Ability to reset iTunes Backup passwords unravels layered protection, claims researcher 1st December 2017 By Thomas Claburn After rapidly patching a flaw that allowed anyone with access to a High Sierra Mac to obtain administrative control, Apple still has more work to do to make its software secure, namely iOS 11, it… Continue reading Apple iOS 11 security ‘downgrade’ decried as ‘horror show’
Month: December 2017
New .NET-Based Ransomware Uses Open Source Code
By Ionut Arghire on December 01, 2017 Two newly discovered .NET-based ransomware families are using open source repositories to encrypt users’ files, Zscaler security researchers say. Dubbed Vortex and BUGWARE, the two ransomware families have been seen in live attacks carried out via spam emails containing malicious URLs. Both of the new malware… Continue reading New .NET-Based Ransomware Uses Open Source Code
PayPal phish asks to verify transactions—don’t do it
1st December 2017 By Christopher Boyd There’s a number of fake PayPal emails going around right now claiming that a recent transaction can’t be verified. If your response to this is, “What transaction?” read on. If your response to this is, “Oh no, not my recent transaction!” you should still read on. Why?… Continue reading PayPal phish asks to verify transactions—don’t do it
Google Sued for Invading the Privacy of Millions in UK
30th November 2017 By Tara Seals Google is being sued on behalf of millions in the UK over privacy violations, after it allegedly secretly accessed their browsing data on iPhones. The former director of consumer group Which?, Richard Lloyd, is seeking compensation for up to 5.4m Britons in the equivalent of a class-action… Continue reading Google Sued for Invading the Privacy of Millions in UK
Google Chrome vows to carpet bomb meddling Windows antivirus tools
Browser will block third-party software from mucking around with pages next year 30th November 2017 By Shaun Nichols By mid-2018 Google Chrome will no longer allow outside applications – cough, cough, antivirus packages – to run code within the browser on Windows. This is according to a post today on the… Continue reading Google Chrome vows to carpet bomb meddling Windows antivirus tools
Microsoft Security Update Minor Revisions Issued: November 29, 2017
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 ******************************************************************** Title: Microsoft Security Update Minor Revisions Issued: November 29, 2017 ******************************************************************** Summary ======= The following CVEs have been revised in the October 2017 or the November 2017 Security Updates. * CVE-2017-8718 * CVE-2017-11870 * CVE-2017-11873 * CVE-2017-11882 Revision Information: ===================== CVE-2017-8718… Continue reading Microsoft Security Update Minor Revisions Issued: November 29, 2017
Western allies consider offensive cyber warfare agreement as Russia launches plan for ‘independent i
30th November 2017 By Patrick Howell O’Neill Several Western nations are considering an offensive-minded cyberwarfare initiative meant to fundamentally change the way the countries react to attacks from adversary nations, Reuters reports. The accord would guide the deployment of offensive cyberweapons. The agreement, being hammered out by the Denmark, Germany, Norway, Spain, The Netherlands, United Kingdom and… Continue reading Western allies consider offensive cyber warfare agreement as Russia launches plan for ‘independent i
Trust Your Security Vendor, ‘They Have Access to Everything You Do,’ Says F-Secure Research Chief
By Kevin Townsend on November 30, 2017 The DHS statement bans government agencies from using Kaspersky Lab products, saying, “The risk that the Russian government, whether acting on its own or in collaboration with Kaspersky, could capitalize on access provided by Kaspersky products to compromise federal information and information systems directly implicates U.S. national… Continue reading Trust Your Security Vendor, ‘They Have Access to Everything You Do,’ Says F-Secure Research Chief