Siemens has released updates and temporary fixes to address a medium-severity privilege escalation vulnerability affecting many of its industrial products.
read more
Tesco Bank ‘Hack’ Still a Mystery
Little is currently known about how money was stolen from thousands of Tesco Bank current account (checking account) holders last weekend. It is clear now, however, that approximately 9,000 customers rather than the initial estimate of 20,000 were affected.
read more
Attackers Exploited Chrome Zero-Day to Deliver Android Trojan
Cybercriminals delivered the Svpeng Trojan to Android users via Google AdSense and a zero-day vulnerability in the Android version of the Chrome web browser.
read more
Fully Operational TrickBot Banking Trojan Targets UK, Australia
TrickBot, a new piece of malware that experts believe is somehow linked to the notorious Dyre Trojan, is now fully operational and it has been used to target banks in the United Kingdom, Australia and other countries.
read more
Microsoft Patches Windows Zero-Day Exploited by Russian Hackers
The 14 security bulletins released on Tuesday by Microsoft address many serious issues, including a couple of Windows vulnerabilities actively exploited by malicious actors and bugs for which exploits are already publicly available.
read more
Security Industry Could Light Path for Data Analytics
A new survey and report shows strong faith but poor confidence in current data analytics. For example, 70% of respondents to the survey believe that analytics are integral to understanding how products are used; 71% to understanding business performance, and 70% to understanding fraud. But at the same time, only 43% are confident in the analytics insights for risk and security; 38% for customer insights; and just 38% for business operations.
read more
Google Washes Dirty COW From Android
Google’s Android Security Bulletin for November 2016 patched a total of 83 vulnerabilities in the operating system, one of which was the Dirty COW flaw in Linux kernel that was disclosed a few weeks back.
read more
Adobe Patches 9 Flash Player Flaws Reported via ZDI
Security updates released by Adobe on this Patch Tuesday address one vulnerability in Connect for Windows and nine arbitrary code execution flaws in Flash Player.
read more
Deserted Island, InfoSec Edition: What One Security Product Should You Choose?
As information security professionals, we spend a lot of time thinking about what security products are the highest priority. But as most of these decisions are mired in the nuances and details of the modern enterprise, I’d like to simplify things by bringing us back to a favorite childhood game: What would you bring on a deserted island?
read more
Merkel Warns of Possible Russian Interference in German Vote
Chancellor Angela Merkel on Tuesday said Russia could try to influence Germany's general elections next year through cyber attacks or disinformation campaigns, after Washington accused the Kremlin of similar meddling in the US vote.
read more
