.6.3-rev28 allows remote attackers to inject arbitrary web script or HTML via the event attribute in a time tag.Bypassing password security vulnerability in McAfee Application and Change Control (MACC) 7.0.1 and 6.2.0 allows authenticated users to perform arbitrary command execution via a command-line utility.The social network is trying to protect candidates, elected officials and their staff from "hackers and foreign adversaries".Blockchain stands to revolutionize many industries, but many people are still unsure of how the distributed ledger technology underpinning Bitcoin works.A third party app can use Grindrβs distance data to pinpoint a users location down to a room within a house.Another day, another poorly configured MongoDB database.One year to the day after iOS 11 appeared, Apple yesterday released its replacement, iOS 12.A newly discovered malware has different capabilities for Windows and Linux systems, including ransomware and cryptomining.Technology can free analysts from the burden of manual and tedious tasks so they can operate at the highest level of their abilities.Pen tests are expensive, but there are key factors that can make them worth the investment.What happens if your browser doesn't tell you the truth about the identity of the website you're looking at?You've been hired to make an impact. These tips can help set you up for continued success.Social engineering scams target employees' payroll credentials so attackers can access and change their bank account data.Malicious login attempts from bots increased by by almost 2 billion from April to May 2018. Here's who is at risk.IBM Tivoli Monitoring 6.2.3 through 6.2.3.5 and 6.3.0 through 6.3.0.7 are vulnerable to both TEPS user privilege escalation and possible denial of service due to unconstrained memory growth. IBM X-Force ID: 137039.The majority of organizations are struggling to implement a risk-based approach to security - even though risk reduction has become the primary metric for measuring the effectiveness of enterprise security strategies. Read the report and get more details today!Overall seven flaws were patched - including one critical vulnerability that could lead to arbitrary code execution.The three hackers behind the infamous Mirai botnet have been helping law enforcement take down cybercriminals across the globe.New standards offer protection against hacking, credential theft, phishing attacks, and hope for the end of an era of passwords as a security construct.The trio behind Mirai sentenced to probation and public service in return for cooperation with law enforcement and researchers.Security leaders are evolving from technicians to business executives as tech drives enterprise projects, applications, and goals.A new report shows that illicit cryptomining malware is growing by leaps and bounds on the networks of unsuspecting victims.Suit underscores longtime battle between vendors and labs over control of security testing protocols.Western Digital has failed to patch a serious security vulnerability in its MyCloud NAS drives that it was told about more than a year ago, researchers have alleged.The young men behind the powerful IoT device botnet have been working undercover with law enforcement since they were first fingered.The new preventative cybersecurity powers include potentially acting against countries considered friendly toward the US - a risky move, some say.The research team said it has shared its findings with law enforcement and victims are being notified.US government recommended six months behind bars. Thatβs one month for every million people that viewed a part of the pirated movie, apparently.The data breach, hard on the heels of the British Airways breach, shows that Magecart is quickly evolving and shows no signs of slowing down.Actionable advice for tailoring the National Institute of Standards and Technology's security road map to your company's business needs.ATO attacks steal a person's credentials and use them to send emails from their account, according to a recent Barracuda Networks report.Vulnerability allowed an unauthenticated remote attacker to log in to a device at the time the system initially boots up.Actionable advice for tailoring the National Institute of Standards and Technology's security road map to your company's business needs.The incident highlights a broader problem of poor security in cryptocurrency exchanges throughout the country.What's causing the uptick? Motivation, opportunity, and new capabilities.Netflix phishing scammers are at it again, sending emails that try to steal sensitive details from subscribers.The scenario was always hypothetical but the fact such a thing was even possible until this week has left some in the Bitcoin community feeling alarmed.The DHS directive on email security has an approaching deadline that most departments in the executive branch might actually meet.In an effort to increase transparency and prevent fraud, blockchain may be the next platform for trading goods.Industry leaders are scrambling to address the issue, which will take new thinking to overcome.Microsoft said that it's working on a fix for a zero-day flaw in its JET Database Engine.The White House is changing the rules on its use of digital weapons to fight adversaries targeting US networks.Move beyond generic, annual security awareness training with these important tips.gitolite before commit fa06a34 might allow local users to read arbitrary files in repositories via vectors related to the user umask when running gitolite setup.gitolite commit fa06a34 through 3.5.3 might allow attackers to have unspecified impact via vectors involving world-writable permissions when creating (1) ~/.gitolite.rc, (2) ~/.gitolite, or (3) ~/repositories/gitolite-admin.git on fresh installs.Attack against the Metropolitan Police Department was disrupted before malware could be sent to additional systems.Many different threat actors are using this crypting service/tool for their operations, possibly buying it from the developer itself.The company said it has issued a patch for the issue, which has been ongoing since May 2017.A career as a cybersecurity specialist requires more than just technical skills. Cybersecurity professionals also tend to have specific personalities. Do you qualify?A career as a cybersecurity specialist requires more than just technical skills. Cybersecurity professionals also tend to have specific personalities. Do you qualify?How Park Jin Hyok - charged by the US government for alleged computer crimes for the Sony, Bank of Bangladesh, WannaCry cyberattacks - inadvertently blew his cover via email accounts.Cisco has patched vulnerability in its video surveillance manager software that could give an unauthenticated, remote attacker the ability to execute arbitrary commands on targeted systems.Securing Mac computers means more than just protecting the data. Limiting the ways a user can gain access to a device--including bypassing the existing OS or resetting account passwords is easily enabled with a simple command.Up to two billion devices are still vulnerable to the BlueBorne IoT attack - and may not ever get a patch.From iOS security updates to Netflix phishing attacks, catch up with everything we've written in the last seven days - it's weekly roundup time.It's just a number to detect fraud, not a Black Mirror-esque score that's going to rate us all as social misfits unworthy of wedding invitations.The Massachusetts State Police (MSP) accidentally spilled some of its opsec onto Twitter last week, uploading a screenshot that revealed browser bookmarks.Google is still allowing third-party developers access to access its usersβ Gmail data, it said in a letter to Senators last week.The EU justice commissioner said she's out of patience. Also, she quit Facebook because it's a "channel of dirt."What happens to sensitive customer data when a large company that has collected it over many years suddenly goes bust?Microsoft has extended its support for passwordless login using the app to the hundreds of thousands of Azure Active Directory-connected apps used by business, one of a series of security improvements announced at Ignite.There are currently no mitigations for the Firefox attack, a researcher told Threatpost.This time a 9.8/10-severity hardcoded password has been found in Cisco's video surveillance software.While the concept may sound appealing, it's rife with drawbacks and dangers.A citizen of the former USSR is sentenced to 168 months for running Scan4you, an online counter antivirus service.The human factor doesn't have to be an intangible when assessing cyber risks within a company.Chrome users are now automatically signed into the browser if they're signed into any other Google service, such as Gmail.The spam campaign mostly targets victims in Turkey and Germany.For cybercriminals, the Dark Web grows more profitable every day.At Ignite 2018, security took center stage as Microsoft rolled out new security services and promised an end to passwords for online apps.Multiple SQL injection vulnerabilities in the login page in RXTEC RXAdmin UPDATE 06 / 2012 allow remote attackers to execute arbitrary SQL commands via the (1) loginpassword, (2) loginusername, (3) zusatzlicher, or (4) groupid parameter to index.htm, or the (5) rxtec cookie to index.htm.A recent cryptomining campaign shows criminal ingenuity.The change is a complete departure from Google's previous practice of keeping sign-in for Chrome separate from sign-ins to any Google service.A young company has a new patent for using fault tolerance techniques to protect against malware infection in applications.According to Verizon data, only 52.5% of companies maintained full compliance with payment card industry standards in 2017.Estimated reading time: 2 minutesIn case you have received a reminder from your bank asking you to replace your stripe-only card with an EMV chip card and you have no idea why this change is being implemented, then you are at the right place. As per recent instructions received from the Reserve Bank of India (RBI), it has become mandatory for banks to replace the existing stripe-only debit and credit cards with the EMV (Europay, Mastercard, Visa) chip cards latest by 31 December 2018. This holds true for all domestic and international cards even if their validity extends beyond 31 Dec 2018. In case you are worried about the extra charges for replacing your existing cards, then be rest assured that the banks are replacing the cards absolutely FREE of cost!! So, then why replace your stripe-only cards with the EMV chip cards? Enhanced Security Level The EMV cards or the Chip & PIN cards as they are usually called, use a higher level of storage technology and high standards of data encryption as compared to the magnetic stripe-only cards. For those of you who frequently use their stripe-only debit/credit cards for making transactions at stores, restaurants, etc., would relate to the fact that these cards require a simple swipe at the point of sale (PoS) device in order to complete a transaction. A chip-based debit/credit card on the other hand, requires you to enter the PIN in order to complete the transaction. This provides your card with an extra level of security for safeguarding your digital transaction. These chip-based cards are also effective for mitigating fraudulent PoS transactions, by mandating a second level of authentication in the form of PIN before completing any PoS transaction. While the EMV chip cards also have a magnetic stripe, what makes them secure is the fact that sensitive customer data is encrypted on the chip. This gives fraudsters a hard time to access critical customer information. Prevent Card Cloning Given the increased incidences of card cloning on a global level, the initiative to shift to only chip-based cards is the need of the hour. Card Cloning usually stems from magnetic stripe-only cards that contain static information which can easily be accessed, once the card is used at some ATM that already has a cloning device installed. An EMV chip-based card on the other hand contains dynamic information, which makes it difficult to clone information. The big question though remains to be, βWill this eliminate the risk of card skimming and cloning completely?β Well, the frank answer to this question is that while the scenario of physical card cloning can be eliminated to a great extent with the EMV Chip & PIN cards, the same cannot be held true when it comes to online transactions, as the risk of fraud will continue to exist. So, here are few simple tips to help you protect your cards from cloning or skimming when you swipe at the PoS: As far as possible, try using the EMV chip-based cards instead of magnetic stripe cards for making transactions at PoS since, the EMV cards are safer to use. Take care that the PoS machine is not connected to a cloning or skimming device or any other device that may seem suspicious to you. If possible, try to feel underneath the pin pad for an additional slot to insert a card or chip, especially if you are swiping at a new store. Keep a check on your account balance for fraudulent charges. In case of any suspicious activity, immediately report to your bank requesting them to block your card. Β The post Have You Received A Call To Replace Your Stripe-Only Card With EMV Chip Card Yet? appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.Two former Wendyβs employees want to know what the company does with employee fingerprints collected by biometric clocks.The ransomware attack on DC's outdoor surveillance cameras came just a few days before the 2017 inauguration of President Trump.Estimated reading time: 2 minutesTodayβs new-generation customer has all the luxuries. At the click of a button (or a touch, on a mobile phone), they can buy literally anything they want. The arrival of online marketplaces like Flipkart, Amazon and thousands of other similar websites means that the basic premise of going out of the house to buy something has become so old-fashioned. From fridges to laptops to basic household items, these e-commerce websites can deliver the entire world to you,Β often as early as within a day. Of course, though, nothing comes for free. E-commerce websites certainly provide convenience but they bring their own dangers. If you are a customer, you should certainly not panic and completely stop shopping online. But it would be a good idea to practice some caution and keep the below tips in mind: Check the credibility of the website Many people have tried to take advantage of the craze of e-commerce. But not all these websites might be the most credible. Sometimes, hackers might set up an e-commerce website in the plan of getting the personal, financial information from tricked users. You should always check the website you are buying from. Before you place an order, check the websiteβs βAbout Meβ page, search for it on the web or on social media. Its credibility should be ascertained before placing an order. Beware of obvious fakes We are all aware of the leaders of e-commerce, whether it is Amazon or Alibaba or Ebay or from an Indian perspective, platforms like Flipkart, Snapdeal, Jabong, etc. What unscrupulous hackers do is set up obvious fakes, which is also a form of phishing. These websites may be designed exactly like the original website with very minute changes (say, Amazin instead of Amazon). Unless a customer isnβt looking carefully, they may be tricked into believing it is the original website and inadvertently give crucial personal information. Take care of your financial information E-commerce websites require you to part with crucial financial information like your debit & credit card numbers along with personal details like home address and telephone numbers. Be very careful when providing these. It is a good practice to not allow these websites to store your personal data as in the advent of a hacking attack, criminals might get their hands on these details. Be wary of public WiFi It is a good idea not to indulge in shopping when you using a public WiFi network, say in a coffee shop or an airport. Public WiFis are notoriously unsafe and may not have inbuilt security guards. That means any personal information, including your credit card number, is vulnerable to be accessed by hackers who may have hacked into the network. Always do your due diligence Ultimately, it is the responsibility of the shopper to ensure that they are conducting their transactions in a safe environment. While websites also have some responsibility, it is your hard-earned money and hence it is important that you give some thought about that order you are making to ensure you are not tricked. Check the URL and see if it is βhttpsβ and not βhttpsβ as that means an insecure connection. Keep a track of your orders and ensure that youβve received what youβve ordered. Donβt be afraid to get in touch with a vendor, if required for any query. The post E-commerce transactions: Tips to stay safe when shopping online appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.Estimated reading time: 3 minutesWe may not realize it but itβs not just our phones that are smart. In an age of Internet of Things (IoT), there is a lot of hype and hoopla about the connected homes β a concept of houses which will be completely smart and connected. But what we often seem to forget that we already live in smart