The Logitech Options app, which configures the company’s mice and keyboards in Windows, relies on an ineffective authentication mechanism that enables malicious webpages to execute code on a victim’s machine. Tavis Ormandy, vulnerability researcher with Google’s Project Zero, found the flaw in the Logitech Options app when he tried to rebind a button on his
admin
A convicted cyber-criminal once dubbed “the acid house king” has been sentenced to 20 months behind bars for a new fraud campaign which saw him use a bizarre home-made device. Tony Muldowney-Colston, aka Tony Colston-Hayter, of Brighton, pleaded guilty to nine counts of possession of an article for use in fraud and two counts of
by Lisa Vaas Are you one of the travelers to the US who’ve been stopped, questioned, and required to hand over your electronic devices for search? Our apologies: there’s a good chance that we still have your data kicking around on a USB drive. Somewhere. Maybe. Unless we lost it, I guess. The Office of
Netflix loves to test new ideas, and its latest experiment is an odd new feature that lets viewers watch a scene again. A selection of Netflix subscribers noticed the new addition, which serves a pop-up asking if they want to “watch this scene again” after certain ‘highlight’ scenes in a show. The streaming giant confirmed
The Cyber Security Gurukul Series is an initiative by the ‘Women Wizards Rule Tech (W2RT)’, a unique program designed exclusively for Women professionals in Core Technologies by noted industry body NASSCOM. Focused specifically on the IT-ITES/BPM, Product and R&D Firms, the key aim of this initiative is to enable women with deeper knowledge various technologies
An interview with ESET researchers Tomáš Gardoň and Filip Kafka on their research of a malware toolkit used in espionage against the Malaysian government In a presentation at AVAR 2018, ESET’s Tomáš Gardoň and Filip Kafka uncovered their research of a previously undocumented espionage toolkit, used in targeted attacks against the Malaysian government in mid-2018.
Microsoft today, on its year-end December Patch Tuesday, released security updates to patch a total 39 vulnerabilities its Windows operating systems and applications—10 of which are rated as critical and other important in severity. One of the security vulnerabilities patched by the tech giant this month is listed as publicly known at the time of
Earlier this year, Apple Music launched some of its top charts as playlist series. Today, YouTube is doing something similar. The company announced it’s making its YouTube Charts available as playlists in YouTube Music to users across the 29 markets where the music service is live. Each market will receive five of these “charts playlists” –
Over 40,000 credentials for accounts on government portals around the world have been leaked online, and are most likely up for sale on the dark web. Russian security firm Group-IB said usernames and cleartext passwords were available for various local and national government entities across more than 30 countries. It’s not clear exactly how they
by Lisa Vaas A recently patched trio of flaws in Samsung’s mobile site was leaving users vulnerable to attackers who could have reset their user passwords and hijacked their accounts, The Register reports. The flaws were found by security researcher Artem Moskowsky, who said that they were all cross-site request forgery (CSFR), or, alternatively, XSRF,
Volvo Trucks released teaser images Wednesday of the electric trucks it plans to bring to California next year as part of a demonstration project, the latest truck manufacturer to publicize its electric plans in the state. The attraction to California is no accident. The state has set aggressive targets to improve air quality and reduce
This post was written with contributions from the McAfee Advanced Threat Research team. The McAfee Advanced Threat Research team and McAfee Labs Malware Operations Group have discovered a new global campaign targeting nuclear, defense, energy, and financial companies, based on McAfee® Global Threat Intelligence. This campaign, Operation Sharpshooter, leverages an in-memory implant to download
ESET researchers discovered a new Android Trojan using a novel Accessibility-abusing technique that targets the official PayPal app, and is capable of bypassing PayPal’s two-factor authentication There is a new Trojan preying on Android users, and it has some nasty tricks up its sleeve. First detected by ESET in November 2018, the malware combines the
Adobe is closing out this year with its December Patch Tuesday update to address a massive number of security vulnerabilities for just its two PDF apps—more than double the number of what Microsoft patched this month for its several products. Adobe today released patches for 87 vulnerabilities affecting its Acrobat and Reader software products for
Nearly five years after announcing its acquisition of OculusVR, Facebook is finally ready to put the drama surrounding its founding behind it. Gaming giant ZeniMax Media’s lawsuit against Facebook over the misuse of intellectual property related to the founding of OculusVR has finally been settled. In a statement, ZeniMax CEO Robert Altman confirmed the settlement
