News aggregator

Microsoft Brings Defender Antivirus for Linux, Coming Soon for Android and iOS

THN - Fri, 21/02/2020 - 13:36
Almost within a year after releasing Microsoft Defender Advanced Threat Protection (ATP) for macOS computers, Microsoft today announced a public preview of its antivirus software for various Linux distributions, including Ubuntu, RHEL, CentOS and Debian. If this news hasn't gotten you excited yet... Microsoft is also planning to soon release Defender ATP anti-malware apps for smartphones [email protected]

Google Bans 600 Android Apps from Play Store for Serving Disruptive Ads

THN - Fri, 21/02/2020 - 06:05
Google has banned nearly 600 Android apps from the Play Store for bombarding users with disruptive ads and violating its advertising guidelines. The company categorizes disruptive ads as "ads that are displayed to users in unexpected ways, including impairing or interfering with the usability of device functions," such as a full-screen ad served when attempting to make a phone call. Although

Scam Alert: You've Been Selected for 'Like of the Year 2020' Cash Prizes

THN - Thu, 20/02/2020 - 09:40
Cybersecurity researchers have discovered a large-scale ongoing fraud scheme that lures unsuspecting Russian Internet users with promises of financial rewards to steal their payment card information. According to researchers at Group-IB, the multi-stage phishing attack exploited the credibility of Russian Internet portal Rambler to trick users into participating in a fictitious "Like of the

Deal: Cloud And Networking Certification Training ~ Get 97% OFF

THN - Thu, 20/02/2020 - 08:08
Cloud computing and networking are two of the most significant areas of growth in the IT business. Companies need engineers who can maintain distributed software and keep the company connected. If you want to work in either niche, the Essential Cloud & Networking Certification Training Bundle offers 93 hours of essential knowledge. You can pick up all 5 courses now for only $39.99 via the THN

Adobe Patches Critical Bugs Affecting Media Encoder and After Effects

THN - Thu, 20/02/2020 - 07:09
Adobe today released out-of-band software updates for After Effects and Media Encoder applications that patch a total of two new critical vulnerabilities. Both critical vulnerabilities exist due to out-of-bounds write memory corruption issues and can be exploited to execute arbitrary code on targeted systems by tricking victims into opening a specially crafted file using the affected software.

Ring Makes 2-Factor Authentication Mandatory Following Recent Hacks

THN - Wed, 19/02/2020 - 11:24
Smart doorbells and cameras bring a great sense of security to your home, especially when you're away, but even a thought that someone could be spying on you through the same surveillance system would shiver up your spine. Following several recent reports of hackers gaining access to people's internet-connected Ring doorbell and security cameras, Amazon yesterday announced to make two-factor

US Govt Warns Critical Industries After Ransomware Hits Gas Pipeline Facility

THN - Wed, 19/02/2020 - 08:43
The U.S. Department of Homeland Security's Cybersecurity and Infrastructure Security Agency (CISA) earlier today issued a warning to all industries operating critical infrastructures about a new ransomware threat that if left unaddressed could have severe consequences. The advisory comes in response to a cyberattack targeting an unnamed natural gas compression facility that employed

Iranian Hackers Exploiting VPN Flaws to Backdoor Organizations Worldwide

THN - Tue, 18/02/2020 - 12:13
A new report published by cybersecurity researchers has unveiled evidence of Iranian state-sponsored hackers targeting dozens of companies and organizations in Israel and around the world over the past three years. Dubbed "Fox Kitten," the cyber-espionage campaign is said to have been directed at companies from the IT, telecommunication, oil and gas, aviation, government, and security sectors

Cynet Offers Free Threat Assessment for Mid-sized and Large Organizations

THN - Tue, 18/02/2020 - 08:42
Visibility into an environment attack surface is the fundamental cornerstone to sound security decision making. However, the standard process of 3rd party threat assessment as practiced today is both time consuming and expensive. Cynet changes the rules of the game with a free threat assessment offering (click here to learn more) based on more than 72 hours of data collection, enabling

Critical Bug in WordPress Theme Plugin Opens 200,000 Sites to Hackers

THN - Mon, 17/02/2020 - 19:09
A popular WordPress theme plugin with over 200,000 active installations contains a severe but easy-to-exploit software vulnerability that, if left unpatched, could let unauthenticated remote attackers compromise a wide range of websites and blogs. The vulnerable plugin in question is 'ThemeGrill Demo Importer' that comes with free as well as premium themes sold by the software development

OpenSSH now supports FIDO U2F security keys for 2-factor authentication

THN - Mon, 17/02/2020 - 14:18
Here's excellent news for sysadmins. You can now use a physical security key as hardware-based two-factor authentication to securely log into a remote system via SSH protocol. OpenSSH, one of the most widely used open-source implementations of the Secure Shell (SSH) Protocol, yesterday announced the 8.2 version of the software that primarily includes two new significant security enhancements.