homes to a large extent. Think about it. Most homes nowadays have devices that are connected to each other and the Internet. Your phones, laptops, desktops are all connected to a WiFi router and maybe, even your smart TV too. All of these devices are interacting with each other to the extent that you can cast things from your phone to the TV if they are on the same network. The risks of a home network While all of this sounds exciting, it is also important to realize that it brings its own risks. Enterprises arenβt the only ones who have to worry about cybersecurity, with the rise of such home networks, itβs extremely important that even homeowners care as much about securing their networks as they do about its physical security. Itβs important to be aware of the risks home networks can possess. Because individuals spent a majority of their time at home, they use the home networks to do a staggering amount of things online. E-commerce, paying bills, entertainment, social networking β you name it and itβs done on the network. That means there is a treasure trove of data out there which makes it a very appealing proposition for a cyber criminal. If anyone gets access to the network, they will able to use this data for a variety of crimes. They can use it to conduct identity theft, use your financial credentials to steal your money or just cause havoc by bringing down your home network. In fact, they can even learn your personal habits and use them against you, say to plan a theft at your house when you are away. Ensure that your home network security is much more secure by following a few simple tips: Wi-Fi passwords should be stronger β This is a no-brainer but again the most important. Most people changer their home WiFi passwords from the default one but keep it something simple which they can easily remember. Worse, they write it down somewhere to remember which can be disastrous if it falls in the wrong hands. Keep strong passwords for your WiFi and ensure you donβt share them with anyone. Router passwords should also be strong β This is not a no-brainer because this is something a lot of people donβt remember to do. Sure, keeping a strong WiFi password is good but even routers have their own login and password. Most of the times, people keep it as default as βadminβ and βpasswordβ, something akin to inviting a cybercriminal with open hands to your door. Take the extra effort and put in a strong password for your router. Keep all devices on the network secure β The router may be secure but what about the devices that are using it to access the Internet. This includes your smartphones and laptops. Malicious software can easily affect one of these devices and then affect the entire network. Keep all your devices secure and updated. Use a firewall for your network β A firewall is an important step in keeping your network secure. Use one and keep it on the highest setting so that you are updated at any attempts at infiltration. Have a cybersecurity solution on all your devices β This goes without saying but in this age of cyberattacks, all your devices need to have a strong cybersecurity solution. Seqrite offers a range of solutions for laptops and mobiles for this very purpose. The post Home network security: Do you really need it? appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.AdGuard has taken the decision to reset all user accounts after suffering a credential-stuffing and brute-force password attack.Users were complaining this week after discovering they'd been logged in to Googleβs Chrome browser automatically, after logging into a Google website.A young company has a new patent for using fault tolerance techniques to protect against malware infection in applications.Browser maker faces backlash for failing to inform users about Chrome Sync behavioral change.Your employees need help recognizing the warning signs and understanding how to protect themselves online.Malicious apps can trivially thwart Mojave 10.14's new privacy protections.Learn how to reset your Windows 10 password whether you use a Microsoft Account or a local account.Get expert insight into stopping 'deep fakes', blockchain attacks, and Windows 10 vulnerabilities.This is the first time in six years that Verizon's "Payment Security Report" shows a downward trend, leaving cardholders vulnerable.A data breach targeting women's apparel giant SHEIN occurred between June and August 2018.Cryptomining malware is the fastest-growing category of malicious software, according to a new report.Online ad industry moves away from once prolific ads that are now deemed insecure because of DOM-based XSS vulnerabilities.A citizen of the former USSR is sentenced to 168 months for running Scan4you, an online counter antivirus service.A new report demonstrates how the cyber kill chain is consolidating as criminals find ways to accelerate the spread of their targeted cyberattacks.Nghia Hoang Pho, who illegally took home classified NSA information, also sentenced to three years of supervised release after prison term.If you're looking for a more efficient way to securely manage website passwords, meet PassFF.Estimated reading time: 3 minutesItβs a plastic world we live in. The proliferation of plastic money everywhere, in the form of debit and credit cards, means that the concept of paper money is soon becoming obsolete. Swiping a card seems to have become almost a natural instinct. The total number of cash withdrawals at ATMs worldwide was a staggering 107 billion in 2016. While swiping your debit card or using it to withdraw cash from an ATM is convenient, it also means that there are certain dangers which arrive with it. Cybercriminals are looking for every opportunity to strike and that means you need to be as vigilant with your ATM card, as you would be if you were carrying a large amount of cash. In fact, perhaps even more vigilant, because if a criminal manages to use your card to gain access to your cash reserves, it will take them hardly two minutes to wipe out your entire life savings! For that, itβs important to take out your card and understand all of its components. The Name of Your Bank β usually showcased on top of the card and identifies which bank has issued the card. Card Number β Written in a large size on the centre of the front of the card, this is probably the most important part of your ATM card. It is 16-digit long and is linked to your bank account. The first 6 digits are your Bankβs Identification Number and the rest 10 digits are Unique Account Number of the cardholder. Be very careful about how you use this number β in many ways, it is your banking identity and you should not write it down or tell too many people about it Cardholderβs name β Your card should have your name on it so that there is further proof it is not being used unauthorized. Chip β Most modern ATM cards use it and it adds an extra layer of security to your transaction by adding a single-use code to every transaction. The expiration date provides the date on which the card expires while your payment network logo (Visa or MasterCard) to know what card you have Magnetic stripes at the back of a card are extremely vital as they contain information about you and your card which can be read by card readers. This magnetic strip is also key to your banking identity and unscrupulous criminals can duplicate it to create another version of your card. Security codes are required when shopping online as an additional layer of protection. It is a three-digit unique number which is needed to be inputted in. Finally, there is a signature panel as well where cards need to be signed. Now that we have a good understanding of the different components of our ATM cards, itβs also important to know the different kinds of frauds associated with them: Skimming β Criminals mostly install an unobtrusive foreign device on an ATM, right near the card slot. This device copies the details of the cards entered and hence makes counterfeits. The remedy? Be extra-cautious and check for foreign devices before putting in your card at an ATM. If in doubt, exit the ATM and use another one. Cash Trapping β The cash will be trapped inside the machine and once a frustrated customer leaves, the criminal will come back to collect it. This is why Indian ATMs nowadays give a warning at the end of the transaction to collect your cash. Eavesdropping and pretending to help β This is a type of social engineering fraud and it basically involves criminals pretending to be a good Samaritan and trying to help a customer. However, amidst their smiles and help, they quickly memorize the number and the PIN and use it to create havoc. It is important to always employ constant vigilance when using ATM cards, whether to withdraw cash or transact online. After all, they are an integral part of our financial identities nowadays and cause great harm if they fall into the wrong hands. The post Know your ATM card and the various frauds related to it appeared first on Quick Heal Blog | Latest computer security news,β¦Estimated reading time: 2 minutesAfter mobile wallet transactions experienced a setback owing to the mandatory know-your-customer (KYC) requirements in March, mobile wallet companies have bounced back with a record transaction of 14,170 crore in May, the highest recorded transaction after January. Thus, M-Wallets are back in vogue with companies once again succeeding in convincing their customers to trust this mode of virtual access to their hard earned money. In fact, its not just the Mobile Wallets that is breaking records, even card transactions and mobile banking have reached a record peak. However, what people fail to realize is the necessity to secure this virtual or mobile access to money with the right anti-virus and M-wallet companies hardly seem to care about this risk.Β Quick Heal Security Labs detected a malware known as Android.banker.A2f8a, which is basically an Android Banking Trojan that targets over 232 banking apps. The Trojan isΒ designed to hijack SMSs, steal login credentials and upload contact list on malicious server, to display an overlay screen on legitimate apps so that the user is completely unaware of the malicious activities going on while they are busy doing transactions. Given the recorded increase in the number of smartphone users and the fact that digital transactions in India have reached $2 Tn doing, such virus detection is an eye opener and should be considered a serious threat not just for customers but also for banks and mobile wallet companies. One company to have already made an initiative in this regard is Paytm with its new βWallet Insurance Schemeβ introduced to safeguard Paytm Wallet money. Under this scheme, all Paytm users having balance in their wallets will be automatically insured with no additional cost and automatic refund of lost money to their Paytm wallets. How To Stay Safe With Quick Heal? Being the most preferred cyber-security partner and having already detected the Android Banking Trojan and many more malware, the simplest way to safeguard your mobile wallets and online transactions is to install Quick Heal Total Security App that significantly reduces threats to transaction apps like mobile wallets and banking apps. One important addition to this app is SafePe, specifically designed to counter payment threats and mobile banking by: Ensuring that your mobile network and phone are safe while making online Proactively detecting tampering and infections on your phone by any advanced malware and pushing alert notifications before you can make the online transaction. Checking if you are using a secure website (HTTPS) while making online payments. Checking if your smartphone is rooted or not since a rooted phone can be easily hacked by attackers for stealing confidential information. Ensuring that your phone is free from any banking Trojan, spyware and data-stealing So, basically SafePe is designed to take all the necessary steps needed to mitigate security threats on your mobile phone while you bank, shop or pay online using your banking apps and mobile wallets. So, while banks and M-Wallet companies are busy convincing customers to provide required KYC, a more priority need is to convince customers to start installing anti-virus and not trust mobile transactions blindly. Quick Heal on its part can play a significant role is helping Mobile Wallet companies to save huge overhead costs on reimbursing insurance amount, by safeguarding their system against critical virus attacks. The post The Need For Anti-Virus As Mobile Wallet Transactions Hit Record 14,170 Crore appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.Though the bug was present for over a year, Twitter hasn't found any DMs or protected tweets that were delivered to the wrong developer.Put down that βBob Smithβ fake account and back off, Facebook told the Memphis Police Department, waving its real-names policy in the air.Zoho's CEO begged for help on Twitter after his domain registrar effectively took the company offline, stranding millions of users.Windows 10 and Office 365 usersΒ can now log in to Azure AD applications using only the Authenticator App.SMBs are at an increased risk for cyberattacks, including ransomware, DDoS attacks, and insider exfiltration, according to a Cisco report.USB thumb drives may be used less frequently than before, but they are still commonly used as infection vectors for a wide variety of malware.Courts are getting tougher on the cybercrooks than some might realize.Searching for a more efficient way to securely manage website passwords? PassFF may be your solution.Everyone knew that SNI needed to be fixed sooner or later, but nobody was quite sure how.We still have a massive number of hacks and malware coming in through phishing and older "tricks," says Franc Artes, Architect of Security Business at Cisco.We still have a massive number of hacks and malware coming in through phishing and older "tricks," says Franc Artes, Architect of Security Business at Cisco.We still have a massive number of hacks and malware coming in through phishing and older "tricks," says Franc Artes, Architect of Security Business at Cisco.Why IIoT leaders from both information technology and line-of-business operations need to join forces to develop robust cybersecurity techniques that go beyond reflexive patching.The tech giant promised that it will be more transparent about users' data in Chrome 70 after coming under fire for its privacy policies earlier this week.Despite their ubiquity, USB devices remain a critical cybersecurity threat.Walmart and Sam's Club will now trace leafy greens with blockchain technology, demonstrating its value in logistics and supply chain applications.Seven new modules discovered in VPNFilter further fill in the blanks about how the malware operates and reveals a wider breath of capabilities.Government agencies are making great strides in defending themselves against cyberattacks, according to new research from Accenture. But technology alone won't solve the problem.This is the first SEC enforcement cracking down on violation of the Identity Theft Red Flags Rule, intended to protect confidential data.From 4G to AI and Chromebooks to Android, tech's evolution over the past decade has introduced us to new technologyβand new security issues.VPNFilter malware is adding capabilities to become a more fully-featured tool for threat actors.Hackers see green field opportunities in vulnerable software supply chains.Riding-sharing company settles legal cases with 50 states and the District of Columbia for its handling of 2016 data breach.Inedo ProGet before 5.0 Beta5 has CSRF, allowing an attacker to change advanced settings.All versions of Red Hat Enterprise Linux, CentOS vulnerable to 'Mutagen Astronomy' flaw, according to Qualys.The online fashion store is now contacting affected users and asking them to change passwords for their online store accounts.Spotify and Ancestry have teamed up to let you use your real DNA to tell your βmusicalβ DNA.Mozilla has formally launched Firefox Monitor, a privacy-engineered website that hooks up to Troy Huntβs Have I Been Pwned? (HIBP) breach notification database.The decision comes days after security researcher had blasted company for jeopardizing user privacy with browser update.Come out to London Dec 3-6 and learn to use new tools (including the laws of physics) to identify hidden vulnerabilities.A panel of cybersecurity and tech professionals gathered at the 2018 AT&T Business Summit to discuss the future of 5G security.A major airline suffered a data breach involving a cross-site scripting attack. Learn how it happened and how you can protect your organization.In the data-driven enterprise, myriad types of data have become a new form and flow of currency. Why, then, hasn't the CISO achieved parity with the CFO?A lack of authentication in Apple's Device Enrollment Program could allow attackers to scoop up Wi-Fi passwords and VPN configurations.Cryptomining apps were banned from the Play Store some time ago - but that hasn't stopped the crooks getting cryptojackers past Google...Researchers said the vulnerability "is very easy to exploit."Chronicle, the cybersecurity business under Alphabet, releases a major update to VirusTotal geared toward corporate threat hunters.Authentication weakness in Apple's DEP could open a window of opportunity for attackers.Google