Security Archives - Page 361 of 515

Pierluigi Paganini February 19, 2016

Comodo Internet Security opened your PC to attackers

Comodo Internet Security, in the default configuration, installs an application called GeekBuddy that also installs a VNC server enabled by default. The hackers of the Google Project Zero Team have found another serious security issue in the Comodo’s protection software, it is a VNC server enabled by default with a password easy to guess. It […]

Pierluigi Paganini February 19, 2016

Tens of thousands of DVRs exposed on Internet with Hardcoded Passwords

According to a report published by Risk Based Security more than tens of thousands of DVRs are exposed on the Internet with a hardcoded password. According to a report published by Risk Based Security (RBS), the firmware of DVRs manufactured by China-based Zhuhai RaySharp contains hardcoded credentials that could be used by a remote hacker […]

Pierluigi Paganini February 18, 2016

A sophisticated variant of OceanLotus trojan targets OS X systems

In May 2015, the Chinese security firm Qihoo 360 published a report on a Trojan called OceanLotus that was being used since 2012 for APT attacks in the Chinese market. The APT attacks based on the OceanLotus focused on government organizations, research institutes, maritime agencies, and companies specializing in other activities. At the time were […]

Pierluigi Paganini February 18, 2016

VXE Flaw allowed threats to bypass FireEye detection engine

Researchers at Blue Frost Security firm discovered a flaw in the FireEye Virtual Execution Engine (VXE) that allows an attacker to completely bypass virtualization-based dynamic analysis and whitelist malware. Security researchers at Blue Frost Security have found a high severity vulnerability in FireEye products that allowed an attacker to bypass the company’s detection engine and […]

Pierluigi Paganini February 17, 2016

US Judge requests Apple to unlock San Bernardino shooter’s iPhone

A US magistrate ordered Apple to help unlock San Bernardino shooter’s iPhone, be aware it is demanding a tool to bypass the security mechanism. We discussed very often of the difficulties of the law enforcement in conducting investigations when suspects used devices that make use of encryption, the case that we are going to analyze is emblematic. Apple […]

Pierluigi Paganini February 15, 2016

A flaw in CISCO Universal Small Cell allows firmware retrieval

A flaw affecting the Cisco Universal Small Cell devices allows unauthenticated remote users to retrieve devices’ firmware, so Cisco urges patching these systems. Other problems for the IT giant Cisco, the company is asking service providers using its Universal Small Cell solutions to update their systems and install a patch to solve a serious security issue. […]

Pierluigi Paganini February 12, 2016

Interview with Troels Oerting on cybersecurity in modern organizations

An interview with Troels Oerting on the cyber security in modern organizations and the importance of the role of the Chief Information Security Officer. The role of the chief information security officer (CISO) has profoundly changed over the years, from IT security management to high-level risk management. Today a CISO is a crucial figure in […]

Pierluigi Paganini February 11, 2016

Poseidon Group, a single actor behind a long series of attacks

Experts at Kaspersky Lab have linked a series of cyber attacks started in 2001 to a single threat actor called the Poseidon Group. Experts at Kaspersky Lab have identified a single threat actor behind a long-known campaign of cyberattacks financially motivated. The group of hackers identified by Kaspersky dubbed Poseidon Group attempts to extort money […]

Pierluigi Paganini February 10, 2016

SAP fixed a flaw in xMII that could open the door to nation-state hackers

SAP fixed a vulnerability affecting SAP MII can be used as a starting point of multi-stage attacks aiming to get control over plant devices and manufacturing systems. SAP fixed a critical vulnerability in its application that could be exploited by hackers, especially nation-state actors, to compromise industrial manufacturing software. SAP issued a critical software update that […]

Pierluigi Paganini February 10, 2016

Crooks are offering Apple employees up to $23,000 for their login credentials

According to former Apple employees interviewed by the Business Insider, cyber criminals are offering Apple staffers in Ireland up to $23,000 for their login details. Insiders are one of the greatest security problems for any organizations, working from the inside they can operate under the radar for a log time stealing information and sabotaging processes and infrastructures. […]

Security

Comodo Internet Security opened your PC to attackers

Tens of thousands of DVRs exposed on Internet with Hardcoded Passwords

A sophisticated variant of OceanLotus trojan targets OS X systems

VXE Flaw allowed threats to bypass FireEye detection engine

US Judge requests Apple to unlock San Bernardino shooter’s iPhone

A flaw in CISCO Universal Small Cell allows firmware retrieval

Interview with Troels Oerting on cybersecurity in modern organizations

Poseidon Group, a single actor behind a long series of attacks

SAP fixed a flaw in xMII that could open the door to nation-state hackers

Crooks are offering Apple employees up to $23,000 for their login credentials

newsletter

Subscribe to my email list and stay
up-to-date!

recent articles

Critical Sudo bugs expose major Linux distros to local Root exploits

Google fined $314M for misusing idle Android users' data

A flaw in Catwatchful spyware exposed logins of +62,000 users

China-linked group Houken hit French organizations using zero-days

Cybercriminals Target Brazil: 248,725 Exposed in CIEE One Data Breach

QUICK LINKS

Security

newsletter

Subscribe to my email list and stay up-to-date!

recent articles

Subscribe to my email list and stay
up-to-date!