You are here:-Vulnerabilities | Alerts | Solutions

Vulnerabilities | Alerts | Solutions

WebAssembly Changes Could Ruin Meltdown/Spectre Browser Patches | Threatpost

By | 2018-06-28T02:33:16+00:00 June 27th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Upcoming changes to the WebAssembly (Wasm) format may defang the browser patches for infamous side-channel attacks Meltdown and Spectre. Wasm was invented to improve execution speed for porting desktop applications to web-based environments; programs are compiled in Wasm and then can easily be run in a browser. It’s more efficient than traditional JavaScript,

Mozilla Announces Firefox Monitor Tool Testing, Firefox 61 | Threatpost

By | 2018-06-27T03:22:51+00:00 June 26th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Mozilla has made some sweeping security announcements this week: On Monday, the company announced it is testing a new security tool called Firefox Monitor, which the firm said securely checks to see if users’ accounts have been hacked. That news came just as the browser giant released Firefox 61 for Windows, Mac, Linux

Simple Security Flaws Could Steer Ships Off Course | Threatpost

By | 2018-06-26T16:14:19+00:00 June 26th, 2018|Categories: Vulnerabilities | Alerts | Solutions|

A proof-of-concept attack could cause ships to dangerously veer off course, and it all stems from simple security issues, including the failure to change default passwords or segment networks. Researcher Ken Munro, with Pen Test Partners, on Monday showed how the attack could work and how it’s possible to manipulate a ship’s steering,

WannaCry Extortion Fraud Reemerges | Threatpost

By | 2018-06-26T01:45:14+00:00 June 25th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Extortion emails that threaten recipients with a WannaCry infection if they don’t pay up are making the rounds in the UK and elsewhere. The activity prompted an alert Friday from the City of London’s Action Fraud unit, which said at the time that police had already received almost 300 reports in just a

UK Tax Agency Collects 5.1M Biometric Voice IDs, May Violate GDPR | Threatpost

By | 2018-06-26T00:12:18+00:00 June 25th, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Her Majesty’s Revenue and Customs (HMRC) in the UK is under investigation by that country’s regulator over the collection of more than 5 million biometric voice IDs. The Information Commissioner’s Office (ICO) is investigating the tax agency’s practice, which may violate the recently implemented General Data Protection Regulation, following an official complaint from

Fortnite Fraudsters Infest the Web with Fake Apps, Scams | Threatpost

By | 2018-06-23T04:33:05+00:00 June 22nd, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

Fortnite, the sandbox video game, has become so popular that its maker, Epic Games, is ponying up $100 to $300 million to supply prize money for eSports tournaments. What it hasn’t ponied up for – at least not yet – is an Android version. Which means the bad guys are having a field

Comments Off on Fortnite Fraudsters Infest the Web with Fake Apps, Scams | Threatpost

Malicious App Infects 60,000 Android Devices – But Still Saves Their Batteries | Threatpost

By | 2018-06-23T03:01:22+00:00 June 22nd, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

A battery-saving app that also allows attackers to snatch text messages and read sensitive log data has been downloaded by more than 60,000 Android devices so far. But what’s unique about the attack, according to the researchers at RiskIQ who discovered it, is that it holds true to its advertising: It actually does

Comments Off on Malicious App Infects 60,000 Android Devices – But Still Saves Their Batteries | Threatpost

U.S. Supreme Court Bolsters Mobile-Phone Privacy Rights | Threatpost

By | 2018-06-23T01:29:07+00:00 June 22nd, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The U.S. Supreme Court ruled in a decision that bolsters digital privacy rights of cellphone users. In a 5-4 vote, the court ruled law enforcement needs a warrant to obtain mobile phone tower records that can reveal a user’s location over time. The ruling was made on Friday in a case involving Timothy

Comments Off on U.S. Supreme Court Bolsters Mobile-Phone Privacy Rights | Threatpost

DDoS-Happy ‘Bitcoin Baron’ Sentenced to Almost 2 Years in Jail | Threatpost

By | 2018-06-22T23:55:37+00:00 June 22nd, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The Bitcoin Baron, a self-proclaimed vigilante responsible for DDoS attacks on civic networks in Madison, Wisc., San Marcos, Texas, and other sites in 2015, has been collared in Phoenix and sentenced to serve 20 months in prison. The conviction and sentencing is only for the former attack, in which Randall Charles Tucker, who

Comments Off on DDoS-Happy ‘Bitcoin Baron’ Sentenced to Almost 2 Years in Jail | Threatpost

Roku TV, Sonos Speaker Devices Open to Takeover | Threatpost

By | 2018-06-22T22:24:23+00:00 June 22nd, 2018|Categories: Vulnerabilities | Alerts | Solutions|Tags: , |

The DNS rebinding flaw reported in Google Home and Chromecast devices earlier this week is about to get a patch — but the same type of flaws have come to light for other top-name consumer Internet of Things devices, from Roku and Sonos. Fortunately, Roku has already started deploying its update, while Sonos

Comments Off on Roku TV, Sonos Speaker Devices Open to Takeover | Threatpost