takes aim at the enterprise incident response market with newly launched tools.The year-long bug could have compromised interactions between customers and businesses, the social media firm reports.Estimated reading time: 2 minutesIn the recent past, innumerable cases have surfaced where there have been incidences of fraudulent charges on credit cards or unauthorized access to personal information. In wake of such rising cases of identity theft and data breaches, it can be extremely useful to know about actions to take once you are a victim of banking fraud. You never know when you or your loved one may land themselves in such an unfortunate situation. Steps You Must Take Immediately If Youβre A Victim of Banking Fraud #1 Contact Your Financial Institution β While there are several indicators of you becoming a victim of banking fraud, unusual or fraudulent transactions are usually the first red flag. At such times, the first thing to do is to contact your financial institution and let them know about the fraud and work out the best way to get out of the situation. Request them to block the problem account to prevent further transactions. #2 Flag A Fraud Alert β It is important that you follow up with credit bureaus in order to prevent credit providers from granting any new credit, without your prior approval. You can simply request the credit-reporting bureau to flag a fraud-alert on your profile, as this would provide an intimation to credit providers. The fraud alert usually lasts for the initial 90 days after the account has been flagged, so that credit providers can go a step ahead to verify identity of the person, in case someone requests for credit under your personal details. #3 Scan Bank & Credit Card Statements β Request the credit-reporting bureau and bank to provide you with current credit reports and bank statement. Carefully review these reports and statements to look for fraudulent charges or unusual transactions. It is also important to check through your infrequent or dormant accounts, for any incidence of identity theft where your personal details may have been leaked or hacked. #4 File A Report With Local Police Department β Once you have reported the incidence to your financial institution, it is also important that you file a report with the local law enforcement. Keep a copy of the report with you for any further communication. #5 Open A New Account β The best thing to do once your account has been hacked, is to close it and start a new account altogether, to prevent further damage. This holds true even for accounts that have not been compromised since, your personal details are going to remain the same and you never know when those accounts may get hacked. So, itβs always better to be precautious than repent later. #6 Request Credit Freeze β You may also request your credit bureau to initiate a credit freeze. While this is not a mandatory step, it can definitely act as an added layer of protection. Such a request will allow the credit bureau to completely cut off access to your credit report, regardless of who requests it. Thus, with little handy information and some presence of mind, you can easily surface out from such difficult situations. The best thing to do however, to mitigate the risks of such frauds, is to always be on alert whenever you are making a transaction and keep a track of people and platforms with whom you share your personal information. The post Immediate steps to follow if you are a victim of banking fraud appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.One poor woman whose phone number was hijacked by robocallers got several calls a day from irate consumers who thought she was trying to market to them.Google thought it was a such a great idea to start logging you into everything when you logged into something... that it forgot to ask.The most popular subject lines crafted to trick targets into opening malicious messages, gleaned from thousands of phishing emails.Several leading Android-based password managers can be fooled into auto-filling login credentials on behalf of fake phishing apps.The decision comes days after security researcher had blasted company for jeopardizing user privacy with browser update.A research team suggested a new secure-by-design API after discovering design flaws in the way Android apps are verified by password managers.Regretful WhatsApp cofounder Brian Acton has joined the ranks of the Silicon Valley mea-culpa-rati.Bypass works on iOS 12 and Apple's latest iPhone XS model phones allowing an attacker to access contacts and photos.Android, Debian and Ubuntu users are still at risk.A vulnerability in Facebook's "View As" feature let attackers steal security tokens linked to 50 million accounts, the company confirms.Imperva: Up to 77 percent of the sites we monitor were attacked by a Python-based tool.Hackers exploited a flaw in Facebookβs code impacting its βView Asβ feature.Facebook has suffered a data breach affecting almost 50 million accounts. Another 40 million have been reset as a "precautionary" measure.Facebook said attackers exploited a vulnerability in its code that let them steal access tokens when users switched over to a public profile view via the "View As" feature.Government agencies remind users that RDP can be used for malicious purposes by criminal actors.Stealth, persistence mechanism and ability to infect a wide swath of devices make malware dangerous and very different from the usual Mirai knockoffs, Avast says.Companies with a solid track record of cybersecurity share these practices and characteristics.From the big Facebook breach to vulnerable Android password managers - catch up with everything we've written in the last seven days. It's weekly roundup time.The flaw arises from the use of stealth wallet addresses, an anonymity concept that's especially important to privacy-sensitive Monero users.Facebook has been adding phone numbers registered for 2FA to the other data it uses to target people with advertising.Nullsoft Scriptable Install System (NSIS) before 2.49 has unsafe implicit linking against Version.dll. In other words, there is no protection mechanism in which a wrapper function resolves the dependency at an appropriate time during runtime.Nullsoft Scriptable Install System (NSIS) before 2.49 uses temporary folder locations that allow unprivileged local users to overwrite files. This allows a local attack in which either a plugin or the uninstaller can be replaced by a Trojan horse program.Estimated reading time: 2 minutesThe afternoon of September 28th 2018 brought in a wave of shock for 50 million Facebook users, when they found themselves logged out of Facebook!! In one of the worst data breach attacks in the history of Facebook, over 90 million users on Friday afternoon, were forced to log out and login back to their accounts. The step was initiated as a precautionary measure by Facebook to reset the access tokens for over 90 million of its users, as hackers managed to exploit a vulnerability in Facebook coding. For this social media giant, its βView Asβ feature proved extremely vulnerable, as hackers managed to log into Facebook accounts of other people, by stealing access tokens. The View As feature was basically meant to allow users to see how their profiles appear for other users. Upon learning about this exploit, Facebook immediately reset the access tokens of more than 50 million of its registered accounts. So, while the whole world is busy browsing the internet for answers to HOW and WHY this data breach happened, itβs better to spare sometime to read about immediate actions you can take, to prevent your own data from getting breached: #1 Reset Your Password In case your account was one amongst the 50 million Facebook accounts that got hacked on Friday and the hacker managed to change your password, DO NOT PANIC! You can still try your best to regain access to your account by clicking on βForgot your password?β option under your Facebook login. Start by finding your account by entering the primary or secondary email address, you had used for registering with Facebook. Once you are successful in finding your account, you can easily choose to Reset Your Password. However, this process of password recovery holds true, only if you continue to have access to those email addresses. Just in case, you no more access those email ids but would like to reset your password, you can always use the βNo longer have access to these?β link, in which case, facebook will ask you for an alternate option to verify your identity. #2 Change Your Password Immediately Even if you were lucky enough to not have your account compromised, as a precautionary measure itβs better to change your password before itβs too late. All you need to do is to click on Security and Login under Settings and scroll down to Login > Change password. Try to choose a stronger password this time and something that is unique only for your Facebook account. Once you have reset your account with a new password, it is advisable to log out of all sessions, provided the fact that your security settings and contact details are up to date. #3 Check Passwords of Other Accounts Registering with Facebook requires you to enter an email ID and often times, you tend to use the same login details for logging into Facebook as well. Thus, while you reset/change the password of your Facebook account, it is a good move to change the password of other accounts also that have the same login details. #4 Check Your Privacy & Security Settings Here are few steps you can take to improve your privacy and security on Facebook: Update contact details, mobile numbers and email addresses under General Limit the visibility of your posts by selecting a comfortable Privacy setting and allow only friends to see your posts. Boost up your security measures by opting for notifications for unrecognized logins and select only couple of trusted friends for recovery of account, in case your account gets locked out. The post 50 Million Facebook Accounts Hacked β Time to act before itβs too late! appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.The Gazorp online builder makes it easy to start stealing passwords, credit-card information, cryptocurrency wallet data and more.Cisco's Gee Rittenhouse and Duo's Dug Song offer ideas and goals for the merged companies as Duo folds under the Cisco umbrella.Blockchain has the potential to enable new business models and reshape industries, but many enterprises are struggling to implement the technology, according to Deloitte.Employees are sharing an average of six passwords with their coworkers, according to the LastPass 2018 Global Password Security Report.A healthy body and a healthy security organization have a lot more in common than most people think.As your children start using the internet with greater independence, help keep them - and their data - safe with these simple tips.Companies are putting their finances and security at risk by not using digital-based tracking, according to a Clutch report.Password-sharing and reuse is still prominent, but mulit-factor authentication is on the rise, new study shows.The new law requires some form of authentication for most connected devices.The Department of Justice has filed a lawsuit after SB 822 was passed, enforcing net neutrality laws, on Sunday.From security to anonymity, here are the top 5 things you should know about blockchain and voting.Rated as high-risk vulnerabilities, these privilege-escalation flaws could allow an unauthenticated attacker to access protected content.Cybersecurity Month at Dark Reading is packed with educational webinars, from data breach response to small business security.The update includes a security bypass bug that enables privilege escalation.Using a cooling-off period for domain names can help catch those registered by known bad actors.Using a cooling-off period for domain names can help catch those registered by known bad actors.XSS exists in the the-holiday-calendar plugin before 1.11.3 for WordPress via the thc-month parameter.The export/content.php exportarticle feature in the wordpress-mobile-pack plugin before 2.1.3 2015-06-03 for WordPress allows remote attackers to obtain sensitive information because the content of a privately published post is sent in JSON format.Human rights advocates have called on the Australian government to protect the rights of all in an era of change, saying tech should serve humanity, not exclude the most vulnerable members of society.In this US-based cashless cafe, university students hand over personal data in exchange for a dose of caffeine and sponsorship propaganda.The order so far hasn't raised Fifth Amendment objections either, your face being something you are, rather than something you know.Appleβs iOS 12 is barely out of the gates and already someone has found a way to beat its lock screen security to access a deviceβs contents.Hackers are taking over high-profile Instagram usersβ accounts and holding them to ransom, revealed reports this week.Password-sharing persists, but at least multifactor authentication usage is up.Starting today, extensions with obfuscated code are banned and developers must go through a stricter extensions review process.As boards learn the importance of cybersecurity, certain issues arise on a regular basis. These tips can help you address them.The free online office suite software is used by more than 30 million people and is a ripe target for criminals.While many reports have surfaced about the danger of company data being sold on the dark web, this information is actually misleading and inaccurate.SAP announced new integration services and two new consortium groups at TechEd Las Vegas.Yes, there are serious dangers posed by malevolent nation-states. But the hype is distracting us from the reality of the threats.The most dire vulnerability targets the Android framework and could allow an adversary to execute arbitrary code on targeted devices.A new study highlights which celebrities are associated with the most malicious websites, making them risky search subjects.The relationship between the malware and the APT group remains somewhat murky.Two felony counts each carry a maximum 10-year prison sentence.Black Hat is bringing its highly-regarded Trainings to Chicago next month, October 22 and 23.Don't miss this opportunity to develop your skills in some of the most technical, hands-on security courses available.Foxit Software has patched over 100 vulnerabilities in its popular Foxit PDF Reader. Many of the bugs tackled by the company include a wide array of high severity remote code execution vulnerabilities. Foxit on Friday released fixes for Foxit Reader 9.3 and Foxit PhantomPDF 9.3, which addressed a whopping 124 vulnerabilities. Itβs important to note [β¦]It's been a while but we're back at the microphone - here's Episode 5 of the Naked Security podcast.Google has announced a range of security changes to its Chrome browser that will make the use of extensions more secure.Black Hat is bringing its highly-regarded Trainings to Chicago next month, October 22 and 23.Don't miss this opportunity to develop your skills in some of the most technical, hands-on security courses available.The gaming and hacking communities overlap: Some of the hacker accounts are offering botnet access as well as Fortnite accounts.Adobe has released updates fixing a long list of security vulnerabilities discovered in the Mac and Windows versions of Acrobat and Reader.Nghia Hoang Pho may not have had malicious intent, but removal of the materials forced the NSA to abandon years of signals collection work.Estimated reading time: 2 minutesAs part of the Windows 10 Updates, Microsoft has now come up with a new update for Windows 10 PCs. Itβs called Windows 10 October 2018 Update. This post lists down some of the highlights of this particular update and Quick Healβs compatibility with the OS. Highlights of the Windows 10 October 2018 Update Windows Defender Security Center (WDSC) gets Fluent Design support and now it will be called as βWindows Securityβ Additional Privacy settings Enhancements in Cortana β Cortana section in Settings renamed to βCortana & Searchβ New Snip & Sketch screen capture tool screenshots quickly and easily Improvements in Sets feature Improvements in Microsoft Edge web browser Improvements in Windows Update Improvements in Storage Sense features SwiftKey typing support in touch keyboard Supported Quick Heal Version Details For Existing Users Users having Quick Heal version 16.00 or higher must take the latest Quick Heal Updates and then move to upgrade for Windows 10 October 2018 Update. Recommendation β Prior to moving on Windows 10 October 2018 Update, Quick Heal Update is mandatory. For New Users Fresh Install β Latest Quick Heal Product v17.00 downloaded from Quick Heal website is supported for Windows 10 October 2018 Update. How to apply the latest Quick Heal Update? The update will be applied automatically if your Quick Healβs Automatic Update is turned ON. You can also apply the update manually. You can do this by following any one of the below mentioned methods: Click on the Update Now button on your Quick Heal dashboard Go to Help -> About, click on Update Now Right click on the Quick Heal icon in the system tray and click on Update Now Go to Start -> All Programs -> Quick Heal -> Click on Quick Update How to know