Recent Posts

Pages: [1] 2 3 ... 10
1
Several cybergangs are using a patched vulnerability (CVE-2015-2545) in Microsoft Office to attack computers that have not uploaded the patch.

Kaspersky Labs has found that at least four criminal organizations, TwoForOne (also known as Platinum), EvilPost, APT16 and Danti, are using the vulnerability to attack companies and countries in Southwest Asia. The Danti group may have already used the exploit to the Indian government's internal network, Kaspersky said.

The vulnerability was discovered in August 2015 and patched the following month with Microsoft update MS15-099, but left unpatched the issue allows an attacker to execute arbitrary code using a specially crafted Encapsulated PostScrip (EPS) file.


http://www.scmagazine.com/cybergangs-still-using-patched-microsoft-office-vulnerability/article/498981/
2
FBI agents, one armed with an assault weapon, reportedly raided the home of a security professional who discovered sensitive data for 22,000 dental patients was available on the Internet, according to a report published Friday.

Justin Shafer, who is described as a dental computer technician and software security researcher, reportedly said the raid happened on Tuesday at 6:30am as he, his wife, and three young children were sleeping. He said it started when his doorbell rang incessantly and someone banged hard on his door.

http://arstechnica.com/security/2016/05/armed-fbi-agents-raid-home-of-researcher-who-found-unsecured-patent-data/

3
Current News / Re: Hackers Claim to Have a Stunning 427 Million Myspace Passwords
« Last post by Hoov on Yesterday at 10:16:36 PM »
This is yet another example of why you need good passwords, and a schedule that you change all of your passwords to. And do not use the same password more than one time.
4
It’s no secret that Facebook’s revenue model relies on serving ads to its users, and selling their data back to advertisers. It’s also no secret that Facebook tracks its users through cookies and social plugins across sites. But what may be surprising is that starting today, Facebook will also track those without an account on the social network.

The company announced early on Friday that it would begin tracking and serving ads to website visitors regardless of whether they have a Facebook account or are logged into the network. The company believe this will help both users and advertisers, by offering up better and more relevant ads.

http://www.neowin.net/news/facebook-will-now-officially-track-and-serve-you-ads-even-if-you-dont-have-an-account
5

There’s an oft-repeated adage in the world of cybersecurity: There are two types of companies, those that have been hacked, and those that don’t yet know they have been hacked.

MySpace, the social media behemoth that was, is apparently in the second category. The same hacker who was selling the data of more than 164 million LinkedIn users last week now claims to have 360 million emails and passwords of MySpace users, which would be one of the largest leaks of passwords ever. And it looks like the data is being circulated in the underground by other hackers as well.

http://motherboard.vice.com/read/427-million-myspace-passwords-emails-data-breach
6
What Microsoft fails to realize is that some hardware that runs Windows 7 and Windows 8 just fine are not compatible with windows 10, yet Microsoft is almost forcing them to Windows 10. What Microsoft also fails to realize is that all of those computers are not owned by Microsoft and the forced install of windows 10 could leave Microsoft open to lawsuits or prosecution.
7
Good idea, but there are a lot of other easy passwords not on the list. I know people that use their e-mail address minus the @ and .  There are also a lot of people that use patterns for passwords like microsoftfosorcim
8

Some Windows 7 and 8 users would rather chance a malware infection than an involuntary Windows 10 upgrade.
http://www.pcworld.com/article/3075729/windows/fearing-forced-windows-10-upgrades-users-are-disabling-critical-updates-at-their-own-risk.html
9

Microsoft wants you to stop using “password” as your account password, and the company knows just how to do that – ban it outright.

The company wrote in a technical blog, noticed by online news site Mashable, that it will ban users from setting up account passwords with some of the most commonly used passwords.

Microsoft hopes the practice will increase security for user accounts, as those with passwords such as “football” and “12345” are some of the most susceptible to hackers.

http://www.seattletimes.com/business/technology/microsoft-bans-12345-and-other-commonly-used-passwords-to-increase-security/
10
Current News / Judge tosses evidence in FBI Tor hacking child abuse case
« Last post by Bugbatter on Yesterday at 10:05:15 AM »
A US federal judge on Wednesday excluded all evidence in a child pornography case that was acquired by the FBI through an exploit compromising the Tor network. The federal government hasn’t announced what it’ll do next, but if it can’t prevail in an appeal, its case against Vancouver, Washington teacher Jay Michaud may well be doomed.

"...What the government will ultimately do about all this remains to be seen, but one thing seems clear: in the post-Snowden era, formerly compliant courts are becoming more skeptical of the US government’s claims on electronic search and privacy, and more willing to throw roadblocks in its way."

Complete article:
https://nakedsecurity.sophos.com/2016/05/27/judge-tosses-evidence-in-fbi-tor-hacking-child-abuse-case/
Pages: [1] 2 3 ... 10
Click Here