With a little $10bn package proposed to help them on their way President Biden is preparing to assemble a crack US government cybersecurity team, and has pledged $10bn in funding to shore up the defenses of Uncle Sam's computer networks.…
10
Apple said Tuesday that three security bugs were discovered and released its iOS 14.4 update for users to download as a solution.
4
Apple said Tuesday that three security bugs were discovered and released its iOS 14.4 update for users to download as a solution.
9
Illustration by Alex Castro / The Verge Apple just released iOS 14.4 and iPadOS 14.4, and the update notes contain some worrying language (via TechCrunch). Under kernel updates, Apple notes that “a malicious application may be able to elevate privileges,” and under WebKit updates, it says “a remote attacker may be able to cause arbitrary code execution.” After both statements, the update notes say, “Apple is aware of a report that this issue may have been actively exploited.” What this means, broadly, is that you should update your iOS devices as soon as possible. To put the language into plain terms: Apple found a security hole in its operating systems, and it also has evidence that someone may have exploited it. The update notes don’t have any further details, so for now, we... Continue reading…
4
Google finds use of bogus Twitter, LinkedIn profiles to identify vulnerabilities.
3
Researchers uncovered TikTok vulnerability that could have allowed threat actors to steal users’ private data.
6
Data breaches are nothing new when it comes to various websites and social networks. Recently a cybercriminal forum has begun selling access to what it claims to be a database of phone numbers that belong to Facebook users. The bot network claims to allow customers to look up phone numbers using an automated Telegram bot. The data reportedly appears to … Continue reading
4
North Korean cyberattackers are targetting security researchers with fake social media profiles, emails, and other comms.
9
Flaw in popular video-sharing app left phone numbers and profile settings open to malicious activity.
10
Illustration by Alex Castro / The Verge Government-backed hackers based in North Korea are targeting individual security researchers through a number of means including a “novel social engineering method,” Google’s Threat Analysis Group is reporting. The campaign has reportedly been ongoing for several months, and worryingly appears to exploit unpatched Windows 10 and Chrome vulnerabilities. Although Google doesn’t say exactly what the aim of the hacking campaign is, it notes that the targets are working on “vulnerability research and development.” This suggests the attackers may be trying to learn more about non-public vulnerabilities that they can use in future state-sponsored attacks. Hackers set up a network of Twitter accounts and a cybersecurity blog According to... Continue reading…
2
Security eggheads discover their PCs chatting with Kim Jong Un's hackers North Korea's hackers homed in on specific infosec researchers and infected their systems with a backdoor after luring them to a suspicious website, Google revealed on Monday.…
2
Zscaler has discovered a new botnet named DreamBus whose C&C server is hosted on the Tor network.
2
SonicWall has warned customers that a zero-day vulnerability has been found affecting several of its VPN products.
7
The Department for Education needs to learn its lesson too Column  It is not good form to ruin people's online privacy. It is especially bad form if you're in a position of authority when you do this. It goes beyond bad form altogether if you're the Department for Education and you are potentially exposing schoolchildren to online attacks. That is criminal neglect.…
6
Xiaomi started a successful journey in the Android program with the release of the Mi A1. The device was well received and sold like hotcakes. ... The post Xiaomi Mi A2 lite is getting January 2021 security patch appeared first on Gizchina.com.
4
Not long ago, Oppo unveiled its Oppo Reno5 Pro 5G as its first mid-range contender to conquer the market in 2021. The company unveiled in ... The post Oppo Reno5 Pro 5G receives January 2021 security patch and camera improvements appeared first on Gizchina.com.
4
Over four and a half years, a home security technician gave himself access to more than 200 ADT Pulse accounts in order to spy on female customers.
4
DDoS amplification attacks have abused all kinds of legit services. Now, it's Windows.
2
Plus: A security company creeper, Biden’s cyberteam, and the rest of this week’s security news.
4
Hackers could have abused this fan-favorite Kindle feature to steal funds and personal data.
4
More

Top