if the Quick Heal update has been successfully installed and is compatible with Windows 10 October 2018 Update? If your Quick Heal Virus Database Date is latest, then it means it is compatible with Windows 10 October 2018 Update. Note β Fresh installation of Quick Heal version 16.00 and below versions is not supported by Windows 10 October 2018 Update. If you have any queries about the Windows 10 October 2018 Update and your Quick Heal product, please call us on 1800-121-7377 or drop us a line in the comment sections below. The post Quick Heal supports the Windows 10 October 2018 Update appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.The GhostDNS campaign, which has been mainly targeting consumers in Brazil, has exploded in scope since August.Here's how your company can prevent common cybersecurity incidents including malware and social engineering, according to a Positive Technologies report.Businesses are increasingly adopting artificial intelligence, but all too often these platforms don't feature security-by-design.Attractive to both white-hats and cybercriminals, AI's role in security has yet to find an equilibrium between the two sides.Inside the cloud, innovation and automation shouldn't take a toll on protection.In an effort to become a global leader in cybersecurity innovation, the New York City Economic Development Corporation is launching Cyber NYC.Experts say Friday's breach remains a dangerous potential access point to even more third-party apps and websites.A PDF decoy was found to be linked to an Office 365 phishing page hosted in Azure blob storage, according to Netskope Threat Protection.If you insist on having Firefox save your username and password set up a Master Password to protect logins.The transaction, valued at $173 million, is intended to bring analytics and threat detection to Palo Alto Networks' cloud security offering.From security to anonymity, here are five things you should know about blockchain and voting.If you're looking for a security-minded live Linux distribution, TENS makes desktop protection incredibly simple.Supply-chain attacks are on the rise, but machine learning provides the edge that the security industry needs to keep up.A converged architecture that brings independent software vendors, cloud vendors and IoT vendors together is reshaping the security landscape.Alphabet's Jigsaw has released Intra, a free security app that aims to prevent government censorship.The transaction, valued at $173 million, is intended to bring analytics and threat detection to Palo Alto Networks' cloud security offering.At the 2018 Grace Hopper Celebration, Katie Jenkins of Liberty Mutual, explained how to attract more diverse candidates to cybersecurity roles.This code-signing issue represents a new attack vector, according to the researcher.FireEye details how this money-stealing operation it now calls APT 38 has emerged in the past four years and how it operates.Estimated reading time: 2 minutesAt a time when most of us are living in a virtual world, where we are connected to our friends and family mostly through social networking sites, imagine what it would be like to find your social media account hacked!! Thatβs exactly what happened with 50 million of Facebook users on the afternoon of 28th September, when they found their accounts to be hacked. While life seemed to have come to a standstill for most Facebook addicts, the rest were worried about the consequences of their accounts being hacked. Regardless of whether you are a Facebook addict or an infrequent visitor, hacking of your account can have disastrous after-effects. Profile Change β To begin with, once the hacker has gained access to your account, he or she can change your profile to anything their heart desires. This can mean changing your normal account to someone with terrorist links or something even beyond your imagination. Post/Upload Things β This can especially be a shocking revelation for users who love to flaunt their personal pics on social media sites like Facebook. Your account once hacked, can make it a cakewalk for hackers to upload, post or share images and other such stuff that in-turn can ruin your reputation forever. In the recent past, there have been several cases where a userβs account has been hacked and their private pictures have been circulated through the internet. Forced Shares β This can be really scary not just for you but mostly for your account contacts. The hacker may just share a link on your behalf to some website which has an enticing title to it, while tagging many of your friends. As a matter of fact, your friends may be tempted to open the link, totally unaware of the fact that your account has been hacked. The website link may instead open to a page full of Trojans and malware that can pose risk for their own accounts. Forced Follows β Your hacked social media account can be used by the hacker to force people into following a particular account. This account may have a fake brand name and the hacker may just be trying to use it to tempt people into following a page that can spread malware. Information Theft β This is probably the worst thing that can happen to you, in case your account gets hacked. Hacking into your account can provide the hacker easy access to your username and password. The hacker can use this same information to sign into your other accounts like your bank account or other social media accounts, to mine more details about you. Simple things you can do to protect your Facebook account Use complex passwords β As a rule, choose a unique password for your Facebook account, something that you donβt use for accessing other accounts. Make your passwords strong and complex by mixing upper and lower cases, numbers and special characters. Stay away from phishing emails β At times you may receive fraudulent emails from an authentic-sounding company, providing you a link for uploading your personal details. A good way to check its authenticity, is to search for the specific website URL online instead of clicking the link provided to you on email. Check source of download β The internet is filled with dozens of websites known as βwarez websitesβ meant especially to carry Trojan horses. Thus, whenever you are downloading something onto your computer, be sure to check the source of download. The post How can my Facebook account be misused if hacked? appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.To play it safe, it's building a tool to let developers manually identify any of their users who may have been affected by the big breach.A French police officer has been charged with using police intelligence data to power a mobile phone tracking service sold via the dark web.A step-by-step guide to preparing a Mac for young children.Organizers are hard at work preparing for another remarkable Black Hat Europe event in London this December. Here's a sneak peek at two fantastic demos you'll see there.The majority of mobile apps contain cybersecurity flaws in data storage, communication, or authentication practices, according to a WhiteHat report. Here are three tips to remedy the issues.A Bloomberg report found that Chinese spies secretly added microchips on motherboards that went to Apple, Amazon, and the CIA.US companies paid the most, to date, to meet the EU's General Data Protection Regulation, according to a recent study, but UK companies made greater progress in achieving compliance goals.Back up files before upgrading to Windows 10 1809, and if you get a warning about Intel drivers, do not proceed.That's the average price of a digital passport scan, and it goes up with proof of identification, a new study finds.An explosive Bloomberg report, if true, would highlight the largest supply chain attack to have been launched against American corporations.Some 70% of organizations experienced a security breach in the past year, according to a report from Cyren and Osterman Research.Fresh off the announcement of its Spark platform, BlackBerry unveiled a host of tools aimed at improving data privacy in healthcare.Russian-speaking Turla has also racked up more victims in its latest APT campaign.Five out of six name brand routers, such as Linksys, NETGEAR and D-Link, contain known open-source vulnerabilities.If true, the attack using Supermicro motherboards could be the most comprehensive cyber breach in history.Risk assessment can be complex, but it's vital for making good decisions about IT security. Here are steps to start you down the path toward a meaningful risk assessment process.Netherlands expels four of the suspects trying to break into an organization investigating a chemical used in the recent attack on a former Russian spy in Britain.The VideoWhisper videowhisper-video-conference-integration plugin 4.91.8 for WordPress allows remote attackers to execute arbitrary code because vc/vw_upload.php considers a file safe when "html" are the last four characters, as demonstrated by a .phtml file containing PHP code, a different vulnerability than CVE-2014-1905.The videowhisper-video-presentation plugin 3.31.17 for WordPress allows remote attackers to execute arbitrary code because vp/vw_upload.php considers a file safe when "html" are the last four characters, as demonstrated by a .phtml file containing PHP code.The wp-db-backup plugin 2.2.4 for WordPress relies on a five-character string for access control, which makes it easier for remote attackers to read backup archives via a brute-force attack.The karo gem 2.3.8 for Ruby allows Remote command injection via the host field.Ice Cold Apps Servers Ultimate 6.0.2(12) does not require authentication for TELNET, SSH, or FTP, which allows remote attackers to execute arbitrary code by uploading PHP scripts.DNS encryption is the Next Big Thing in web encryption and Google doesn't want Android users to miss out.Facebook has doubled its grace period because so many leavers are getting cold feet.The high priests of Wi-Fi just made your life - and the lives of wireless network equipment vendors everywhere - a little easier.It turns out that drones advertised off the back of beautiful aerial shots also take great videos of murky drug dens.The business of fake likes and followers turns out to be a sprawling enterprise -- likely tied back to IoT botnet activity.The latest Building Security in Maturity Model (BSIMM9) report offers a statistically backed, bare-minimum benchmark for software security initiatives.Threatpost editors discuss the highlights and biggest breaking news from this past week.Β D-Link has released the beta version of the controller which addresses the reported vulnerabilities.Analysis of 20,000 voice phishing, or vishing, calls reveals patterns in how hackers operate.A spyware attack on a Saudi dissident living in Canada made headlines this week, but Citizen Lab warns that simpler attacks are the real epidemic.More than 80% of surveyed routers had, on average, 172 security vulnerabilities, new research shows.Software patching becomes a new reality for smart TV owners.FireEye CEO and nation-state hacking expert Kevin Mandia says Russia began changing the game in 2015.Cybersecurity spends are about loss prevention not earnings, suggests security expert Bruce Schneier. Thankfully, there are better options to ensure cybersecurity investments are maximized.The wp-slimstat (aka Slimstat Analytics) plugin before 4.1.6.1 for WordPress has XSS via an HTTP Referer header, or via a field associated with JavaScript-based Referer tracking.ext_find_user in eXtplorer through 2.1.2 allows remote attackers to bypass authentication via a password[]= (aka an empty array) in an action=login request to index.php.Researchers say a medium severity bug should now be rated critical because of a new hack technique that allows for remote code execution on MikroTik edge and consumer routers.From the iOS lockscreen bypass to Facebook using your 2FA phone number to target market you, and everything we wrote in between. Catch up with the news from the last seven days - it's weekly roundup time."Bungling" Russian GRU operatives picked up by Dutch police, linked to OPCW and World Anti-Doping Agency hacks.Her device recorded her heart rate slowing rapidly, then stopping about five minutes before her stepfather left the house.The Israeli National Cybersecurity Authority issued an alert warning that WhatsApp users could lose control of their accounts.The CEO of βuncrackableβ phone seller, Phantom Secure, has pleaded guilty to helping drug sellers keep their business locked away from the eyes of law enforcement.Artificial intelligence (AI) holds the promise of easing the skills shortage in cybersecurity, but implementing AI may result in a talent gap of its own for the industry.It's nearly impossible to secure supply chains from attacks like the alleged Chinese chip hack that was reported last week. But here are some tips to protect your company.Two bugs can be four times the trouble! If you missed the last Microtik router patch, you're at risk, but if you're *two* patches behind ...Under some circumstances on BIG-IP 12.0.0-12.1.0, 11.6.0-11.6.1, or 11.4.0-11.5.4 HF1, the Traffic Management Microkernel (TMM) may not properly clean-up pool member network connections when using SPDY or HTTP/2 virtual server profiles.Estimated reading time: 3 minutesβALL YOUR FILES HAVE BEEN ENCRYPTEDβ Β You see that line flashing on your laptop or desktop and suddenly your adrenaline level shoots up with hundreds of questions already hitting your mindβ¦ How Do I Remove that Message? Why Canβt I Access My System? Will I Lose All My Work? Whom Should I Approach For Help? Β Well, instead of entering the panic mode and instantly jumping on to Google for a quick help, itβs better to keep your calm and simply follow these simple steps: Disconnect From All Connected Systems β In case your system is connected to a Wi-Fi network or external drive, then the very first thing you can do is to disconnect your infected system from all of these. This may save the ransomware from spreading to other connected networks and devices since most cyberattacks spread from connected systems. Capture A Pic β Use a camera or smartphone to click a pic of the ransom note visible on your screen, as you may need it for making a police complaint later. Capture a screenshot of the ransomware screen if your system allows you to do so. Do A Quick Research β Once you have taken the few initial steps to isolate your infected system from other connected systems and collected some proofs, you can then invest some time in doing a quick research. Most often the ransom notes are transparent and contain the name of the ransomware along with an email address. However, at times there may be no name for the ransomware and there are huge chances that it may be a total bluff. At such times, it can prove really handy to do a little research on the name of the ransomware, to confirm its authenticity. Contact The Law Enforcement β Since, ransomware hacking is a big time crime, you can and should contact your local law enforcement agency to report the incidence. The best people to approach however, are the specialized cybercrime cells and cyber police stations available in most states, for handling cybercrime issues. These cells may be available in the form of Serious Fraud Investigation Office, Economic Offence Wing or State CID Department. Reboot To Safety β Before you try rebooting your system, be absolutely determined about not paying the ransom amount under the temptation of recovering your files. Once you have made up your mind, reboot your system into βSafe Modeβ simply by holding the S key on your keyboard and pressing the power button at the same time. Try Recovering Deleted Files β The way most of the encrypting ransomware work, is they make copies of your files, encrypt these copies and then simply delete the original files. At times, there are major chances of recovering the original deleted files using free or paid file recovery tools. Who knows, you may just be lucky enough to get back your files!! Look For Decryption Tools β Just in case you have an idea about the ransomware strain, simply check out the list of decryption tools available on web. Quick Heal is quick to assist at such critical times by releasing the decryption key publicly on our website or blog, as soon as our security lab professionals are through with decryption. We have done this in the past with decryption tools for CrySiS/XTBL Ransomware, TeslaCrypt Ransomware and more. So, regardless of the frustration we may go through as a result of these cyber-attacks, the truth is that these ransomware and malware are here to stay. Thus, instead of panicking about them, itβs better to fight back and simply update our security systems, to be well prepared for any future attacks. Β The post Youβve Been Hit By Ransomware. Now What? appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.Security alerts become opt-out by default from 10 October because so few admins opted in.Beleagured SMBs looking for IT security tips should check out WSJ Pro Cybersecurity and WSJ Pro Cybersecurity Small Business Academy.The company that wants to move fast and break things is moving in!Microsoft has paused the Windows 10 October 2018 update while it investigates reports of deleted profiles and missing files.Other US states are piloting the blockchain-based Voatz app, but cybersecurity researchers