Google Researcher Releases iOS 11 Jailbreak Exploit

Tue, 12 Dec 2017 08:11:34 +0000

Google Project Zero researcher Ian Beer has released a proof-of-concept (PoC) exploit that could pave the way for the first iOS 11 jailbreak. read more

Facing Dissent From Abroad, Ethiopia Turns to Spyware

Tue, 12 Dec 2017 02:07:36 +0000

As soon as Ethiopian opposition activist Henok Gabisa read the email, he knew something was not right. With the subject line "Democracy in Ethiopia: Can it be saved?", the message seemed tailor-made for him. read more

Synopsys Completes $550 Million Acquisition of Black Duck Software

Mon, 11 Dec 2017 21:51:04 +0000

Synopsys, a company that provides tools and services for designing chips and electronic systems, has completed its acquisition of Black Duck Software, a privately held company that offers solutions for securing and managing open source software. read more

Malware Isolation Firm Menlo Security Raises $40 Million

Mon, 11 Dec 2017 21:37:45 +0000

Menlo Security, a provider of malware isolation technology, announced on Monday that it has closed a $40 million Series C funding round, bringing the total amount raised by the company to $85 million.  read more

'MoneyTaker' Hackers Stole Millions from Banks: Report

Mon, 11 Dec 2017 18:58:32 +0000

A group of Russian-speaking cybercriminals has launched over 20 successful attacks against financial institutions and legal firms in the US, UK and Russia over the past two years, according to cybecrime research firm Group-IB.  read more

Event Logs Manipulated With NSA Hacking Tool Recoverable

Mon, 11 Dec 2017 18:29:46 +0000

Researchers at security firm Fox-IT have developed a tool that allows investigators to detect the use of specific NSA-linked malware and recover event log data it may have deleted from a machine. read more

macOS Backdoor Uses Innovative Disguise Technique

Mon, 11 Dec 2017 17:38:27 +0000

A variant of the macOS-targeting OceanLotus backdoor is using an innovative technique to disguise the fact that it is an executable in order to avoid alerting users on its execution, Malwarebytes warns. read more

How Safe Are Your Assets in the Cloud?

Mon, 11 Dec 2017 16:31:26 +0000

When Migrating to Cloud Environments, Visibility is a Must-Have read more

Vulnerability Allows Modification of Signed Android Apps

Mon, 11 Dec 2017 15:44:42 +0000

One of the vulnerabilities patched by Google as part of the December 2017 Android security patches is a High severity bug that could result in tampering with applications’ code without altering their signature. read more

Google May Allow Innovative Use of Android Accessibility Service

Mon, 11 Dec 2017 14:18:00 +0000

After getting complaints from many developers, Google is evaluating whether it should continue allowing Android applications to use accessibility services for purposes other than assisting people with disabilities. read more

Database of 1.4 Billion Credentials Found on Dark Web

Mon, 11 Dec 2017 13:35:31 +0000

Researchers have found a database of 1.4 billion clear text credentials in what appears to be the single largest aggregate database yet found on the dark web. These are not from a new breach, but a compilation of 252 previous breaches, including the previous largest combo list, read more

Microsoft Says ERP Product Private Key Leak Posed Little Risk

Mon, 11 Dec 2017 10:48:18 +0000

It took Microsoft more than 100 days to address a problem related to the use of the same digital certificate for all installations of its Dynamics 365 enterprise resource planning (ERP) product, but the company said the issue posed little risk. read more

Dormant Keylogger Functionality Found in HP Laptops

Mon, 11 Dec 2017 09:09:03 +0000

A researcher has discovered that a touchpad driver present on hundreds of HP laptops includes functionality that can be abused for logging keystrokes. The vendor has released patches for a vast majority of affected devices. read more

IoT Botnet Used in Website Hacking Attacks

Sat, 09 Dec 2017 13:36:04 +0000

Embedded Malware Launches SOCKS Proxy Server on Infected IoT Devices read more