We put a lot of faith in the prospect that our information is secure. Unfortunately, this is often just not the case. It is not hard for hackers and security ne'er-do-wells to get access to peoples' accounts when they use weak passwords incorporating little more than birthdates and pet names. This is especially true... Read more...
We'll come clean up front: it's true that these security exploits require local access, and due to that fact, the urgent need to update might be a bit overstated. In this case, though, the excitement is less about the breadth of the vulnerabilities and instead the severity. If you're confused, Lenovo published a... Read more...
Back in January, we covered a phishing report by Check Point that placed DHL as the number one most-imitated brand in phishing attacks for the fourth quarter of 2021. DHL spoofs, representing 23% of global phishing attacks, passed Microsoft spoofs, which sat at 20%. However, Check Point just released its phishing... Read more...
Update: British police say they have arrested seven individuals between the ages of 16 and 21 years old in connection with the investigation. "The City of London Police has been conducting an investigation with its partners into members of a hacking group," Detective Inspector Michael O'Sullivan told... Read more...
A ransomware gang known as LAPSUS$ has recently hit a number of big-name targets, including NVIDIA, Samsung, and Ubisoft, and the group may have now added Microsoft to that list. LAPSUS$ made waves at the end of February when news broke that NVIDIA had been hit by a cyber-attack. In an unexpected twist, LAPSUS$... Read more...
Imagine it's the year 20XX. Hopefully you're healthy. You're also sitting on your front porch watching Amazon's package drones whiz through the skies while awaiting your own delivery. It slowly starts to prepare for landing before suddenly veering off somewhere else! What happened!? Well, Michigan State University... Read more...
LastPass is telling its users that there is no evidence to suggest their passwords have been compromised, after previously sending out emails to some users stating their master passwords have been compromised. So what exactly is going on? According to LastPass, the email warnings were "likely triggered in... Read more...
When it was found that Microsoft Exchange on-premises was vulnerable to hackers, quite a bit of havoc ensued across a wide range of industries. Since then, the FBI obtained a court order to go in and remove backdoors to hacked servers, but there are likely many hacked Exchange servers still out there. In recent days... Read more...
Earlier this month, Facebook worked to downplay a data scraping operation that impacted nearly 533 million users on its social media platform. At that time, we viewed it as Facebook's attempt to simultaneously be evasive and attempt to save face. It seems this is legitimately Facebook's modus operandi; however, after... Read more...
LG released a security update last month that addresses a vulnerability that impacted a massive number of its smartphones. The security flaw, tracked as CVE-2020-12753, affected every single smartphone that LG made over the last seven years. The vulnerability was in the bootloader component that shipped with the LG... Read more...
Ring has faced challenges of late with hackers taking over accounts, among other things. Ring responded earlier this week to questions that five senators had sent to the company in the form of a letter about measures that it is taking to secure its line of video recording devices. The measures the company planned to... Read more...
A company that develops digital forensics tools for businesses and law enforcement specialists has found a way to hack into locked Apple iPhone devices running the latest version of iOS. The method is said to work on most iPhone models, from the iPhone 5s through the iPhone X, and is effective on iOS 12 through iOS... Read more...
If you use LastPass to manage your passwords, be advised that a recent update fixed a security issue that could allow an attacker to steal your login credentials. The issue is resolved in LastPass 4.33.0. However, if you do not have LastPass configured to update automatically, it is advised that you manually patch it... Read more...
An auction for a netbook model from 2008 that is running Windows XP SP3 has fetched more than $1.3 million from its final bid, with the buyer owning quite possibly the most expensive laptop in the world. Why did it sell for so much? It contains half a dozen malware samples that have collectively caused over $95... Read more...
LG is gearing up for a big MWC 2019 showing and is already teasing its flagship device that will be unveiled at the show. LG has in the past teased a device using a Snapdragon 855 SoC and packing a 5G modem for the show, but it's unclear if that device is the G8 ThinQ. LG has now announced that it has teamed up with... Read more...
A newly discovered security vulnerability in modern Intel X86 processors has been revealed that affects the processor's speculative execution technology – like Spectre and Meltdown – and can be used to access sensitive information, including encryption related data. Over the last day or two, patches have quietly... Read more...
Sometimes it feels like security and privacy are myths in this day and age of data leaks, hacking, and everything else. The latest example comes from a LocationSmart, a relatively obscure (to the public) location-as-a-service outfit has been leaking real-time location information of cell phone users on all of the... Read more...
Chip-level bugs Meltdown and Spectre continue to land chip-maker Intel in hot water. What do you do when every single chip you’ve produced since 1995 is now facing two of the most pervasive bugs your company has possibly ever experienced? Linux creator Linus Torvald brazenly suggests, honesty and complete candid... Read more...
Late last year a hack was perpetrated on what is called a "partner organization" that worked with the Australian Signals Directorate (ASD). The unnamed organization notified the ASD that it was hacked in November of 2016, and that outside parties gained access to its network. The small organization has only 50... Read more...
TrendMicro has published a report that claims that a "sizable" spam campaign is underway and other than just having a bunch of unwanted email to contend with, the spam campaign is also pushing ransomware. The spam campaign is said to be distributing the latest variant of Locky, which is the ransomware that invaded... Read more...
Large scale distributed denial of service (DDoS) attacks powered by thousands and sometimes millions of Internet of Things (IoT) devices that have been turned into a massive botnet is something that content delivery networks (CDNs) and service providers must be prepared for in 2017. Lest anyone thinks otherwise, yet... Read more...
Today's a bad day security. First it was discovered that Microsoft accidentally leaked what amounts to a golden key for Secure Boot system, and now we find out there's a rather serious vulnerability in the TCP implementation in all Linux systems since version 3.6 of the Linux kernel was deployed four years ago. Is... Read more...
1 2 3 Next