say digital voting is rife with vulnerabilities.As we begin to settle into autumn, Black Hat organizers are hard at work lining up a ton of great content for the premier information security event's return to London this December.The breach also impacted hundreds of Shopper Approved's customers.Cloned accounts are a real thing, but this viral message isn't. Don't forward it!Are major US companies really under attack from Chinese "zombie microchips" - and what should we do, whether it's true or not?As bad actors increasingly exploit new domains for financial gain and other nefarious purposes, security teams need to employ policies and practices to neutralize the threat in real time. Here's why and how.Business leaders believe AI and IoT will seriously impact their security plan, but they're unsure how to invest resources to defend against new threats.Most of the attacks originated in China.Google was caught not disclosing a potential data breach -- leaving questions as to whether a lack of transparency is the new normal.Cloud computing is creating new challenges among security professionals as attackers embrace the "as-a-service model", giving unsophisticated cybercriminals a leg up in carrying out attacks.GAO report outlines challenges for the US Department of Defense to handle security flaws in weapon systems.By ensuring that each layer of protection scours an application for unintended uses, you can find the flaws before the bad guys do.This year's Virus Bulletin conference featured top-tier research from some of the world's best threat intelligence experts.New Intel Coffee Lake CPUs offer hardware-based protections against some -but not all- Spectre and Meltdown variants.New Intel Coffee Lake CPUs offer hardware-based protections against some -but not all- Spectre and Meltdown variants.As industrial control systems are connected to the cloud and the IoT, experts discuss security challenges.A zero-day vulnerability tied to the Windowβs Win32k component is under active attack, warns Microsoft.A vulnerability in Git could allow an attacker to place malicious, auto-executing code in a sub-module.In October 2017, a member of the public found a USB stick containing a trove of data on security systems and procedures at one of the worldβs busiest airports.Ryan S. Lin pleaded guilty to cyberstalking, distribution of child abuse imagery, hoax bomb threats, computer fraud and abuse, and ID theft.Over 4.5 billion data records were breached in the first half of this year, according to Gemalto's Breach Level Index released this week.Google's closing down the platform nobody uses and might face a class-action lawsuit over a G+ spawned breach it took 7 months to report.From supply chain to orchestration tools, here are the new trends that DevOps should pay attention to in this year's BSIMM report.Adobe Digital Edition has four critical bugs enabling arbitrary code execution.Akamai's Andy Ellis speaks to CNET's Dan Patterson about threats via "password stuffing"Bots are a known problem, but researchers will tell you that bot defenses create problems of their own when it comes to valuable data.A WhatsApp buffer overflow that crashed your phone due to audio data sent by a caller meant that just answering a call could spell trouble.Drupal and Oracle WebLogic also were hit with more cyberattacks during same quarter.At a time when cyberattacks are at the forefront of company concerns, retaining IT security talent is a must. Here's how.A brand-new approach to harvesting credentials hinges on users' lack of cloud savvy.Malware, in general, accounts for the majority of cybersecurity threats, but now cryptomining reigns supreme.Jack Wallen shows you a simple trick to heighten your Linux server security, by limiting Linux users' access to the su command.If you use Linux, and are looking for an easy method of encrypting data on your USB drives, Jack Wallen has you covered. With the help of GNOME Disks, this process is very easy.But two law firms are investigating whether the security vendor breached its fiduciary duty to shareholders by not actively seeking buyers offering a higher price.Gallmaker group is relying exclusively on legitimate tools and living-off-the-land tactics to make detection very difficult.This is the second local privilege-escalation zero-day this APT group has exploited.Two different hacking teams best known as Turla and Fancy Bear employed the same stealthy attack method in an unusual overlap of hacking activity.Profiles of some of the women currently leading Microsoft security operations - and their efforts to drive inclusivity.Estimated reading time: 3 minutesEmails today have become an integral part of our day-to-day life and this has made it a childβs play for spammers to lure people into opening fraudulent emails and attachments. Thus, while you are using emails for your everyday personal or official use, it is important to realize that the tech-savvy spammers can easily hack their way to your personal information, simply by means of emails. Thus, it is extremely important that you understand the difference between a spam email and a phishing email before you can access one. What is a spam email? A spam email is basically those hundreds and thousands of unsolicited emails that are sent out, solely with the purpose to sell a service or product. Spammers usually send such emails to a long list of recipients, in the hope that at least a few of them will respond back. The intention behind sending these spam emails is to simply lure recipients into buying dubious products or participate in fraudulent and quasi-legal schemes. Some of the most commonly circulated spam emails cover topics including β Lottery, Travel, Credit/Debit Card, Fake Antivirus, Bank Loan, etc. What is a phishing email?Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β A phishing email on the other hand is a kind of spam email that is sent out specifically, to trick you into sharing your personal details like, debit/credit card details, bank account details, passwords, etc. Sharing your details through such phishing emails can lead to cases of financial fraud through identity theft. At times, these emails are specifically targeted to dig out personal information about your colleague or company. Such emails are referred to as spear-phishing targeted emails. Β The Difference!! The most significant differentiating factor between a spam and a phishing email is that spams are not meant to acquire sensitive user information. Β How to identify phishing emails? There is no rocket science behind identifying phishing emails. You just need to have an eye for few important details: Malicious Website Links β One of the most common types of phishing emails, is one containing link to a malicious website, disguised to look like a legitimate one. These can be in the form of login screens of banking websites. No sooner that you enter your username and password, your login details will get stolen providing the spammers easy access to your bank account. Infected Attachments β Phishing emails usually either of these two types of attachments: HTML Attachments β These are basically the infected .html files that exist in your inbox. Macros β These usually contain attached documents that can be opened only after you enable macros. As soon as you open any of these attached files or documents, you are bound to provide easy access to your system to the already waiting cyber criminals. Eye-Catching Subject-lines β One of the most common types of phishing emails are the ones containing subject-lines that seem too good to be true. Eg: Claim your winning amount of Rs. 10,000 or you have just received a $100 gift card from Amazon. The best way to prevent yourself from becoming a victim of such phishing email attacks, is to keep a check on the following things: Check the authenticity of the website before you decide to share any personal information online. Check website URL for spelling errors, changed domain name or language. Most often these are a clear give-away that the website may be malicious. Confirm the email ID requesting you for details, by directly calling the company. Such small initiatives on your part can play a critical role in protecting you and your system from malicious phishing attacks. This can also make it easy for you to differentiate between spam and phishing emails. The post How to differentiate between spam and phishing emails? appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.Microsoftβs October Patch Tuesday update made its scheduled appearance on Tuesday with fixes for 49 security flaws across its family of products, 12 of which are listed as βcriticalβ.Akamai's Andy Ellis walks CNET's Dan Patterson down the winding path of where your passwords go after they are stolenWith Black Hat Europe coming to London in a few months, organizers share three of the most promising Briefings slated for the December event.The consoles allegedly sold on eBay by the California man were packed with over 60 pirated games.Hangzhou Xiongmai Technology Co.,Ltd (Xiongmai), the Chinese manufacturer that made many of the devices left vulnerable to Mirai, is back with another vulnerability that puts millions of devices across the worldΒ at risk yet again.Instagram is testing Facebook Location History - which allows the tracking of precise locations from your device - in its app.Concerns over data privacy and security push California to roll out the first legislation on connected devices.A fake Adobe update actually updates victims' Flash - but also installs malicious cryptomining malware.Threat analysis offers a more nuanced and multidimensional approach than go/no-go patching in the Industrial Internet of Things. But first, vendors must agree on how they report and address vulnerabilities.Called 'Pathfinders,' these security officials are conducting risk assessments and mitigating vulnerabilities in voting systems.That's double the global average and more than three times the rate of French and German adults.GPlayed may be the new face of malware -- flexible and adaptable, with a Swiss Army knife-like toolbox that can be used to target pretty much anyone.Users should be aware of the strengths and weaknesses of the various MFA methods.A wave of cloud news includes new tools for identity and access management and policies for stronger controls on cloud resources.Meanwhile, the LokiPWS (a.k.a. Lokibot) malware family distribution is surging.Drupalgeddon 2.0 vulnerability is being exploited again by attackers using a time-honored technique of Shellbot, or PerlBot.Gym customer data, including contact information, birth dates and height/weight data, opens the door to convincing follow-on social-engineering attacks.Watch out for messages with the word "invoice" in the subject line, too.The security leader, known for her role in securing Microsoft, Apple, and Mozilla, discusses her new gig and what she's working on now.Yanjun Xu attempted to steal data on advanced aviation technology that GE Aviation, among others, had spent billions developing.Many organizations have yet to create an effective cybersecurity strategy - and it's costing them millions.IBM BigFix Platform 9.5 - 9.5.9 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 123910.Whatever Magecart is, itβs been blamed for several high-profile payment card breaches this summer.The credit bureaus' struggles with PINs continue...There's no excuse for not knowing your exposure. These free tools can help you analyze what your company is up against and point ways to developing a more thorough security program.The AGs want the FCC to adopt SHAKEN and STIR.Pulling out an iPhone XS to show the assembled throng a picture of the hydrogen-powered aircraft that βour president should be flying in,β West casually unlocked it using the passcode β000000β.There's no excuse for not knowing your exposure. These free tools can help you analyze what your company is up against and point ways to developing a more thorough security program.The move comes a month before the November midterm elections β and at a time when all eyes are on Facebook to see how it protects against disinformation.Fighting spying with spying, threat hunters bring the proactive mindset of network reconnaissance and repair to the enterprise security team.In 2017, small businesses were impacted by 113,000 incidents of macro malware, according to a SCORE study.Researchers devise post-intrusion attack that use existing system binaries to achieve arbitrary code execution to maintain stealth and persistence.The official update from Microsoft only limits the vulnerability, according to 0Patch.Some 90% of SMBs are purchasing cyber insurance with limits of $1-$5 million, according to data from CyberPolicy.Threatpost's editors discuss the top news of this week.A survey of ICS security posture found outdated firewalls, improper segmentation password mistakes and more.The good news: That number is less than the original estimate of 50 million. The bad news: It might not have been the only attack.They cite five main reasons for wanting to move on - and what it would take to retain them.Cybercriminals now consider manufacturing companies a target-rich environment. Learn why and what can be done to get off that list.Learn why Maryland's Cybersecurity Incentive Tax Credit for small businesses is a win-win situation.From the Whatsapp hack to the world's most expensive USB stick, and everything in between. Catch up with everything we've written in the last 7 days - it's weekly roundup time.In a twist on Business Email Compromise, they're spoofing literary agents and going after manuscripts at Penguin Random House and Pan Macmillan.In the past, they've pretended to have your passwords - now they're pretending to send email from your "hacked" account, too.Two weeks after Facebook's first serious data breach, and the social network has shared what it has figured out so far.The IBM X-Force C-TOC is a fully-operational Security Operations Center being driven around on a semi truck to provide education and support to professionals and consumers.It's time to reimagine employee training with fresh, more aggressive approaches that better treat email security as a fundamentally human problem.Facebook's VP of product management was able to discuss more specifics about how the breach itself occurred.Evidence shows that three of the most destructive incidents seen in modern cyber-history are the work of one APT.Defense Dept. says contractor that handles travel management services was hacked.New MediaPRO study also finds that management performed worse than entry- and mid-level employees in how to handle a suspected phishing email.Three-quarters of employees show an inability to prevent even basic cybersecurity incidents, according to a new report from MediaPro.Three-quarters of employees show an inability to prevent even basic cybersecurity incidents, according to a new report from MediaPro.Jack Wallen shows you a simple trick to heighten your Linux server security, by limiting Linux users' access to the su command.Jack Wallen shows you a simple trick to heighten your Linux server security, by limiting Linux users' access to the su command.The highly popular PHP 5.x branch will stop receiving security updates at the end of the year.Business faced far more attacks than consumers in Q3 2018, and the attackers are growing in creativity, according to Malwarebytes.Business faced far more attacks than consumers in Q3 2018, and the attackers are growing in creativity, according to Malwarebytes.If you use Linux and need an easy method of encrypting data on your USB drives, GNOME Disks has you covered.Just weeks before the midterms, voter information from 19 states has turned up on the Dark Web.Just weeks before the midterms, voter information from 19 states has turned up on the Dark Web.Voter registration databases from 19 US states are being hawked in an underground hacking forum, researchers say.A tractor trailer housing a Cyber Tactical Operation Center will travel throughout the US and Europe for incident response training, security support, and education.Speaking at the Gartner Symposium/ITxpo, analyst Peter Firstbrook's list of trends is likely to inform executive committee conversations for the next 12 months.Speaking at the Gartner Symposium/ITxpo, analyst Peter Firstbrook's list of trends is likely to inform executive committee conversations for the next 12 months.Speaking at the Gartner Symposium/ITxpo, analyst Peter Firstbrook's list of trends is likely to inform executive committee conversations for the next 12 months.Wi-Fi enabled or not? Digital or analog? Here are the features to look for, and how to secure your baby monitor out of the box.If, that is, your phone has updated to the Android 9 operating system, otherwise known as Pie. If so, say hi to the Titan chip!Get into their heads to find out why they're flouting your corporate cybersecurity rules.Last year, Symantec sold off its web certificate business. The new owners are reissuing certs for free - but there's a deadline looming!Canberraβs US embassy accidentally exposed details of one of its more enticing get-togethers last week, featuring a cat in a Cookie Monster outfit.Get into their heads to find out why they're flouting your corporate cybersecurity rules.From password vaults to two-factor authentication, Andy Ellis of Akamai explains defensive tactics against