The coming year will see a mix of old and new as phishing is supercharged with AI but reported vulnerabilities continue to cause organizations problems, according to Trend Micro. The security giant claimed in its predictions report this week that phishing will continue to grow in popularity as exploit kits fade. The number of detections
by John E Dunn What’s the safest way for a criminal to buy counterfeit banknotes? Curiously, it’s not necessarily from the dark web, as 235 people now “detained” by police have just discovered. According to Europol, between 19 November and 3 December police forces in 13 countries searched 300 properties, uncovering caches of drugs, guns
Tencent Music, China’s largest streaming company, has raised $1.1 billion in a U.S. IPO after it priced its shares at $13 a piece ahead of a listing on the Nasdaq. That makes it one of the largest tech listings of the year, but the pricing is at the bottom end of its $13-$15 range indicating
If you’re an avid reader of threat trends or a fan of red team exercises, you’ve probably come across a reference to the MITRE ATT&CK framework in the last few months. If you have ever wondered what it was all about or if you’ve never heard of it but are interested in how you can
There is no evidence that the flaw was misused during the six days it was alive, said the tech giant Google is closing down its social network Google+ for consumers sooner than planned following the discovery of a new security issue that exposed the data of 52.5 million users. Only two months ago, Google announced
Developers of phpMyAdmin, one of the most popular and widely used MySQL database management systems, today released an updated version 4.8.4 of its software to patch several important vulnerabilities that could eventually allow remote attackers to take control of the affected web servers. The phpMyAdmin project Sunday gave an early heads-up about the latest security
It’s an ad duoply battle. Facebook is starting to test search ads in its search bar and Marketplace, directly competing with Google’s AdWords. Facebook first tried Sponsored Results back in 2012 but eventually shut down the product. Now it’s going to let a small set of automotive, retail, and ecommerce industry advertisers show users in
“Profit is sweet, even if it comes from deception,” the playwright Sophocles wrote. Over two millennia later, the ancient Greek’s words still ring true. Or perhaps they need just a tweak — because now those “sweet” profits come because of deception. Deception technologies, that is. The market for deception security tech is expected to boom
The NHS will be banned from buying any more fax machines from next month as the government looks to upgrade the health service to more modern and secure communications platforms. Health secretary Matt Hancock has also ordered a complete ban on their use by March 2020, as part of a plan to bring the NHS into
by Danny Bradbury WordPress users are facing another security worry following the discovery of a massive botnet. Attackers have infected 20,000 WordPress sites by brute-forcing administrator usernames and passwords. They are then using those sites to infect even more WordPress installations. The botnet, which WordPress security company Wordfence discovered last week, infects sites using a
Walmart is continuing its strategy of revamping its businesses in Asia after the U.S. retail giant opened its first e-commerce store in Japan, where it is working with local retail giant Rakuten. The companies first announced a collaboration in January when they agreed to team up on the launch of an online grocery service in Japan
Your home screen is just a matrix of numbers. Your device loses its charge quickly, or restarts suddenly. Or, you notice outgoing calls that you never dialed. Chances are your smartphone has been hacked. The sad truth is that hackers now have a multitude of ways to get into your phone, without ever touching it.
The “evolution” of these markets is making cybercrime easier than ever before Are you in the market for stolen data? How about some tools to help you steal data or make money by hijacking other people’s computers? Well you’re in luck. It is now easier than ever to engage in cybercrime thanks to “next generation”
Google today revealed that Google+ has suffered another massive data breach, forcing the tech giant to shut down its struggling social network four months earlier than its actual scheduled date, i.e., in April 2019 instead of August 2019. Google said it discovered another critical security vulnerability in one of Google+’s People APIs that could have
You’d think Facebook would be faster at copying itself. Five years after Facebook Messenger took a cue from WhatsApp and Voxer to launch voice messaging, and four months after TechCrunch reported Instagram was testing its own walkie talkie feature, voice messaging is rolling out globally on Instagram Direct today. Users can hold down the microphone
- 1
- 2
- 3
- …
- 38
- Next Page »