Android Vulnerable to ‘High-Severity’ Overlay Attacks
Nearly all Android users should take action today and apply updates that are available to address this vulnerability.
Entries by
Equifax Says Breach Affects 143 Million People
Attackers accessed Social Security numbers, birth dates, addresses, and driver’s license numbers.
Programming Error is source of Microsoft Kernel Bug
Windows kernel flaw has been present since Windows 2000, and is on Windows 10.
Vulnerabilities in NVIDIA, Qualcomm, Huawei Bootloaders
Six exploits in chipsets used by Huawei, Qualcomm, MediaTek and NVIDIA found in popular Android handsets, according to University of California computer scientists.
4M Time Warner Cable Records on Misconfigured AWS S3
The S3 buckets, owned by BroadSoft, contained SQL database dumps, code, access logs, customer billing addresses, and phone numbers, belonging to clients Time Warner Cable (TWC).
Military Contractor Vendor Leaks CVs with AWS S3
Applicants were seeking employment with a private military contractor, TigerSwan, blaming a 3rd party recruitor, TalentPen LLC, for the leak.
Living with password re-use
We are often told that re-using passwords is dangerous. The idea is simple; if criminals steal your password from one website, they will try and use it on your other online accounts. This could be a really important account, like your email. We know we should use a different password for every online service. We also know that most […]
US Government Site Was Hosting Ransomware
US .gov site was hosting a .zip archive containing JavaScript that with obfuscated PowerShell, downloading a gif file which is a Cerber executable.
New Locky Variant Strikes Again
Locky is notorious for its effectiveness and profitability. In the last two years, Locky has extorted almost $7.8 million from victims, according to a recent study by Google.
Revamped Nukebot Malware Changes Targets, Adds Functions
The revamped Nukebot banking trojan has shifted from stealing bankcard data to quietly downloading malicious payloads for web-injects, cryptocurrency mining, and taking screenshots of systems.