People using the Spotify Free online music service have been served malicious advertisements that could automatically open a web browser and redirect them to malware-laden sites.
read more
Using Apache Hadoop to Meet Cybersecurity Challenges
Apache Hadoop turned 10 this year.
read more
GE Machine Monitoring System Plagued by Serious Flaw
A serious vulnerability found in one of GE’s Bently Nevada condition and vibration monitoring products can be exploited by remote attackers to gain unauthorized access to affected devices, ICS-CERT warned on Thursday.
read more
iOS 10’s Safari Doesn’t Keep Private Browsing Private
The Safari browser in iOS 10 no longer offers the same level of privacy as before when it comes to Private Browsing, a researcher has discovered.
read more
VMware Patches Directory Traversal Flaw in Horizon View
VMware has released updates for the Windows versions of its Horizon View product to address an important vulnerability that could lead to information disclosure.
read more
X.Org Library Flaws Allow Privilege Escalation, DoS Attacks
X.Org developers released patches and updates to address over a dozen vulnerabilities found in several client libraries. The flaws can be exploited by local or remote attackers to cause a denial-of-service (DoS) condition or escalate privileges.
read more
Cerber Ransomware Can Now Kill Database Processes
Cerber, one of the most prevalent ransomware families this year, is now using random extensions for encrypted files and is now able to kill the processes of various database servers, researchers reveal.
read more
The Cyber Risk of Mixing Business with Pleasure
Technical and Process Controls for the Enterprise Must Extend to Employees and How They Engage in Personal Services
read more
Russian Hackers May Have Manipulated Leaked WADA Data
In a statement published Wednesday, October 5, the World Anti-Doping Agency (WADA) provided an update on investigations into the August Fancy Bear hack and data leak in September. FireEye/Mandiant has been employed to do the forensic investigation. As of Oct.
read more
Suspected Lizard Squad Hackers Arrested in US, Netherlands
Two teenagers suspected of being members of the Lizard Squad and PoodleCorp hacking groups were arrested last month by law enforcement authorities in the United States and the Netherlands.
read more
