David Dufour, Sr. Director of Engineering, talks with The CyberWire Daily Podcast about IoT supply chain challenges. Take a look at the best antivirus, anti-malware, anti-spy, etc. software Powered by WPeMatico
Author: admin
Don’t click that Google Docs link! Gmail hijack mail spreads like wildfire
Rogue app grabs contacts, peeks at inbox, spams contacts 3 May 2017 at 20:40, Iain Thomson If you get an email today with the header that someone wants to share a Google document with you, don’t click it, otherwise you’ll be handing over your contacts to an unknown attacker. The… Continue reading Don’t click that Google Docs link! Gmail hijack mail spreads like wildfire
Proposed NIST Password Guidelines Soften Length, Complexity Focus
By Michael Mimoso May 3, 2017 A comment period has closed on NIST’s new password guidelines for federal agencies that challenge the effectiveness of traditional behaviors around authentication such as an insistence on complex passwords and scheduled resets. As more tech companies move away… Continue reading Proposed NIST Password Guidelines Soften Length, Complexity Focus
ATM security devs rush out patch after boffins deliver knockout blow
Researchers had full control and were able to make unauthorised withdrawals 3 May 2017 at 14:55, John Leyden A firm that supplies security software for cash machines has updated its technology after researchers uncovered a number of serious shortcomings. Flaws in GMV’s Checker ATM Security technology created a means for… Continue reading ATM security devs rush out patch after boffins deliver knockout blow
Hacking industrial robots in today’s smart factories
Common sense really that any new technologies will act as a new target and although robotics are not totally new they becoming a lot more common now. Zeljka Zorz – May 3, 2017 It has been estimated that by 2018, approximately 1.3 million industrial robot units – mechanical multi-axis “arms” used for automating… Continue reading Hacking industrial robots in today’s smart factories
Shamoon Collaborator Greenbug Adopts New Communication Tool
By Tom Spring May 2, 2017 Researchers have identified a new collaborator in the continued Shamoon attacks against Saudi organizations. Called Greenbug, this group is believed to be instrumental in helping Shamoon steal user credentials of targets ahead of Shamoon’s destructive… Continue reading Shamoon Collaborator Greenbug Adopts New Communication Tool
Netgear Patches RCE Flaws in Routers, Switches
By Eduard Kovacs on May 02, 2017 Netgear recently informed customers that it has released firmware updates for some of its routers and switches to address remote code execution and other types of vulnerabilities. Netgear announced the launch of a bug bounty program in early January and the company has been regularly publishing security… Continue reading Netgear Patches RCE Flaws in Routers, Switches
Google Patches Six Critical Mediaserver Bugs in Android
By Tom Spring May 2, 2017 Google pushed out its monthly Android patches Monday, addressing 17 critical vulnerabilities, six of which are tied to its problematic Mediaserver component. An additional four critical vulnerabilities related to Qualcomm components in Android handsets including Google’s own Nexus 6P,… Continue reading Google Patches Six Critical Mediaserver Bugs in Android
Google Chrome 58.0.3029.96 Stable
Google Chrome 58.0.3029.96 Stable This update includes 1 security fix contributed by external researchers. Please see the Chrome Security Page for more information. [$500][679306] High CVE-2017-5068: Race condition in WebRTC. Credit to Philipp Hancke https://chromereleases.googleblog.com/2017/05/stable-channel-update-for-desktop.html x86http://dl.google.com/release2/L5Dy7pCvt1g/58.0.3029.96_chrome_installer.exe x64http://dl.google.com/release2/APkxRLSdvko6/58.0.3029.96_chrome_installer.exe Google Chrome Enterprise https://enterprise.google.com/chrome/chrome-browser/thankyou.html?platform=win32msihttps://enterprise.google.com/chrome/chrome-browser/thankyou.html?platform=win64msi Take a look at the best antivirus, anti-malware, anti-spy, etc. software Powered… Continue reading Google Chrome 58.0.3029.96 Stable
Mozilla: Symantec certificate remediation plan not enough
2nd May 2017 by Peter Loshin Mozilla reviews the counter-proposal from Symantec and urges the CA giant to opt for Google’s recommendation to outsource its certificate activities. After investigating a number of issues with Symantec certificates, Mozilla joined Google in urging the antivirus vendor to temporarily hand over its certificate authority operations to… Continue reading Mozilla: Symantec certificate remediation plan not enough