January 2020 – Page 17 – PossibleThreat Articles

Credit to Author: Woody Leonhard| Date: Wed, 15 Jan 2020 07:26:00 -0800

Get ready for your local news station’s weather reporter to start lecturing on the importance of installing Windows patches.

Yesterday we were treated to a remarkable Patch Tuesday. “Remarkable” specifically in the sense that the U.S. National Security Agency was moved to put out a press release (PDF):

NSA recommends installing all January 2020 Patch Tuesday patches as soon as possible to effectively mitigate the vulnerability on all Windows 10 and Windows Server 2016/2019 systems.
To read this article in full, please click here

QuickHeal Security

STOP (Djvu) Ransomware: Ransom For Your Shady Habits!

January 15, 2020 0 Comments _readme.txt, {1d6fc66e-d1f3-422c-8a53-c0bbcf3d900d}, {36a698b9-d67c-4e07-be82-0ec5b14b4df5}, crack software, cracked, djvu, encryption, fake apps, icacls, infostealer, keygen, malware, offline key, online key, PowerShell, Ransomware, salsa20, stop, syshelper, time trigger task, timetriggertask, vidar, vilsel, windows update

Credit to Author: Jayesh kulkarni| Date: Wed, 15 Jan 2020 14:13:09 +0000

With almost 200 extensions, STOP (djvu) ransomware can be said to be 2019’s most active and widespread ransomware. Although this ransomware was active a year before, it started its campaign aggressively in early 2019. To evade detection, it has been continuously changing its extensions and payloads. For earlier infections, data…

Security Wired

Now Stores Must Tell You How They’re Tracking Your Every Move

January 15, 2020 0 Comments Business, Business / Artificial Intelligence, Security

Credit to Author: Tom Simonite| Date: Wed, 15 Jan 2020 12:00:00 +0000

California’s new privacy law has spurred a torrent of online notices. But the law is also forcing changes offline, in traditional stores.

Security Wired

An Alarming Windows Bug, a Triumph for Tesla, and More News

January 15, 2020 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Alex Baker-Whitcomb| Date: Tue, 14 Jan 2020 22:45:55 +0000

Catch up on the most important news from today in two minutes or less.

Security Wired

Windows 10 Has a Security Flaw So Severe the NSA Disclosed It

January 15, 2020 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Lily Hay Newman| Date: Tue, 14 Jan 2020 22:30:55 +0000

In a shift toward transparency, the National Security Agency announced a bug that could have left over 900 million PCs vulnerable to attack.

Security Wired

If Russia Hacked Burisma, Brace for the Leaks to Follow

January 15, 2020 0 Comments Security, Security / Cyberattacks and Hacks

Credit to Author: Andy Greenberg| Date: Tue, 14 Jan 2020 20:38:27 +0000

The Kremlin likely hacked the oil giant. Its next play: selectively release—and even forge—documents. Did the US learn enough from 2016 to ignore them?

ComputerWorld Independent

Breaking iPhone encryption won't make anyone safer

January 15, 2020 0 Comments Apple, iOS, Mobile, Security

Credit to Author: Jonny Evans| Date: Wed, 15 Jan 2020 05:06:00 -0800

Imagine all your tax documentation could be examined by officials from any government merely on suspicion. That’s the future some governments are pushing for when they demand Apple puts security backdoors into its products.

Making no one safe

Think about the nature of security backdoors:

To read this article in full, please click here

Security Sophos

Applying Threat Intelligence to Iranian Cyberattack Risk

January 15, 2020 0 Comments applied threat intelligence, APT, blue team, iran, managed threat response, mtr, outcome-focused security, security program strategy, sophos managed threat response (mtr), SophosLabs, threat intelligence

Credit to Author: J.J. Thompson| Date: Wed, 15 Jan 2020 13:01:37 +0000

As geopolitical interest increases, discussions of threat intelligence increase which increases pressure on security operations teams to provide answers to customers and to senior leadership.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/pQqkg_WT2eU” height=”1″ width=”1″ alt=””/>

Security Sophos

Microsoft fixes critical bugs in CryptoAPI, RD Gateway and .NET

January 15, 2020 0 Comments Adobe, barcelona, CVEs, Microsoft, Operating Systems, Patch Tuesday, Patches, rce, rd gateway, RDP, remote code execution, security threats, vulnerability, Windows, windows remote desktop gateway, windows server

Credit to Author: Danny Bradbury| Date: Wed, 15 Jan 2020 12:10:33 +0000

Here are the most serious bugs from Microsoft’s Patch Tuesday – Including CryptoAPI and RCE flaws in Windows Remote Desktop Gateway.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/_JcrLmlUQmc” height=”1″ width=”1″ alt=””/>

Security Sophos

Malicious npm package taken down after Microsoft warning

January 15, 2020 0 Comments backdoor, malicious package, Microsoft, microsoft vulnerability research, node package manager, npm, security threats, unix, vulnerability

Credit to Author: John E Dunn| Date: Wed, 15 Jan 2020 11:32:56 +0000

Criminals have been caught trying to sneak a malicious package on to the popular Node.js platform npm (Node Package Manager).<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/X4lFsmpAVr8″ height=”1″ width=”1″ alt=””/>

PossibleThreat Articles

Month: January 2020

Patch Tuesday aftermath: The NSA Crypt32 threat is real, but not yet imminent

STOP (Djvu) Ransomware: Ransom For Your Shady Habits!

Now Stores Must Tell You How They’re Tracking Your Every Move

An Alarming Windows Bug, a Triumph for Tesla, and More News

Windows 10 Has a Security Flaw So Severe the NSA Disclosed It

If Russia Hacked Burisma, Brace for the Leaks to Follow

Breaking iPhone encryption won't make anyone safer

Making no one safe

Applying Threat Intelligence to Iranian Cyberattack Risk

Microsoft fixes critical bugs in CryptoAPI, RD Gateway and .NET

Malicious npm package taken down after Microsoft warning