The FBI is taking "very seriously" the possibility a foreign country is trying to meddle with America's electoral process and even influence voting outcomes, the agency's director James Comey said Thursday.
read more
Privilege Escalation, DoS Vulnerabilities Patched in Xen
The Xen Project reported on Thursday that it has patched a total of four vulnerabilities that can be exploited for privilege escalation or denial-of-service (DoS) attacks.
read more
Chrome to Mark HTTP Connections as Non-Secure
Starting in January 2017, Chrome will mark HTTP sites as non-secure when they transmit sensitive information such as passwords or credit card information, Google said this week.
read more
2.5 Million Possibly Impacted by New Malware in Google Play
Malware that slips past the Google Bouncer and becomes available via Google Play isn’t something new, but it still comes as a surprise that some malicious programs manage to infect millions through the official store before being caught.
read more
Unpatched Flaw in Cisco Products Triggered by Research Project
Cisco has disclosed the existence of a vulnerability that can be exploited by remote attackers to cause some of the company’s Application Control Engine (ACE) products to enter a denial-of-service (DoS) condition.
read more
Details of 33 Million Users Stolen in Old QIP Breach
A hacker who over the past weeks leaked tens of millions of accounts stolen from various popular services has now revealed that the Russian instant messaging service QIP (Quiet Internet Pager) also suffered a serious data breach several years ago.
read more
Two Men Arrested in U.S. for Hacking Emails of Top Officials
Two men suspected of belonging to a network that hacked the emails of top American officials including CIA chief John Brennan were arrested Thursday in North Carolina, the authorities announced.
read more
White House Names Gregory Touhill as First Federal CISO
The White House today announced that Brigadier General (retired) Gregory J. Touhill has been named the first Federal Chief Information Security Officer (CISO).
read more
WordPress Flaw Allows XSS Attack via Image Filenames
WordPress users have been advised to update their installations to version 4.6.1, which fixes a couple of security flaws and over a dozen functionality bugs affecting previous versions.
read more
“Armada Collective” DDoS Threats Strike Again
There is a current extortion campaign that seems particularly focused in the UK. The threat is to deliver a DDoS attack together with ransomware infections if the victim does not pay a ransom in bitcoins. The ransom starts relatively low at just 1 bitcoin, but increases to 20 bitcoins if not paid within a certain time. The attackers claim to be the Armada Collective.
read more