password stuffing.In today's ultra-connected world, it's important for users to understand how to safeguard security while browsing the web and using electronic devices.As more states take cybersecurity and privacy issues into their own hands, experts worry that big tech will push for preemption.Get into their heads to find out why they're flouting your corporate cybersecurity rules.The social network will crack down on those spreading disinformation in an effort to keep people away from the polls.Deloitte estimates cybercrime costs to reach $6 trillion annually -- but companies still lag in preparedness.According to Microsoft, online scammers are still tricking people with tech support scams, but there are ways to stay safe.The purchase brings together a cloud security platform with a web application firewall.The Emotet Trojan is behind a crippling ransomware attack that hit the Onslow Water and Sewer Authority.Microsoft's Diana Kelley explains all that's wrong with our passwords.Linux powers many of the IoT devices on which we've come to rely -- something that enterprises must address.A record fine and two new compromises kick off the autumn compromise season.What should consumers be aware of, and what are some steps they could use to identify credential stuffing threats? Akamai's Andy Ellis offers tips to CNET's Dan Patterson.Take this short, multiple choice survey and tell us about your company's cyberwarfare experience and cybersecurity strategies for the upcoming year.Support for PHP 5.6 drops on December 31 - but a recent report found that almost 62 percent of websites are still using version 5.Media, telecom, and technology firms are far more likely to experience a data breach in the near future than organizations in sectors including energy, construction, and transportation.A security researcher found a publicly exposed Firebase data repository that was hardcoded in the dating app.The flaw impacted patients with pacemakers, implantable defibrillators, cardiac resynchronization devices and insertable cardiac monitors.Ahead of the 2018 midterms, Florida counties targeted by Russian phishing attacks are hardening their networks and increasing cybersecurity training for election officials.He or she is selling off the databases by state. Kansas's voter database has already been sold and published, and Oregon is next up for sale.Researchers concluded that passphrase requirements such as a 15-character minimum length deter the majority users from reusing them on other sites.JosΓ© RodrΓguez has demonstrated how an attacker with physical access to a device running iOS 12.0.1 can gain access to photos stored on it.The update also features 23 security fixes.Thanks to growing economies and new legislation, the Asia-Pacific region is experiencing a shortage of security pros of around 2.15 million.To succeed, organizations must be empowered to reduce their attack surface and staff overload so they can get more out of their existing firewall and threat intelligence investments.The vendor only plans to patch two of the eight impacted devices, according to a researcher.Estimated reading time: 2 minutesFestivities in India have begun and itβs time for a joyride of celebrations, merriment, lots of tantalising food and exchange of gifts. Talking of food and gifts, the festive season is also a time for ecommerce sites to spring into action, by offering tempting discounts and sales to lure people into buying. With a major population accustomed to using smartphones for their daily needs, itβs no wonder that most people prefer to shop and order using the various apps on their smartphones. So, while you are busy making financial transactions with your mobile phones, it is important that you also spare a moment to consider ways to safeguard your mobile payments. Remember that the festival season is not just a busy time for you, but also for endless hackers lurking in the darkness, waiting for their chance to strike an attack. How To Safeguard Your Mobile Payments?Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Β Talking of mobile security, one name that resonates in the industry is Quick Heal Total Security app, capable of thwarting all attempts by hackers to attack your smartphone & mobile payment apps. This Quick Heal app basically scans the payment apps on your smartphone for viruses & threats and blocks all phishing websites from accessing your confidential information. A valuable addition to this app is the βSafePeβ feature β designed especially to counter threats to mobile banking and mobile payments. SafePe basically ensures a safe & secure online banking, shopping and transaction experience, by taking all necessary steps to keep the threats at bay. How SafePe Works? Considering the significant growth in Android banking Trojans, SafePe protects your phone against banking Trojans. This feature also ensures that your phone is not infected by spyware, keylogger or other malwares. It acts as a proactive shield, protecting your phone against infections or tampering by advanced malware, so that you are alerted before you initiate an online transaction. SafePe not just ensures the safety of your phone, but also the network it is using for making online transactions. It checks whether or not you are on secure website, at the time of making online payments. It ensures whether or not your smartphone is rooted since, rooted phones are vulnerable to attacks that can cause extreme damage. Gone are the times when phones were used simply for making & receiving calls. With the advancement in technology, smartphones today have become our handiest tool for shopping, banking, browsing, data storage, online transactions and every other need. Thus, leaving such an important device vulnerable to easy attacks by viruses, malware and spyware, could lead you to a damage beyond repair. So, while this festive season you invest your time & money on buying a smartphone and using it for your day-to-day needs, it would be equally helpful to invest in a reliable mobile security solution like Quick Heal Total Security. This would only make your festivals more safe, secure & enjoyable! The post This festive season secure your mobile payments appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.A serious bug in libssh could allow crooks to connect to your server - with no password requested or required. Here's what you need to know.A βcritical water utilityβ was hit by a recent ransomware attack, significantly impeding the service in the week after Hurricane Florence hit the East Coast of the U.S.Β The Onslow Water and Sewer Authority (ONWASA) said in a Monday release that a βsophisticated ransomware attackβ¦ has left the utility with limited computer capabilities.β While customer data [β¦]The hardware security module of Mate 9 and Mate 9 Pro Huawei smart phones with the versions earlier before MHA-AL00BC00B156, versions earlier before MHA-CL00BC00B156, versions earlier before MHA-DL00BC00B156, versions earlier before MHA-TL00BC00B156, versions earlier before LON-AL00BC00B156, versions earlier before LON-CL00BC00B156, versions earlier before LON-DL00BC00B156, versions earlier before LON-TL00BC00B156 has a arbitrary memory read/write vulnerability due to the input parameters validation. An attacker with the root privilege of the Android system could exploit this vulnerability to read and write memory data anywhere or execute arbitrary code in the TrustZone.Were you one of the dozens of people who got a bizarre Twitter message yesterday? It's OK. It wasn't a disturbance in the Matrix.The flaw affects thousands of servers; but GitHub, a major libssh user, is unaffected.DistruptOps officially rolls out its SaaS for automating control of cloud operations and security.A new SEC investigative report urges public organizations to keep cyberthreats in mind when implementing internal accounting tools.Cybercrime is easy and rewarding, making it a perfect arena for criminals everywhere.The update includes one critical flaw in Oracle GoldenGate with a CVSS 3.0 score of 10.0.With the skills gap still wide, security leaders explain the challenges of hiring and retaining security experts.The software updates from Oracle address a record number of vulnerabilities.In what could be a precursor to future attacks, GreyEnergy is targeting critical infrastructure organizations in Central and Eastern Europe.Over 1m tweets show that we're suckers for funny/sarcastic/edgy, not so much for blah-blah-blah βnewsβ spreaders.If you have European ancestry, there's a 60% chance that somebody vaguely related to you can be used to find out who you are.If you live in the EU, turning on a new Android device after 29 October 2018 could look quite different...Here's a video that explains the libssh "no password needed" bug - jargon-free and in plain English. Enjoy...Washington state aims to stay protected this election season via anti-hacking efforts of the Air National Guard, as well as strengthened audit proceduresHow cybercriminals recruit everyone from car drivers to corporate insiders and pay them according to the risk they assume.A use-after-free in nsINode::ReplaceOrInsertBefore during DOM operations resulting in potentially exploitable crashes. This vulnerability affects Firefox < 50.A recently discovered issue with a common file access method could be a major new attack surface for malware authors.The group is a successor to BlackEnergy and a subset of the TeleBots gang--and its activity is potentially a prelude to a much more destructive attack.Tumblr stressed that there is no evidence the security bug was being abused or that unprotected account data was accessed.Apple's privacy tools now go beyond Europe, so more now get to download the personal data it has collected.Research from Threat Stack found that 54% of companies are worried about outgrowing their current security solutions.The same traits that make collaboration systems so useful for team communications can help hackers, too.Companies that do not keep up with their digital transformation initiatives may see a $1 million or more loss due to cyberattacks.Customers are starting to get the message that their data is valuable. Tom Merritt offers five suggestions to ensure your customers' data isn't vulnerable to attack.Sudhakar Bonthu bought and sold Equifax stock options prior to the public disclosure of its 2017 data breach.Customers are starting to get the message that their data is valuable. Tom Merritt offers five suggestions to ensure your customers' data isn't vulnerable to attack.A custom malware used in a five-pronged APT espionage campaign was largely built from the defunct Comment Crew's proprietary code.Researchers at Black Hat Europe will detail denial-of-service and other flaws in MQTT, CoAP machine-to-machine communications protocols that imperil industrial and other IoT networks online.It starts with already-established trust, a new survey shows.Multiple SQL injection vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow (1) remote attackers to execute arbitrary SQL commands via the number parameter to opac-tags_subject.pl in the OPAC interface or (2) remote authenticated users to execute arbitrary SQL commands via the Filter or (3) Criteria parameter to reports/borrowers_out.pl in the Staff interface.Multiple directory traversal vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow remote attackers to read arbitrary files via a ..%2f (dot dot encoded slash) in the template_path parameter to (1) svc/virtualshelves/search or (2) svc/members/search.Multiple cross-site scripting (XSS) vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow remote attackers to inject arbitrary web script or HTML via the (1) tag parameter to opac-search.pl; the (2) value parameter to authorities/authorities-home.pl; the (3) delay parameter to acqui/lateorders.pl; the (4) authtypecode or (5) tagfield to admin/auth_subfields_structure.pl; the (6) tagfield parameter to admin/marc_subfields_structure.pl; the (7) limit parameter to catalogue/search.pl; the (8) bookseller_filter, (9) callnumber_filter, (10) EAN_filter, (11) ISSN_filter, (12) publisher_filter, or (13) title_filter parameter to serials/serials-search.pl; or the (14) author, (15) collectiontitle, (16) copyrightdate, (17) isbn, (18) manageddate_from, (19) manageddate_to, (20) publishercode, (21) suggesteddate_from, or (22) suggesteddate_to parameter to suggestion/suggestion.pl; or the (23) direction, (24) display or (25) addshelf parameter to opac-shelves.pl.Multiple cross-site request forgery (CSRF) vulnerabilities in Koha 3.14.x before 3.14.16, 3.16.x before 3.16.12, 3.18.x before 3.18.08, and 3.20.x before 3.20.1 allow remote attackers to (1) hijack the authentication of administrators for requests that create a user via a request to members/memberentry.pl or (2) give a user superlibrarian permission via a request to members/member-flags.pl or (3) hijack the authentication of arbitrary users for requests that conduct cross-site scripting (XSS) attacks via the addshelf parameter to opac-shelves.pl.The Apple website's privacy and data area lets you download and correct your data.Six routers with serious security flaws are considered end of life (EOL) and may never be updated.Here's Episode 6 of the Naked Security podcast... enjoy!Companies are scaling digital transformation projects, but privacy remains a top concern, according to a Gartner report.Simple technique enables attackers to leverage Windows OS component to maintain stealth and persistence post system compromise.Phishing, anti-shoulder surfing, Russia and other hysterical identity management puns and comments. And the winners are ...At the 2018 Grace Hopper Celebration, Katie Jenkins of Liberty Mutual explained how to attract more diverse candidates to cybersecurity roles.The bugs let hackers crash IoT devices, leak their information, and completely take them over.Apple Pay is a mobile payment solution that's accepted by millions of retailers in various countries. This guide covers what you need to know to use Apple Pay.A report by the Wall Street Journal points finger at group that is know to Facebook Security.European leaders complete first step toward establishing a sanctions regime.Microsoft will incorporate Google's Retpoline patch to prevent Spectre Variant 2 from slowing down its operating system.Drupal's advisory also included three patches for "moderately critical" bugs.From a serious libssh bug to the sextortionists that spoof your email address, and all the stories in between. Catch up with everything we've written in the last seven days - it's weekly roundup time.Prosecutors said that the 21-year-old LuminosityLink author had no respect for the law and showed contempt for moral rules and social norms.New York has expanded its probe to subpoena 14 industry groups and lobbyists, saying that fake comments "distort[ed] public opinion."He told her to put down the pizza delivery and all her money on top of it. 26 days later, he found her on Facebook and reached out.The flaw in the popular file uploader allows an attacker to upload files and run their own command line shell on any affected server.In most cases, the areas that rankle SANS survey respondents the most about security operations centers can be addressed with the right mix of planning, policies, and procedures.A critical streaming bug impacts Live Networks LIVE555 RTSPServer, but not the popular VLC and MPLayer client-side software.A hack targeted the Direct Enrollment pathway, which allows insurance agents and brokers to help consumers sign up for Affordable Care Act coverage.The advent of 5G presents an opportunity for us to think the exploding number of IoT devices and how we securely connect to the digital world.Even though artificial intelligence adoption is high, concerns regarding legal and ethical risks persist.Security must be built into systems and applications from the beginning of the design process, they agreed.This resource covers the future of computing in the post-transistor age, and the technical hurdles inherent in the pursuit of quantum computing.This guide covers Locky, WannaCry, Petya, and other ransomware attacks, the systems hackers target, and how to avoid becoming a victim and paying cybercriminals a ransom in the event of an infection.Attackers broke into a sign-up system used by healthcare insurance agents and brokers to help consumers apply for coverage.Following controversy from a recent Bloomberg report, here's how you should approach auditing physical hardware security.Let's start with this eye-opener: The cybersecurity profession is facing a shortfall of 3 million workers worldwide.Royal Navy, US Navy, and tech industry leaders ready to commit to 'a framework for dialogue and cooperation' at inaugural meeting of the Atlantic Future Forum.The United States hosts 35% of the world's command-and-control infrastructure, driving the frequency of host compromises.Goal appears both a bid to bolster its own security and its tattered reputation for privacy, according to reporting by The Information.Imagine: You're out at sea, sailing through treacherous and uncharted waters. The tips of sharp rocks jutting from the waves give some forewarning of danger, but beneath the surface, twisting reefs and shallow sandbanks threaten to run you aground.How to keep your CISO sleeping soundlyStop blaming your piracy on your mum. You can no longer avoid liability