Security News

Filter by:

Miscreants fling booby-trapped Office files at victims, no patch yet, says Microsoft

ActiveX and MSHTML, the gift that keeps on giving ... to intruders In an advisory issued on Tuesday, Microsoft said some of its users were targeted by poisoned Office documents that exploit an unpatched flaw to hijack their Windows machines.…
The Register 8 Sep 2021 13156 Views

Netgear Smart Switches Open to Complete Takeover

The Demon's Cries, Draconian Fear and Seventh Inferno security bugs are high-severity entryways to corporate networks.
Threatpost 8 Sep 2021 525 Views

U.S. Cyber Command Warns of Ongoing Attacks Exploiting Atlassian Confluence Flaw

The U.S. Cyber Command on Friday warned of ongoing mass exploitation attempts in the wild targeting a now-patched critical security vulnerability affecting Atlassian Confluence deployments that could be abused by unauthenticated attackers to take control of a vulnerable system. "Mass exploitation of Atlassian Confluence...
The Hacker News 8 Sep 2021 5448 Views

Bluetooth BrakTooth bugs could affect billions of devices

Vulnerabilities collectively referred to as BrakTooth are affecting Bluetooth stacks implemented on system-on-a-chip (SoC) circuits from over a dozen vendors.
Bleeping Computer 6 Sep 2021 522 Views

IoT Attacks Skyrocket, Doubling in 6 Months

The first half of 2021 saw 1.5 billion attacks on smart devices, with attackers looking to steal data, mine cryptocurrency or build botnets.
Threatpost 6 Sep 2021 386 Views

Jenkins struck by 'Confluenza' as US Cyber Command warns Atlassian flaw 'cannot wait'

How was your weekend? Got some patching done? The Jenkins team issued a reminder over the weekend that one should keep one's systems patched as it found itself with a compromised Confluence service.…
The Register 6 Sep 2021 10809 Views

ProtonMail Shares Activist's IP Address With Authorities Despite Its "No Log" Claims

End-to-end encrypted email service provider ProtonMail has drawn criticism after it ceded to a legal request and shared the IP address of anti-gentrification activists with law enforcement authorities, leading to their arrests in France. The Switzerland-based company...
The Hacker News 6 Sep 2021 10655 Views

SEC fines eight investment firms for cybersecurity breaches that leaked client info

Thousands of people had their personal information leaked by eight SEC-registered broker dealers and investment advisory firms over the last three years.
ZDnet 3 Sep 2021 655 Views

NSA: We 'don't know when or even if' a quantum computer will ever be able to break today's public-key encryption

Then again, it would say that America's National Security Agency has published an FAQ about quantum cryptography, saying it does not know "when or even if" a quantum computer will ever exist to "exploit" public-key cryptography.…
The Register 2 Sep 2021 10532 Views

Fujitsu says stolen data being sold on dark web 'related to customers'

A group called "Marketo" has claimed it has 4 GB of stolen data and purports to have 70 bids on it already.
ZDnet 31 Aug 2021 746 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY