Netflix researcher spots TCP SACK flaws in Linux and FreeBSD

Three vulnerabilities in the FreeBSD and Linux kernels could allow attackers to induce a denial-of-service by clogging networking I/O. more…

Pass the salt! Popular CMSs aren’t securing passwords properly

A group of researchers has discovered that many of the web’s most popular content management systems are using obsolete algorithms to protect their users’ passwords. more…

Hospitals are being suffocated by robocalls

Some pretend to be hospitals to get patients’ payment data. Others pose as the government and try to get confidential data from hospitals. more…

Millions of Venmo transactions scraped (again)

Not much has changed since a year ago, when a bot was tweeting out publicly visible Venmo “drug” deals from the public-by-default company. more…

Oracle Patches Another Remote Code Execution Flaw in WebLogic

Oracle on Tuesday announced that it has released emergency patches for a critical remote code execution vulnerability affecting WebLogic Server, a Java EE application server that is part of the company’s Fusion Middleware offering. read more more…

Firefox Zero-Day Vulnerability Exploited in Targeted Attacks

Updates released by Mozilla for its Firefox web browser on Tuesday patch a critical vulnerability that has been actively exploited in attacks. read more more…

What the latest iOS passcode hack means for you

A mobile device forensics company now says it can break into any Apple device running iOS 12.3 or below. Israeli-based Cellebrite made the announcement on an updated webpage and through a tweet where it asserted it can unlock and extract data from all iOS and “high-end Android” devices. [ Further reading: The wireless road warrior’s […] more…

France SeeksHacker for Trial Over Death Following Prank

French prosecutors on Tuesday ordered infamous French-Israeli hacker Ulcan to stand trial over a telephone prank targeting the father of a French journalist who died soon after of a heart attack. read more more…

France Seeks Hacker for Trial Over Death Following Prank

French prosecutors on Tuesday ordered infamous French-Israeli hacker Ulcan to stand trial over a telephone prank targeting the father of a French journalist who died soon after of a heart attack. read more more…

New Variant of the Houdini Worm Emerges

A new variant of the well-known Houdini Worm has been spotted in phishing attacks earlier this month, Cofense’s security researchers report.  read more more…

London Gallery Chief Quits After Israel Spyware Report

The head of London’s Serpentine Galleries, Yana Peel, resigned on Tuesday following a newspaper report about her links to a controversial Israeli spyware firm. The board of trustees of the contemporary art galleries announced “with a mix of gratitude and regret” that it has accepted Peel’s resignation, adding that she would be “sorely missed”. read […] more…

Free Cloudflare Tool Helps CAs Securely Issue Certificates

Internet performance and security firm Cloudflare on Tuesday announced the availability of a free API designed to help certificate authorities (CAs) securly issue certificates by ensuring that malicious actors cannot complete the domain control validation process via BGP hijacking and DNS spoofing attacks. read more more…

Can All-in-One Printers Be Hacked? “Hackable?” Sets the Fax Straight

The heyday of fax technology may have been in the 80s, but all-in-one printers found throughout homes and offices often still include a fax machine. And telephonic transmission has resisted the rise of email and other internet-connected messaging tools in a variety of fields, including healthcare and law enforcement. On the latest episode of “Hackable?” […] more…

Modular Backdoor Can Spread Over Local Network

A recently discovered backdoor can spread itself over a local network, in addition to allowing attackers to install additional malware onto compromised machines.  read more more…

Critical Flaw Exposes TP-Link Wi-Fi Extenders to Remote Attacks

A critical remote code execution vulnerability discovered by an IBM X-Force researcher allows an unauthenticated attacker to take complete control of some TP-Link Wi-Fi extenders. Firmware updates that should patch the flaw have been made available by the vendor. read more more…

New MongoDB field-level encryption can help prevent data breaches

MongoDB has released a new version today featuring field-level encryption (FLE), a new mechanism that protects sensitive information stored in a database even if attackers compromise the database itself or the server it runs on. [ Email encryption review: HPE/Voltage Secure Email vs. Virtru Pro vs. Inky vs. Zix Gateway vs, Symantec Email Security.cloud | […] more…

2017 Antivirus News | Powered by WordPress | Fluxipress Theme | Show My IP Address, check blacklists | Free Favicon, Android and Apple Icon Generator | Bitcoin and Crypto Currency News