Month: December 2017

Ability to reset iTunes Backup passwords unravels layered protection, claims researcher   1st December  2017  By Thomas Claburn     After rapidly patching a flaw that allowed anyone with access to a High Sierra Mac to obtain administrative control, Apple still has more work to do to make its software secure, namely iOS 11, it… Continue reading Apple iOS 11 security ‘downgrade’ decried as ‘horror show’

By Ionut Arghire on December 01, 2017   Two newly discovered .NET-based ransomware families are using open source repositories to encrypt users’ files, Zscaler security researchers say.   Dubbed Vortex and BUGWARE, the two ransomware families have been seen in live attacks carried out via spam emails containing malicious URLs. Both of the new malware… Continue reading New .NET-Based Ransomware Uses Open Source Code

  1st December  2017 By Christopher Boyd   There’s a number of fake PayPal emails going around right now claiming that a recent transaction can’t be verified. If your response to this is, “What transaction?” read on. If your response to this is, “Oh no, not my recent transaction!” you should still read on. Why?… Continue reading PayPal phish asks to verify transactions—don’t do it

30th November 2017 By Tara Seals   Google is being sued on behalf of millions in the UK over privacy violations, after it allegedly secretly accessed their browsing data on iPhones.   The former director of consumer group Which?, Richard Lloyd, is seeking compensation for up to 5.4m Britons in the equivalent of a class-action… Continue reading Google Sued for Invading the Privacy of Millions in UK

Browser will block third-party software from mucking around with pages next year   30th November 2017 By Shaun Nichols     By mid-2018 Google Chrome will no longer allow outside applications – cough, cough, antivirus packages – to run code within the browser on Windows.   This is according to a post today on the… Continue reading Google Chrome vows to carpet bomb meddling Windows antivirus tools

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256   ******************************************************************** Title: Microsoft Security Update Minor Revisions Issued: November 29, 2017 ********************************************************************   Summary =======   The following CVEs have been revised in the October 2017 or the November 2017 Security Updates.   * CVE-2017-8718 * CVE-2017-11870 * CVE-2017-11873 * CVE-2017-11882     Revision Information: =====================   CVE-2017-8718… Continue reading Microsoft Security Update Minor Revisions Issued: November 29, 2017

30th November 2017 By Patrick Howell O’Neill   Several Western nations are considering an offensive-minded cyberwarfare initiative meant to fundamentally change the way the countries react to attacks from adversary nations, Reuters reports. The accord would guide the deployment of offensive cyberweapons.   The agreement, being hammered out by the Denmark, Germany, Norway, Spain, The Netherlands, United Kingdom and… Continue reading Western allies consider offensive cyber warfare agreement as Russia launches plan for ‘independent i

By Kevin Townsend on November 30, 2017   The DHS statement bans government agencies from using Kaspersky Lab products, saying, “The risk that the Russian government, whether acting on its own or in collaboration with Kaspersky, could capitalize on access provided by Kaspersky products to compromise federal information and information systems directly implicates U.S. national… Continue reading Trust Your Security Vendor, ‘They Have Access to Everything You Do,’ Says F-Secure Research Chief