Archive
Cisco Patches High-Severity Bug in VoIP Phones
A range of business customers could be impacted by a high-severity security flaw discovered in Cisco VoIP phones. The vendor issued a patch on Wednesday. Cisco also patched two medium-security flaws today in its FireSIGHT management platform for network security;
Oracle announced it will be releasing a critical patch on July 17 which will address 334 security vulnerabilities, with the most critical of which having a CVSS 3.0 Base Score of 9.8. The patch will affect hundreds of products and
It has been reported that a hacker was found selling sensitive US Air Force documents on the dark web for between $150 and $200. Cybercrime tracker Recorded Future reported that it discovered a hacker attempting to sell secret documents about
Microsoft patches 17 critical bugs and 34 important bugs as part of its monthly security bulletin. Browser vulnerabilities took center stage in Microsoft’s July Patch Tuesday security bulletin. In all, Microsoft patched 17 bugs rated critical, with ten tied to
Fresh Spectre Variants Come to Light
The newly-discovered Spectre variants can be exploited to uncover confidential data via microarchitectural side channels in CPUs. Two new speculative execution bugs have earned researchers a $100,000 bug bounty from Intel. MIT’s Vladimir Kiriansky and independent researcher Carl Waldspurger uncovered
Notorious ‘Hijack Factory’ Shunned from Web
Score one for the good guys: Bitcanal, a Portuguese Web hosting firm long accused of helping spammers hijack large swaths of dormant Internet address space over the years, was summarily kicked off the Internet this week after a half-dozen of
Stolen Taiwanese Certs Used in Malware Campaign
The company said Tuesday it has signed a deal to acquire AlienVault, a software security company based in San Mateo, California, that specializes in detecting threats. The buyout will expand AT&T’s security services to small and medium-sized companies. “AlienVault’s expertise
Stolen Taiwanese Certs Used in Malware Campaign
Security researchers have discovered yet another cyber-attack campaign using stolen certificates to circumvent traditional security tools. The tactic was being used to launch a remotely controlled backdoor dubbed Plead and a related password stealer, according to Eset senior malware researcher,
Adobe has released security patches for a total 112 vulnerabilities in its products, most of which have a higher risk of being exploited. The vulnerabilities addressed in this month’s patch Tuesday affect Adobe Flash Player, Adobe Experience Manager, Adobe Connect,
New macOS malware targets crypto community via chat networks Slack and Discord. Hackers using MacOS malware are targeting cryptocurrency investors that use both the Slack and Discord chat platforms. The malware, dubbed OSX.Dummy, uses an unsophisticated infection method, but those
The head of the international department of the China Banking and Insurance Regulatory Commission has warned against “mythologizing” blockchain technology, news outlet South China Morning Post reported July 9. Speaking at the 5th Fintech Bund Summit in Shanghai on July
Besides Timehop, another data breach was discovered last week that affects users of one of the largest web hosting companies in Germany, DomainFactory, owned by GoDaddy. The breach initially happened back in last January this year and just emerged last
Twitter suspended more than 70 million fake accounts in May and June – about one million accounts a day, but its efforts to purge malicious and spam accounts may have contributed to a 9.8 percent plunge in its stock Monday,
The July Android Security bulletin tackles 44 vulnerabilities in all, with the bulk rated high in severity. Google issued 44 patches for its Android operating system as part of its July Security Bulletin this week. Of those vulnerabilities, 11 were
A look at the underground cybercrime landscape in 2018 shows a dynamic and quick-reacting community in the face of a successful crackdowns by law enforcement. Despite several successful crackdowns on several cybercriminal underworld gangs, miscreants have been highly active during
People are still getting over the most controversial data scandal of the year, i.e., Cambridge Analytica scandal, and Facebook is under fire yet again after it emerges that a popular quiz app on the social media platform exposed the private