A Dozen Vulnerabilities Affect Millions of Bluetooth LE Powered Devices

THN - Mon, 17/02/2020 - 12:10
A team of cybersecurity researchers late last week disclosed the existence of 12 potentially severe security vulnerabilities, collectively named 'SweynTooth,' affecting millions of Bluetooth-enabled wireless smart devices worldwide—and worryingly, a few of which haven't yet been patched. All SweynTooth flaws basically reside in the way software development kits (SDKs) used by multiple

U.S. Charges Huawei with Stealing Trade Secrets from 6 Companies

THN - Fri, 14/02/2020 - 09:02
The US Department of Justice (DoJ) and the Federal Bureau of Investigation (FBI) charged Huawei with racketeering and conspiring to steal trade secrets from six US firms, in a significant escalation of a lawsuit against the Chinese telecom giant that began last year. Accusing Huawei and its affiliates of "using fraud and deception to misappropriate sophisticated technology from US

500 Chrome Extensions Caught Stealing Private Data of 1.7 Million Users

THN - Fri, 14/02/2020 - 07:59
Google removed 500 malicious Chrome extensions from its Web Store after they found to inject malicious ads and siphon off user browsing data to servers under the control of attackers. These extensions were part of a malvertising and ad-fraud campaign that's been operating at least since January 2019, although evidence points out the possibility that the actor behind the scheme may have been

Download: Definitive 'IR Management and Reporting' Presentation Template

THN - Wed, 12/02/2020 - 11:35
The realistic approach to security is that incidents occur. While ideally, the CISO would want to prevent all of them, in practice, some will succeed to a certain degree—making the ability to efficiently manage an incident response process a mandatory skill for any CISO. Moreover, apart from the management of the actual response process, the CISO must also be able to efficiently communicate

Emotet Malware Now Hacks Nearby Wi-Fi Networks to Infect New Victims

THN - Wed, 12/02/2020 - 10:47
Emotet, the notorious trojan behind a number of botnet-driven spam campaigns and ransomware attacks, has found a new attack vector: using already infected devices to identify new victims that are connected to nearby Wi-Fi networks. According to researchers at Binary Defense, the newly discovered Emotet sample leverages a "Wi-Fi spreader" module to scan Wi-Fi networks, and then attempts to

Update Microsoft Windows Systems to Patch 99 New Security Flaws

THN - Tue, 11/02/2020 - 18:04
A few hours after Adobe today released security updates for five of its widely-distributed software, Microsoft also issued its February 2020 Patch Tuesday edition with patches for a total of 99 new vulnerabilities. According to the advisories, 12 of the total issues patched by the tech giant this month are critical in severity, and the remaining 87 have been listed as important. Five of the

Adobe Releases Patches for Dozens of Critical Flaws in 5 Software

THN - Tue, 11/02/2020 - 15:43
Here comes the second 'Patch Tuesday' of this year. Adobe today released the latest security updates for five of its widely used software that patch a total of 42 newly discovered vulnerabilities, 35 of which are critical in severity. The first four of the total five affected software, all listed below, are vulnerable to at least one critical arbitrary code execution vulnerability that could

App Used by Israel's Ruling Party Leaked Personal Data of All 6.5 Million Voters

THN - Tue, 11/02/2020 - 10:54
An election campaigning website operated by Likud―the ruling political party of Israeli Prime Minister Benjamin Netanyahu―inadvertently exposed personal information of all 6.5 million eligible Israeli voters on the Internet, just three weeks before the country is going to have a legislative election. In Israel, all political parties receive personal details of voters before the election, which

U.S. Charges 4 Chinese Military Hackers Over Equifax Data Breach

THN - Mon, 10/02/2020 - 13:51
The United States Department of Justice today announced charges against 4 Chinese military hackers who were allegedly behind the Equifax data breach that exposed the personal and financial data of nearly 150 million Americans. In September 2017, credit reporting agency Equifax disclosed it had become a victim of a massive cyberattack that left highly sensitive data of nearly half of the U.S.


Subscribe to Shiga Tecnologia aggregator