Category: Anti-malware

By Eduard Kovacs on May 17, 2017   Updates released by Schneider Electric for its VAMPSET and SoMachine HVAC products patch several medium and high severity vulnerabilities that can be exploited for denial-of-service (DoS) attacks and arbitrary code execution. Advisories describing the flaws were published recently by both ICS-CERT and Schneider Electric. One of the… Continue reading Schneider Patches Flaws in VAMPSET, SoMachine Products

                                    This (probably) isn’t a spear phishing attack but we were too afraid to verify   17 May 2017,  Gareth Corfield   Official anti-ransomware advice issued by UK police to businesses can only be read by clicking on a link titled “Ransomware” which leads direct to a file helpfully named… Continue reading Police anti-ransomware warning is hotlinked to ‘ransomware.pdf’

—–BEGIN PGP SIGNED MESSAGE—– Hash: SHA256   ******************************************************************** Title: Microsoft Security Update Releases Issued: May 16, 2017 ********************************************************************   Summary =======   The following CVEs have undergone a major revision increment.   * CVE-2017-0254 * CVE-2017-0264 * CVE-2017-0265     Revision Information: =====================   CVE-2017-0254    – Title: CVE-2017-0254 | Microsoft Office Memory Corruption   … Continue reading Microsoft Security Update Releases Issued: May 16, 2017

The company wouldn’t say how many customers were affected, but the breach affected over 220 stores.                              By Zack Whittaker for Zero Day | May 16, 2017   A credit card breach at Brooks Brothers took a year to get under control, according to a data breach notification filed this… Continue reading Clothing giant Brooks Brothers hit by year-long credit card data breach

16th May 2017  By Dell Cameron                                               A trove of more than 560 million login credentials has been exposed by a leaky database, researchers revealed on Tuesday, including email addresses and passwords stolen from as many as 10 popular online services.   The dataset, which… Continue reading Over 560 Million Passwords Discovered in Anonymous Online Database

By AFP on May 16, 2017   An 11-year-old “cyber ninja” stunned an audience of security experts Tuesday by hacking into their bluetooth devices to manipulate a teddy bear and show how interconnected smart toys “can be weaponized”. American wunderkind Reuben Paul, may be still only in 6th grade at his school in Austin, Texas,… Continue reading Cyber Kid Stuns Experts Showing Toys Can be ‘Weapons’

May 16, 2017  By Michael Mimoso                                                     Popcorn in hand, the ShadowBrokers say they’re taking in the WannaCry outbreak from the sidelines before starting in June a subscription service for new exploits and stolen data… Continue reading ShadowBrokers Planning Monthly Exploit, Data Dump Service

This is a rather complex scheme to get people to install a Chrome extension that’s actually adware                                       May 15, 2017 20:50 GMT  ·  By Gabriela Vatu   A new adware is circulating online, tricking users to visit a modified domain posing as whatsapp.com. The fake URL – шһатѕарр.com… Continue reading Fake WhatsApp Site Helps Spread Adware via Chrome Extension

By Diego Perez  15 May 2017                                                          Over the years, we have witnessed how cybercriminals have developed and implemented sophisticated new techniques to outwit users. That being said, one thing has not changed and remains a constant challenge: ensuring perseverance and avoiding detection both by security… Continue reading Malicious registry keys: Reflective injection

Name and information link Available for Release date tvOS 10.2.1 Apple TV (4th generation) 15 May 2017 iCloud for Windows 6.2.1 Windows 7 and later 15 May 2017 Safari 10.1.1 OS X Yosemite 10.10.5, OS X El Capitan 10.11.6, and macOS Sierra 10.12.5 15 May 2017 iTunes 12.6.1 for Windows Windows 7 and later 15 May… Continue reading Apple security updates 15th May 2017