by saying that a family member had access to your connection.While scrolling through my Twitter feed I saw a Bitcoin scam so unabashed that it got me thinking.... do such scams really work?It's not even close to the number of users affected by the massive Ashley Madison breach, but the results could be just as devastating to those who are affected.The flaw has existed for eight years thanks to a security change in Apache.Phishing is all about the bad guy and fooling the victim, says Kevin Mitnick, founder, Mitnick Security Consulting. Mitnick knows about bad guys-he used to be one.Kevin Mitnick, founder, Mitnick Security Consulting, discusses emerging cybersecurity trends and how we can defend ourselves with TechRepublic's Dan Patterson.Phishing is all about the bad guy and fooling the victim, says Kevin Mitnick, founder, Mitnick Security Consulting. Mitnick knows about bad guysβhe used to be one.The survey found that the majority of cyberattacks - 75% - came from outsiders, while 25% were due to insiders.Drupal website owners have some important patching homework to do.Phishing is all about the bad guy and fooling the victim, says Kevin Mitnick, founder, Mitnick Security Consulting. Mitnick knows about bad guys-he used to be one.Kevin Mitnick, founder, Mitnick Security Consulting, discusses emerging cybersecurity trends and how we can defend ourselves with TechRepublic's Dan Patterson.Not every cybersecurity endeavor can have a huge impact. But a small percentage of your efforts can still produce results that blow you away.A 40-year-old, easily cracked encryption method was used to protect the 98MB database of user information.New report finds 1,005 new user names and passwords beyond Mirai's original default list two years ago.Finance-sector employees fared the worst in an awareness survey, with 85 percent showing some lack of cybersecurity and data privacy knowledge.Christopher Brannan accessed full iCloud backups, photos, and other personal data belonging to more than 200 victims.Kevin Mitnick, founder, Mitnick Security Consulting, discusses how remote access Trojans grab data from computers.After being exposed, the APT made minor adjustments in their tactics to stay off the security radar.At the 2018 Gartner Symposium, Gartner's David Mahdi discussed blockchain's biggest security challenges.Given the role browsers play in accessing enterprise applications and information, it's time to rethink how we classify, manage, and secure them.As part of Mozilla's emphasis on user privacy, features intended to limit user tracking have come to Firefox, but are not yet enabled by default.Data shows with a high degree of confidence that Moscow-based Central Scientific Research Institute of Chemistry and Mechanics helped develop and refine malware, FireEye says.Innovation incubator Team8 recruits major partners, investors to create new products that help businesses "thrive by security."Duo researchers explain the approach they used to detect automated Twitter profiles and uncover a botnet.Many municipalities hit with ransomware don't have much of a choice when it comes to paying up, experts say.A Cyber Aware survey found 30% of Britons still have just one password for all their accounts - so let's help that 30% change their lives!A fifth man has pleaded guilty to federal charges of phishing celebrities' and non-celebrities logins and raiding their iCloud accounts for nude photos.SophosLabs has detected a new DDoS botnet targeting poorly secured SSH servers - called Chalubo, it is named in honour of its use of the ChaCha stream cipher.If youβre running a very old version of WordPress on your website, the projectβs staff would like a word with you.βUninstall?β HA! Uninstall trackers enable app developers to game iOS and Android and continue sending push notifications to fleeing users.Top companies across the US and Europe have poor cybersecurity measures that allow hackers to gain access to their systems, according to a High-Tech Bridge report.Colorado offers extensive election official cybersecurity training, paper ballots, and a strong auditing system, giving it top marks in election security.Some 95% of companies have a disaster recovery plan, but 27% lost revenue due to an outage within the last year, according to Spiceworks.The number of vulnerable applications is incredibly high, but implementing DevSecOps has proven to be effective in mitigating flaws.In order to increase transparency and accuracy in the 2020 presidential election, Pennsylvania will replace outdated voting machines with traditional paper ballots.Operating one's own local DNS resolution servers is one of the simplest and lowest-cost things an IT administrator can do to monitor and protect applications, services, and users from potential risks.Jack Wallen outlines what he believes is the ideal combination to prevent browser tracking in Firefox.Jack Wallen outlines the ideal combination of Firefox extensions to prevent browser tracking.After a two-quarter lull in the action, malware activity resurged in the third quarter of the year, especially on the business front.Security researchers warn of both new and re-emerging threats that can cause serious harm.The vulnerability can be used to elevate privileges and delete files on target systems.The sLoad downloader is an example of the stealthy, smart malware trend.Vendor-supplied malware is a threat that has been largely overlooked. That has to change.Websites that never go away continue to bring security threats to their owners, says a new report.For those of us working from home offices, protecting sensitive data from authorized access can also mean protecting our homes from illegal entry. With IoT technology, home security technology is now a DIY project.The unpatched flaw allows an attacker to delete any kind of file on a victim machine, including system data.Microsoft will terminate support for Windows 7 in January 2020, but some there's still some confusion among enterprises about when the OS officially gets retired.Over two dozen third-party ecommerce plugins contain zero-day vulnerabilities being exploited in a recent Magecart campaign.CyberX study shows that many industrial control system environments are riddled with vulnerabilities.An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. Amstar is an Amanda Application API script. It should not be run by users directly. It uses star to backup and restore data. It runs binaries with root permissions when parsing the command line argument --star-path.An issue was discovered in Amanda 3.3.1. A user with backup privileges can trivially compromise a client installation. The "runtar" setuid root binary does not check for additional arguments supplied after --create, allowing users to manipulate commands and perform command injection as root.Researchers think theyβve spotted a tracking technique that nobody has been paying attention to - TLS session resumption.Google and Facebook have been hit separately by class action lawsuits accusing them of secretly tracking user locations.Mozilla's Enhanced Tracking Protection is going mainstream.Cybersecurity workers are most concerned about losing company data and customer trust in an attack, according to a report from Neustar.Jack Wallen shows you how to create encrypted folders the easy way, withThis report offers insight on how security professionals plan to invest in cybersecurity, and how they are prioritizing their resources. Find out what your peers have planned today!Organizations seeking to fix flaws faster should look to automation and related methodologies for success, says a new report.Mark Risher, Google's director of product management for identity and account security, explains what hackers are looking and how Google is ramping up account security.Chris Wilson of WPA Intelligence explains how state campaigns combat cyber attacks before the midterm elections.Diana Kelley, Microsoft's Cybersecurity Field CTO, explains how the company is combating disinformation, phishing attacks, and cloud security.Cisco's Michele Guel, Distinguished Engineer and Chief Security Architect, explains how to recruit women into STEM and cybersecurity.Many organizations want to take additional cybersecurity measures, but are strapped by time, skills, and visibility, according to a Fidelis Cybersecurity reportThe best way to protect your cloud infrastructure is to pay attention to the fundamentals of application security, identity access management roles, and follow configuration best-practices.It's not every day that someone lets you freely wreak havoc on their account just to find out what happens when you do.Read about the saga of Facebook's failures in ensuring privacy for user data, including how it relates to Cambridge Analytica, the GDPR, the Brexit campaign, and the 2016 US presidential election.There is no argument artificial intelligence will have an impact on the cybersecurity skills gap. The question is how.The news comes shortly after the DoD was called out for having rampant bugs in its weapons systems.Scalability is a huge deciding factor for professionals looking at DBaaS brands. Here are the 15 most popular among cloud developers.The amount is the max allowed under pre-GDPR regulation, but is barely a financial slap on the risk for the social-media giant.Andrea Little Limbago, chief social scientist at Endgame, discusses hacktivist groups, cybersecurity trends, and how we can prepare for cyberattacks with CNET's Dan Patterson.Andrea Little Limbago, chief social scientist at Endgame, discusses hacktivist groups, cybersecurity trends, and how we can prepare for cyberattacks with CNET's Dan Patterson.Breach of Hong Kong-based airline compromises personal information of 9.4 million passengers.The Maltrail malicious behavior detection system eases the burden of constant vigilance on your Linux server.Researcher will demonstrate at Black Hat Europe his team's recent discovery: a way to exploit popular user-blocking feature on social media and other sites.Cris Thomas, space rogue, global strategy lead at IBM X-Force Red, discusses the myths and realities of hacking election machines with CNET's Dan Patterson.Mark Risher, Google's director of product management for identity and account security, explains what hackers are looking for and how Google is ramping up account security.Researchers note massive increases in retail goods for sale on the black market, retail phishing sites, and malicious applications and social media profiles.Tool rescues GandCrab victims from malicious encryption.Majority of county sites in 20 key swing states have non-.gov domains and don't enforce use of SSL, McAfee researchers found.Here's Episode 7 of the Naked Security podcast - enjoy.Startups selling vulnerabilities, exploit kits, and access to personal data to government agencies have a poor record of securing their own platforms.Facebook blocked 8.7m images of child nudity and exploitative content in 3 months.Tim Cook's warnings about an "industrial data complex" have been met with accusations of hypocrisy from Facebook's former security supremo.A Β£500k is the best the Information Commissioner's Office could do under the old Data Protection Act.Software updates aren't supposed to make things worse.Filling cybersecurity gaps remains a top challenge for executives, according to an infographic from Digital Guardian.If you're looking for a way to seamlessly work with encryption on the desktop, give KDE vaults a try.Leo Taddeo, chief information security officer at Cyxtera Technologies, discusses the development of cyber tactics with CNET's Dan Patterson.Leo Taddeo, chief information security officer at Cyxtera Technologies, discusses the development of cyber tactics with CNET's Dan Patterson.Colorado offers extensive election official cybersecurity training, paper ballots, and a strong auditing system, giving it top marks in election security.During secure boot, addition is performed on uint8 ptrs which led to overflow issue in Small Cell SoC, Snapdragon Automobile, Snapdragon Mobile, Snapdragon Wear in version FSM9055, IPQ4019, MDM9206, MDM9607, MDM9625, MDM9635M, MDM9640, MDM9645, MDM9650, MDM9655, MSM8909W, MSM8996AU, SD 210/SD 212/SD 205, SD 410/12, SD 425, SD 430, SD 450, SD 615/16/SD 415, SD 617, SD 625, SD 650/52, SD 800, SD 810, SD 820, SD 820A, SD 835, SD 845, SD 850, SDA660, SDX20Following these steps could mean the difference between an inconvenience and a multimillion-dollar IT system rebuild -- for the public and private sectors alike.Cybersecurity for Small Businesses campaign kicks off.The next generation of wireless networking standards could leave critical security gaps open, according to University of Dundee research.An unsophisticated but effective botnet is targeting exposed cloud servers and racking up millions of infections.The news comes on the heels of a breach at Cathay Pacific exposing 9.4 million people.How researchers developed an algorithm to simulate cybercriminals' use of artificial intelligence and explore the future of phishing.Microsoft has been notified, but no patch is yet available.The carrier discovered another breach while investigating its largest-ever data breach, disclosed in September.A full 21 percent of survey respondents would walk away from a business permanently after a major hack.Nefarious profiteers use the encrypted internet to sell stolen data, drugs, and weapons. Facebook and the UN use it to protect dissidents and journalists. This guide shines a light on the Dark Web.A group of researchers has found a way to infect computers via Word documents without triggering a security warning.More than 85% of companies have experienced a cyber breach in the past three years, according to an A.T. Kearny report.From a popular WordPress plugin harbouring a zero-day to punishments for phone-slowing Apple and Samsung, and all the stories in between. Catch up with everything we've written in the last seven days - it's weekly roundup time.The FBI recently busted a group of criminals who seem to be using Call of Duty to coordinate cryptocurrency thefts.It just got easier for owners of a wide range of home devices to hack and repair their software.Cris Thomas, space rogue, global strategy lead at IBM X-Force Red, discusses the myths and realities of hacking election machines with CNET's Dan Patterson.It's bad news for overweight, elderly, male jaywalkers.The OpenSSL ECDSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.0j (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.1.1a (Affected 1.1.1).ProjectSend (formerly cFTP) r582 allows Insecure Direct Object Reference via includes/actions.log.export.php.ProjectSend (formerly cFTP) r582 allows directory traversal via file=../ in the process-zip-download.php query string.ProjectSend (formerly cFTP) r582 allows authentication bypass via a direct request for users.php, home.php, edit-file.php?file_id=1, or process-zip-download.php, or add_user_form_* parameters to users-add.php.ProjectSend (formerly cFTP) r582 allows SQL injection via manage-files.php with the request parameter status, manage-files.php with the request parameter files, clients.php with the request parameter selected_clients, clients.php with the request parameter status, process-zip-download.php with the request parameter file, or home-log.php with the request parameter action.Application security must be re-envisioned to support software security. It's time to shake up your processes.Leo Taddeo, chief information security officer at Cyxtera Technologies, discusses phishing and Russia's involvement in the 2016 US presidential election with CNET's Dan Patterson.Sandboxed version now available to Windows Insiders and anyone else who force-enables it in Windows 10 version 1703 and above.The issue impacts many large distros with GUI interfaces.Sophisticated nation-state groups now integrate phishing as a core component of their statecraft.Are your Web application secure? WebGoat, a tool old enough to be in high school, continues to instruct.Someone gained access to an email account for the Orange County chapter, which was rife with personal data.DNS plays a critical role in every network. However, it is often overlooked by many security solutions and not integrated into cyber hygiene programs, leaving an easily-accessed back door open for criminals into many networks.A bool variable in Video function, which gets typecasted to int before being read could result in an out of bound read access in all Android releases from CAF using the linux kernelAn attacker can send spoofed commands to the crane's controller.IoT devices are the top targets of cyberattacks -- most of which originate on IoT devices, new report finds.But enterprises and open source community likely have little to be concerned about, industry experts say.Researchers claim that unusual BGP routing changes are actually man-in-the-middle surveillance.Leo Taddeo, chief information security officer at Cyxtera Technologies, discusses phishing and Russia's involvement in the 2016 US presidential election with CNET's Dan Patterson.The previous copyright law that only allowed big manufacturers to fix tech products has finally been lifted. Here's what that means for techies.Illinois had the only state voter registration database that Russian hackers successfully broke into in the 2016 election. Since then, it has spent millions on new cybersecurity protections.Theresa Payton, CEO at Fortalice Solutions, discusses cybersecurity, election meddling, and Russia's involvement in 2016 US presidential election with CNET's Dan Patterson.Theresa Payton, CEO at Fortalice Solutions, discusses cybersecurity, election meddling, and Russia's involvement in 2016 US presidential election with CNET's Dan Patterson.Leo Taddeo, chief information security officer at Cyxtera Technologies, discusses the continuous challenge of balancing incoming cyber threats with CNET's Dan Patterson.Leo Taddeo, chief information security officer at Cyxtera Technologies, discusses the continuous challenge of balancing incoming cyber threats with CNET's Dan Patterson.Not for the first time, typosquatting malware made its way into an open source code repository.A now very βexβ-government employee provides a teachable moment.The OpenSSL DSA signature algorithm has been shown to be vulnerable to a timing side channel attack. An attacker could use variations in the signing algorithm to recover the private key. Fixed in OpenSSL 1.1.1a-dev (Affected 1.1.1). Fixed in OpenSSL 1.1.0j-dev (Affected 1.1.0-1.1.0i). Fixed in OpenSSL 1.0.2q-dev (Affected 1.0.2-1.0.2p).Between usability goals and security/regulatory pressures, setting up customer-facing security is difficult. These steps and best practices can help.The long list of charges includes bank fraud, involuntary manslaughter, cyberstalking and wire fraud.A Girl Scouts of America branch in California was hacked, putting the data of 2,800 girls and their families at risk.Abandoned web applications used by FT 500 Global Companies have exploitable flaws and weaknesses.Puzzles and check-boxes have been replaced with in-the-background behavioral analysis.Why security must lead the integration of marketing into the collaborative security and development model in the cloud.Nearly one-fourth of data in the cloud could put your organization at serious risk if it was leaked or stolen, according to a McAfee report.New research ranks organizations based on whether they offer two-factor authentication.