Vulnerabilities

Threatpost 

U.S. Intelligence Cautions World Cup Travelers on Mobile Use

June 14, 2018 TH Author cyber attacks, Cybercrime, FBI, Hacks, mobile devices, network compromise, russia, Scams, us intelligence warning, VPN, Vulnerabilities, william evanina, World Cup

World Cup travelers should leave their mobile phones, laptops and tablets behind. READ MORE HERE…

Read more

Threatpost 

Microsoft Reveals Which Bugs It Won’t Patch

June 13, 2018 TH Author bug bounty, criteria, draft document, Microsoft, Patches, Vulnerabilities, Vulnerability

A draft document lays out its criteria for addressing various flaws and notes the exceptions. READ MORE HERE…

Read more

Threatpost 

Two Bugs in WordPress Tooltipy Plugin Patched

June 13, 2018 TH Author Bug, Cross Site Scripting, Cross-site request forgery, Featured, Hacks, plugin, tooltipy, Vulnerabilities, wordpress, XSS

The bugs include a reflected cross-site scripting glitch and a cross-site request forgery vulnerability. READ MORE HERE…

Read more

Threatpost 

Dixons Carphone Cyberattack Targets 5.9M Bank Cards

June 13, 2018 TH Author breach, cyber attack, Data, data breach, Dixons Carphone, GDPR, Hacks, payment card, retail, Vulnerabilities

Dixons Carphone said it discovered a massive cyberattack on its processing systems that targeted millions of payment cards and personal data records. READ MORE HERE…

Read more

Threatpost 

June Patch Tuesday: Microsoft Issues Fixes for DNS, Cortana

June 12, 2018 TH Author Cortana, DNS, june 2018, Microsoft, patch tuesday, Vulnerabilities, Web Security

One of the most serious issues is a critical remote code execution vulnerability in the Windows DNS, which could allow an attacker to take full control of the targeted machine. READ MORE HERE…

Read more

Threatpost 

Android Devices With Misconfigured ADB, a Ripe Target for Cryptojacking Malware

June 12, 2018 TH Author ADB.Miner, ADB.Minor worm, Android Debug Bridge, Android OS, Hacks, IoT, Malware, Mirai, Misconfigured ADB, port 5555, Vulnerabilities, Web Security

Vendors have been shipping Android products with Android Debug Bridge enabled, making them attractive targets for hackers. READ MORE HERE…

Read more

Threatpost 

Bypass Glitch Allows Malware to Masquerade as Legit Apple Files

June 12, 2018 TH Author Apple, bypass flaw, certificate authority, code signing, Developers, macOS, Malware, security products, Vulnerabilities

Malware can to worm its way onto Macs thanks to a recently discovered code-signing bypass flaw. READ MORE HERE…

Read more

Threatpost 

Foscam Issues Patches For Vulnerabilities in IP Cameras

June 11, 2018 TH Author buffer overflow bug, Featured, file deletion vulnerability, Foscam cameras, IoT, IoT security, shell command vulnerability, Vulnerabilities, Vulnerability

Researchers found three vulnerabilities in Foscam connected security cameras that could enable a bad actor to gain root access knowing only the camera’s IP address. READ MORE HERE…

Read more

Threatpost 

Lenovo Finally Patches Ancient BlueBorne Bugs in Tab and Yoga Tablets

June 8, 2018 TH Author Apple, blueborne, Google, Hacks, Lenovo, Lenovo Tab Essential, Microsoft, Mobile Security, patch, Tab Essential, TB-7304F, TB-7304I, TB-7304X, TB-7504F, TB-7504X TB-8704V, TB-8704X, TB-X304F, TB-X304L, TB-X304N, TB-X704A, TB-X704F, TB-X704L, TB-X704V, TB3-X70F, TB3-X70I, TB3-X70L, TB3-X70N, Vulnerabilities, Yoga Tab, YT-X703F, YT-X703L

Lenovo patches several popular tablet models to protect against BlueBorne vulnerabilities first identified in September 2017. READ MORE HERE…

Read more

Threatpost 

Researchers Warn of Microsoft Zero-Day RCE Bug

June 1, 2018 TH Author arbitrary code, Exploit, JScript, Microsoft, Microsoft vulnerability, Vulnerabilities, Web Security, Windows, zdi

A Microsoft Windows vulnerability enables remote attackers to execute arbitrary code – and there’s no patch yet. READ MORE HERE…

Read more