Security researchers have discovered a total of eight vulnerabilities in NPort serial device servers produced by Taiwan-based industrial automation solutions provider Moxa, ICS-CERT reported on Thursday.
read more
Google Launches OSS-Fuzz Open Source Fuzzing Service
Just two months after Microsoft announced its Project Springfield code fuzzing service, Google has launched the beta of its own OSS-Fuzz. The purpose in both cases is to help developers locate the bugs that eventually lead to breaches. But the services, like the two organizations, are very different: one is paid for while the other is free; one is proprietary while the other is open source.
read more
Researchers Propose Software Mitigations for Rowhammer Attacks
A team of researchers has proposed two software-based methods that could be used to mitigate Rowhammer, a type of attack that exploits weaknesses in the design of dynamic random-access memory (DRAM).
read more
Russia Says Foreign Spies Plotted Huge Cyberattack
Russia on Friday said it had uncovered plans by foreign intelligence services to carry out massive cyberattacks this month targeting the country's financial system.
The FSB security service said in a statement that it had received information on "plans by foreign secret services to carry out large-scale cyberattacks from December 5."
read more
Dark Web Vendor “IcyEagle” Sentenced to Prison
Aaron James Glende, a 35-year-old from Winona, Minnesota, was sentenced this week by an Atlanta court to four years and two months in prison for selling stolen information on a dark web marketplace called AlphaBay.
read more
FBI, GCHQ Get Foreign Hacking Authority
read more
Continue readingBug Allows Activation Lock Bypass on iPhone, iPad
Researchers have found a bug that can be used to bypass Apple’s Activation Lock feature and gain access to the homescreen of locked iPhones and iPads running the latest version of iOS.
read more
Global Police Smash Huge Online Crime Network: Europol
In one of the biggest takedowns to date, police across the globe have smashed a massive criminal network providing online services including malware attacks that infected half a million computers worldwide, Europol said Thursday.
read more
Multifunctional “Proteus” Malware Emerges
A recently observed piece of multifunctional malware can be used to mine for crypto-currencies, log user keystrokes, and download additional malware onto compromised machines, Fortinet security researchers have discovered.
read more
European Banks Targeted by “SmsSecurity” Android Trojan
The cybercriminals behind a campaign first analyzed in 2014 continue to improve their Android malware, including with anti-analysis mechanisms, device rooting capabilities, and remote access features via the TeamViewer app.
read more
