Carnegie Mellon University's CERT has issued a security advisory on the MEDHOST Perioperative Information Management System (PIMS), a system designed to streamline the progress from patient introduction to surgery. It's not a vulnerability we should expect these days – especially for a medical system – but PIMS contains hardcoded credentials. These credentials provide access to the customer database.
read more
Flaw Allows Hackers to Modify Texts on LG Smartphones
LG has released fixes for two serious vulnerabilities affecting the company’s Android smartphones, including a flaw that can be exploited remotely to delete and modify text messages.
read more
Researchers Devise “Perfect” Data Exfiltration Technique
read more
Continue readingNTP Servers Exposed to Long-Distance Wireless Attacks
AMSTERDAM – HACK IN THE BOX – Researchers have demonstrated that remote attackers can wirelessly change the time on network time protocol (NTP) servers over long distances using inexpensive devices.
read more
Bank Hackers Linked to Wider Campaign: Researchers
The hackers behind the $81 million heist from the Bangladesh central bank have likely been involved in a series of attacks on the financial system, a US security firm has concluded.
read more
Massive Locky Campaign Powered by JavaScript Attachments
Over the past few weeks, researchers have observed a spike in the number of malicious spam emails using attached JavaScript files to distribute malware such as the infamous Locky ransomware.
read more
Android Trojans Exploit Marshmallow’s Permission Model
The authors of Android Trojans have adapted their attack models to target the permission-granting model that Google has introduced in Android 6.0 Marshmallow, security firm Symantec has discovered.
read more
Reddit Counters Account Takeover Surge with Password Resets
In the light of several recent data breaches and account compromises, Reddit has decided to kick off a service-wide hunt for account takeovers and is prompting users to reset their passwords when such an issue is detected.
read more
TorrentLocker Detected Targeting Computers in Sweden
A new TorrentLocker campaign has been detected by Heimdal Security that is geographically focused on Sweden. And like earlier campaigns, this ransomware threat is delivered by email spam – this one spoofing an invoice from the international Telia communications firm headquartered in Stockholm, Sweden.
read more
“SandJacking” Attack Allows Hackers to Install Evil iOS Apps
read more
Continue reading