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, discusses the risks of data being changed or removed in voter registration databases and how voters can counter these actions.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, discusses the risks of data being changed or removed in voter registration databases and how voters can counter these actions.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, explains SQL injection attacks and discusses how voter registration database hacks can lead to doubt in the election process.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, explains SQL injection attacks and discusses how voter registration database hacks can lead to doubt in the election process.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, says that voters need to put election hacking vulnerability risks into perspective.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, says that voters need to put election hacking vulnerability risks into perspective.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, details some of the steps that can be taken to shore up the American electoral system.Cris Thomas (aka Space Rogue), global strategy lead at IBM X-Force Red, details some of the steps that can be taken to shore up the American electoral system.Fallout Exploit Kit releases Kraken Cryptor ransomware, giving the simple threat a much larger target pool.Popular card readers like Square and PayPal have various flaws that allow attacks ranging from fraud to card data theft.Instead of simply fleeing when discovered, adversaries are actively engaging with incident response teams, a new Carbon Black study finds.The Interactive Advertising Bureau (IAB) OpenRTB 2.3 protocol implementation might allow remote attackers to conceal the status of ad transactions and potentially compromise bid integrity by leveraging failure to limit the time between bid responses and impression notifications, aka the Amnesia Bug.python-kdcproxy before 0.3.2 allows remote attackers to cause a denial of service via a large POST request.Stop making users change passwords and start getting rid of passwords entirely.An Alaskan court has handed one of the Mirai authors a huge fine.Another day, another exchange goes down - but was it a hack or an exit scam?After 20 years of waiting you'll no longer feel your will to live drain away as you solve tedious visual puzzles. Maybe.The recently patched flaw would have enabled anyone to make themselves an administrator for any Facebook business account.JBoss BPM Suite 6 is vulnerable to a reflected XSS via dashbuilder. Remote attackers can entice authenticated users that have privileges to access dashbuilder (usually admins) to click on links to /dashbuilder/Controller containing malicious scripts. Successful exploitation would allow execution of script code within the context of the affected user.A code injection flaw was found in the way capacity and utilization imported control files are processed. A remote, authenticated attacker with access to the capacity and utilization feature could use this flaw to execute arbitrary code as the user CFME runs as.A permissions flaw was found in redis, which sets weak permissions on certain files and directories that could potentially contain sensitive information. A local, unprivileged user could possibly use this flaw to access unauthorized system information.Halloween movies are the perfect metaphor for breaking down today's scariest supplier breach tropes.Diana Kelley, Microsoft's Cybersecurity Field CTO, explains how the company is combating disinformation, phishing attacks, and cloud security.Involving security leaders from the start and raising accountability are some of the steps companies can take to improve digital security, according to a PwC report.The Kraken ransomware author has released a second version of the malicious code, along with a unique affiliate program on the Dark Web. According to research into Kraken v.2 the new version is being promoted in a ransomware-as-a-service (RaaS) model to underground forum customers, via a video demoing its capabilities. Those interested can complete a [β¦]Security updates across all Apple platforms released alongside its new products.There has been a palpable shift from volumetric attacks to "quantum attacks," and they look to be one of the biggest cybersecurity challenges on the rise today.Diana Kelley, Microsoft's Cybersecurity Field CTO, explains how the company is addressing influence campaigns, using machine learning for these models, and looking at eliminating disinformation.Apple devices haunted by helium.Diana Kelley, Microsoft's Cybersecurity Field CTO, explains how the company is addressing influence campaigns, using machine learning for these models, and looking at eliminating disinformation.Diana Kelley, Microsoft's Cybersecurity Field CTO, talks about the company's approach to data security, collaborating with its major tech competitors, and why the cloud is a security imperative.Plans to use Layered Insight's technology to add runtime capabilities and automated enforcement to its container security tool.Diana Kelley, Microsoft's Cybersecurity Field CTO, talks about the company's approach to data security, collaborating with its major tech competitors, and why the cloud is a security imperative.Security experts share insights on which skills and experiences are most helpful to job hunters looking for their next gig.Researchers discover new cyber-spying function in the persistent malware operation's arsenal.Chris Wilson of WPA Intelligence explains how state campaigns combat cyberattacks before the midterm elections.It was found that Samba before versions 4.5.3, 4.4.8, 4.3.13 always requested forwardable tickets when using Kerberos authentication. A service to which Samba authenticated using Kerberos could subsequently use the ticket to impersonate Samba to other services or domain users.Intelligence agents aimed for aerospace manufacturing targets, with help of cyberattackers, corporate insiders, and one IT security manager.How to fit hardware threats into your security model as hardware becomes smaller, faster, cheaper, and more complex.New security updates cross all Apple platforms.SamSam ransomware hasn't gone away and it's adapting to meet evolving defenses.A vulnerability was found in libexif. An integer overflow when parsing the MNOTE entry data of the input file. This can cause Denial-of-Service (DoS) and Information Disclosure (disclosing some critical heap chunk metadata, even other applications' private data).PrediPol uses predictive policing algorithms, VeriPol analyzes fake-report text. Who ya gonna call?The DOJ described five years of stealing turbofan engine designs that relied on insiders, state-sponsored hackers, phishing and malware.If you own any kind of Apple device or software, you may want to check to see if you have an update waiting for you.Just a couple of weeks before the US midterm elections, journalists have revealed that Facebook is continuing to approve fake advertisements from fake sources.The government isn't really after the password, after all; it's after any potential evidence it protects. In other words: fishing expedition.A flaw was found in samba versions 4.0.0 to 4.5.2. The Samba routine ndr_pull_dnsp_name contains an integer wrap problem, leading to an attacker-controlled memory overwrite. ndr_pull_dnsp_name parses data from the Samba Active Directory ldb database. Any user who can write to the dnsRecord attribute over LDAP can trigger this memory corruption. By default, all authenticated LDAP users can write to the dnsRecord attribute on new DNS objects. This makes the defect a remote privilege escalation.An issue has been found in PowerDNS Authoritative Server versions up to and including 3.4.10, 4.0.1 allowing an authorized user to crash the server by inserting a specially crafted record in a zone under their control then sending a DNS query for that record. The issue is due to an integer overflow when checking if the content of the record matches the expected size, allowing an attacker to cause a read past the buffer boundary.You need smart prioritization to close the riskiest vulnerabilities. Effective DevSecOps leads the way, according to a new study.You need smart prioritization to close the riskiest vulnerabilities. Effective DevSecOps leads the way, according to a new study.Increased attacks prove the importance of detecting threat behaviors early and monitoring network traffic, stopping cybercriminals in their tracks.Google announces for new security features to protect Google accounts.Called BleedingBit, this vulnerability impacts wireless networks used in a large percentage of enterprise companies.AI is being employed to act as a lie detector to reduce the pressure on country borders and human agents.Poor DNS housekeeping opens the door to account takeover.Successful phishing campaign leads attackers to confidential information of world soccer's governing body.Stealing administrative credentials to carry out months-long spy campaigns is a top threat.It's the latest in a series of attacks targeting the travel industry, following incidents at British Airways and Cathay Pacific.While social media platforms have succeeded in protecting users from phishing links, angler phishing has become the new mode of attack for many malicious actors.Facebook, Equifax, Cambridge Analytica ... Why do breaches of incomprehensible magnitude lead to a quick recovery for the businesses that lost or abused the data and such little lasting impact for the people whose information is stolen.A recent report by cybersecurity organization Carbon Black paints a grim picture of potential cyberattacks involving the upcoming US Elections. Learn more about the details.'BleedingBit' could give attackers control of the wireless network from a remote vantage point.Weighing the impact of GDPR and how the historic legislation has shaped privacy protection measures in the U.S., so far.Five of them allow remote compromise of the IoT gadgets, so attackers can intercept video feeds and more.Chris Wilson of WPA Intelligence reflects on why he thinks the Facebook/Cambridge Analytica incident makes it more difficult to reach voters.When attackers want to impersonate a brand via email, the majority turn to Microsoft and Amazon because of their ubiquity in enterprise environments.34 popular consumer websites were put to the 2FA test.The search giant's secret sauce can see when somebody's using your stolen password.Only one browser stood fast against a set of new browser history attacks.States with more federal representatives and larger legislatures have higher rates of election hacking, according to highspeedinternet.com.Researcher JosΓ© RodrΓguez beats the lockscreen to display contact phone numbers and email addresses.New online threats require new solutions.Meanwhile, Saturday now is the most βdangerousβ day of the week for DDoS attacks.Stop overwhelming developers and start using real-world attack behavior to prioritize application vulnerability fixes.A high severity zero-day flaw exists in Cisco System's SIP inspection engine.Advisory addresses active exploitation of vuln in the wild, with no clear solution in sight.The Insider Threat Program Maturity Framework is intended to help government agencies strengthen their programs.Three individuals who worked for DRAM maker's Taiwan subsidiary stole Micron IP to benefit company controlled by China's government, US says in indictment.Investigators posed as buyers and were offered the messages at 10 cents per Facebook account.Two reports call out the most serious malware attacks and attackers of the year (so far).Passcodes are protected by the Fifth Amendment, browsers are being made to cough up browsing history, and an exploit in Microsoft Word. Catch up with this and everything we wrote in the last seven days - it's weekly roundup time!Researchers have developed an exploit that uses a feature in Intel chips to steal secret cryptographic keys.A proposed bill calls for executives to be jailed for not protecting consumers' data, or at least for lying about it.Football shockers started to flow on Friday, after journalists analyzed more than 70m exfiltrated documents, totaling 3.4 terabytes of data.Stolen data from the 81,000 accounts that appeared to be genuine included intimate exchanges between Facebook users.Chris Wilson of WPA Intelligence explains how data analytics experts could help increase voter turnout.Chris Wilson of WPA Intelligence reflects on why he thinks the Facebook/Cambridge Analytica incident makes it more difficult to reach voters.CNET senior producer Dan Patterson explains hacking threats for Tuesday's elections.Systems, technology, and threats change, and your response plan should, too. Here are three steps to turn your post-breach assessment into a set of workable best practices.From social media manipulation to voting machine hacks, CNET senior producer Dan Patterson explains the cyber threats that could compromise the 2018 U.S. midterm elections.Jack Wallen discusses why everyone should be using a password manager.Automation is the way that teams gain a humongous amount of leverage in the speed and effectiveness of cyberdefense, says LogicHub CEO and co-founder Kumar Saurabh.The idea and concept of Smart Cities is certainly gaining traction. Cities around the world are already investing in trials, testbeds and in many cases operational system deployments such as smart energy, smart lighting, smart parking; the list goes on..."Password-killing" authentication efforts may be on a road to nowhere.An exploit was released for a flaw existing in a process in CPUs called Simultaneous Multithreading (SMT).Concerns over midterm election tampering reach a boiling point in the days leading up to actual voting.Jack Wallen shows you how to use Firefox Master Password.Prior to the advent of the internet, personal data was siloed in hard-to-find places, says Abine CEO Rob Shavell. Today data about all of us is remarkably easy to find.Mac users exercise less caution, says Secdo security evangelist Mitchell Bezzina, which means there is a higher risk of exploits and malware infection.From paper to IoT, security researchers offer tips for protecting common attack surfaces that you're probably overlooking.Cybersecurity precautions could easily turn into cyberwarfare. Here's how the US plans to combat possible Russian influence in the midterm elections.Broadcom will sell Veracode, acquired last year by CA, for $950M to Thoma Bravo as it broadens its security portfolio.Both buys bolster the cybersecurity company's endpoint security business.Attackers are actively infiltrating energy organizations and utilities for reconnaissance purposes.A buffer overflow bug could silence online stations.Fake email messages - aka spam - contain the President's name in 2,811% of median message sampling.The US government is reeling from a catastrophic, years-long intelligence failure that compromised its internet-based covert communications.Android apps in the "Family" category had a surprisingly high number of trackers embedded in them.Two US biometric companies have partnered to research a private, nationwide biometrics system.Facebook's had a patent approved for a new way to sniff out potential friends, based on your phone and patterns of movement.