Posts From Seid Yassin
Tesla, VW, and dozens of other manufacturers had their sensitive information exposed due to a weak security link in their supply chains. The exposure occurred at industrial automation provider Level One Robotics via an inadequately secured rsync file transfer protocol
At least two separate threat groups have already developed automated exploitation scripts to exploit a recently patched vulnerability in Oracle WebLogic Servers and are conducting large-scale attacks after several proof-of-concepts were published. The attacks exploit CVE-2018-2893, a critical vulnerability in
Starting today with the release of Chrome 68, Google Chrome prominently marks all non-HTTPS websites as ‘Not Secure’ in its years-long effort to make the web a more secure place for Internet users. So if you are still running an
Symantec Introduces Email Threat Isolation
Symantec introduced Email Threat Isolation, a new solution targeting to protect users against spear phishing, credential theft, account takeover and ransomware attacks. The company claims that it is the first and currently only vendor to offer a complete and integrated
How is Google preventing its employees from getting hacked? By using some hardware anyone can buy: USB security keys. In 2017, the company began giving out physical security keys to all 85,000 employees. And since then, no employees have reported
Cybercriminals are putting a new spin on the old trick of hiding malware code in Exchangeable Image File Format (EXIF) data. Recently, attackers were observed using this technique in image files, rather than text files, and uploading them to googleusercontent.com
Singapore’s largest healthcare group, SingHealth, has suffered a massive data breach that allowed hackers to snatch personal information on 1.5 million patients who visited SingHealth clinics between May 2015 and July 2018. SingHealth is the largest healthcare group in Singapore
SCADA/ICS Dangers & Cybersecurity Strategies
Nearly 60% of surveyed organizations using SCADA or ICS reported they experienced a breach in those systems in the last year. Here are four tips for making these systems safer. A large number of government agencies and private organizations have
Malwarebytes researchers have detected the Magniber ransomware displaying notable improvements as its attack begin to expand within Asia after previously limiting its activity to South Korea. The malware has been active since its inception in 2013 and has been distributed
Dell EMC unveiled its latest Integrated Data Protection Appliance (IDPA), the Dell EMC IDPA DP4400, providing simple and powerful converged data protection to help mid-size organizations transform IT while combatting data sprawl and complexity. Comprehensive data protection has been a
Cisco Patches High-Severity Bug in VoIP Phones
A range of business customers could be impacted by a high-severity security flaw discovered in Cisco VoIP phones. The vendor issued a patch on Wednesday. Cisco also patched two medium-security flaws today in its FireSIGHT management platform for network security;
Oracle announced it will be releasing a critical patch on July 17 which will address 334 security vulnerabilities, with the most critical of which having a CVSS 3.0 Base Score of 9.8. The patch will affect hundreds of products and
It has been reported that a hacker was found selling sensitive US Air Force documents on the dark web for between $150 and $200. Cybercrime tracker Recorded Future reported that it discovered a hacker attempting to sell secret documents about
Microsoft patches 17 critical bugs and 34 important bugs as part of its monthly security bulletin. Browser vulnerabilities took center stage in Microsoft’s July Patch Tuesday security bulletin. In all, Microsoft patched 17 bugs rated critical, with ten tied to
Fresh Spectre Variants Come to Light
The newly-discovered Spectre variants can be exploited to uncover confidential data via microarchitectural side channels in CPUs. Two new speculative execution bugs have earned researchers a $100,000 bug bounty from Intel. MIT’s Vladimir Kiriansky and independent researcher Carl Waldspurger uncovered