By Eduard Kovacs on May 17, 2017 Updates released by Schneider Electric for its VAMPSET and SoMachine HVAC products patch several medium and high severity vulnerabilities that can be exploited for denial-of-service (DoS) attacks and arbitrary code execution. Advisories describing the flaws were published recently by both ICS-CERT and Schneider Electric. One of the… Continue reading Schneider Patches Flaws in VAMPSET, SoMachine Products
Category: Anti-malware
Auto Added by WPeMatico
Police anti-ransomware warning is hotlinked to ‘ransomware.pdf’
This (probably) isn’t a spear phishing attack but we were too afraid to verify 17 May 2017, Gareth Corfield Official anti-ransomware advice issued by UK police to businesses can only be read by clicking on a link titled “Ransomware” which leads direct to a file helpfully named… Continue reading Police anti-ransomware warning is hotlinked to ‘ransomware.pdf’
Microsoft Security Update Releases Issued: May 16, 2017
—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256 ******************************************************************** Title: Microsoft Security Update Releases Issued: May 16, 2017 ******************************************************************** Summary ======= The following CVEs have undergone a major revision increment. * CVE-2017-0254 * CVE-2017-0264 * CVE-2017-0265 Revision Information: ===================== CVE-2017-0254 – Title: CVE-2017-0254 | Microsoft Office Memory Corruption … Continue reading Microsoft Security Update Releases Issued: May 16, 2017
Clothing giant Brooks Brothers hit by year-long credit card data breach
The company wouldn’t say how many customers were affected, but the breach affected over 220 stores. By Zack Whittaker for Zero Day | May 16, 2017 A credit card breach at Brooks Brothers took a year to get under control, according to a data breach notification filed this… Continue reading Clothing giant Brooks Brothers hit by year-long credit card data breach
Over 560 Million Passwords Discovered in Anonymous Online Database
16th May 2017 By Dell Cameron A trove of more than 560 million login credentials has been exposed by a leaky database, researchers revealed on Tuesday, including email addresses and passwords stolen from as many as 10 popular online services. The dataset, which… Continue reading Over 560 Million Passwords Discovered in Anonymous Online Database
Cyber Kid Stuns Experts Showing Toys Can be ‘Weapons’
By AFP on May 16, 2017 An 11-year-old “cyber ninja” stunned an audience of security experts Tuesday by hacking into their bluetooth devices to manipulate a teddy bear and show how interconnected smart toys “can be weaponized”. American wunderkind Reuben Paul, may be still only in 6th grade at his school in Austin, Texas,… Continue reading Cyber Kid Stuns Experts Showing Toys Can be ‘Weapons’
ShadowBrokers Planning Monthly Exploit, Data Dump Service
May 16, 2017 By Michael Mimoso Popcorn in hand, the ShadowBrokers say they’re taking in the WannaCry outbreak from the sidelines before starting in June a subscription service for new exploits and stolen data… Continue reading ShadowBrokers Planning Monthly Exploit, Data Dump Service
Fake WhatsApp Site Helps Spread Adware via Chrome Extension
This is a rather complex scheme to get people to install a Chrome extension that’s actually adware May 15, 2017 20:50 GMT · By Gabriela Vatu A new adware is circulating online, tricking users to visit a modified domain posing as whatsapp.com. The fake URL – шһатѕарр.com… Continue reading Fake WhatsApp Site Helps Spread Adware via Chrome Extension
Malicious registry keys: Reflective injection
By Diego Perez 15 May 2017 Over the years, we have witnessed how cybercriminals have developed and implemented sophisticated new techniques to outwit users. That being said, one thing has not changed and remains a constant challenge: ensuring perseverance and avoiding detection both by security… Continue reading Malicious registry keys: Reflective injection
Apple security updates 15th May 2017
Name and information link Available for Release date tvOS 10.2.1 Apple TV (4th generation) 15 May 2017 iCloud for Windows 6.2.1 Windows 7 and later 15 May 2017 Safari 10.1.1 OS X Yosemite 10.10.5, OS X El Capitan 10.11.6, and macOS Sierra 10.12.5 15 May 2017 iTunes 12.6.1 for Windows Windows 7 and later 15 May… Continue reading Apple security updates 15th May 2017