By Tom Spring May 28, 2017 Microsoft quietly patched a critical vulnerability Wednesday in its Malware Protection Engine. The vulnerability was found May 12 by Google’s Project Zero team, which said an attacker could have crafted an executable that when processed by the Malware Protection Engine’s emulator… Continue reading Microsoft Quietly Patches Another Critical Malware Protection Engine Flaw
Month: May 2017
What is Operation Cobalt Kitty? Notorious hacker unit OceanLotus Group’s inner workings revealed
Security experts unmask strategies used by OceanLotus Group by unveiling an attack that targeted a major Asian firm. May 27th 2017 By India Ashok The inner workings of a proliferate cyberespionage group known as the OceanLotus Group or APT 32, known to target… Continue reading What is Operation Cobalt Kitty? Notorious hacker unit OceanLotus Group’s inner workings revealed
Chipotle Mexican Grill Fast-food chain notified customers a PoS malware breach
May 27, 2017 By Pierluigi Paganini The Fast-food chain Chipotle notified users a security breach, hackers compromised its point of sale terminals to steal payment card data. The Mexican Grill Fast-food chain Chipotle notified users a data breach, hackers infected its point of sale terminals to… Continue reading Chipotle Mexican Grill Fast-food chain notified customers a PoS malware breach
Two-decade old bug still causes Windows 8.1 and Windows 7 to crash
May 27, 2017 By Mahit Huilgol It’s not a rare occurrence that the operating systems crashed due to renaming the files/folders in a particular way. In fact, way back in the 90’s this was carried out as a prank and used to be a source of entertainment. It’s 2017 and the NTFS has visited… Continue reading Two-decade old bug still causes Windows 8.1 and Windows 7 to crash
German Threat Actor Spreads Houdini Worm on Pastebin
26th May 2017 By Tara Seals A threat actor from Germany that goes by the handle Vicswors Baghdad appears to be behind the propagation of the Houdini malware on Pastebin sites—as well as actively editing an open source ransomware variant called MoWare H.F.D. According to Recorded Future analyst Daniel Hatheway, there have been… Continue reading German Threat Actor Spreads Houdini Worm on Pastebin
Three Nigerians sentenced to 235 years in prison for online scamming
Don’t expect princely borrowing emails to stop any time soon 25 May 2017 at 22:11, Iain Thomson A court in Mississippi has sentenced three Nigerian men to 235 years in prison for running online scams that duped people out of tens of millions of dollars. Oladimeji Seun… Continue reading Three Nigerians sentenced to 235 years in prison for online scamming
How to build your own VPN if you’re (rightfully) wary of commercial options
While not perfect, either, cloud hosting providers have a better customer data record. Jim Salter – 5/26/2017 In the wake of this spring’s Senate ruling nixing FCC privacy regulations imposed on ISPs, you may be (even more) worried about how your data is… Continue reading How to build your own VPN if you’re (rightfully) wary of commercial options
Microsoft Security Update Releases Issued: May 25, 2017
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 ******************************************************************** Title: Microsoft Security Update Releases Issued: May 25, 2017 ******************************************************************** Summary ======= The following CVEs have been added to May 2017 release. * CVE-2017-8535 * CVE-2017-8536 * CVE-2017-8537 * CVE-2017-8538 * CVE-2017-8539 * CVE-2017-8540 * CVE-2017-8541 * CVE-2017-8542 Revision Information: ===================== CVE-2017-0223… Continue reading Microsoft Security Update Releases Issued: May 25, 2017
SCADA HMI Devs Take 150 Days to Release Patches
26th May 2017 By Phil Muncaster It takes SCADA vendors on average 150 days to release security patches, leaving organizations exposed for around a month longer than for popular software like Windows, according to a new report from Trend Micro. The security vendor’s latest research, Hacker Machine Interface: The State of SCADA HMI Vulnerabilities,… Continue reading SCADA HMI Devs Take 150 Days to Release Patches
Keybase Extension Brings End-to-End Encrypted Chat To Twitter, Reddit, GitHub
By Chris Brook May 25, 2017 A recently released Chrome extension, developed by the public key crypto database Keybase, brought end-to-end encrypted messaging to several apps this week. Keybase, a service that allows users to identify themselves with a public encryption key, introduced its… Continue reading Keybase Extension Brings End-to-End Encrypted Chat To Twitter, Reddit, GitHub