PossibleThreat Articles

Articles for the experts…

Month: February 2020

MalwareBytes Security 

Android Trojan xHelper uses persistent re-infection tactics: here’s how to remove

0 Comments , , , ,

Credit to Author: Nathan Collier| Date: Wed, 12 Feb 2020 18:15:59 +0000

A new variant of the Android Trojan xHelper re-infects just hours after removal—and with the help of Google PLAY?! A forum user helps us investigate.

Categories:

Tags:

(Read more…)

The post Android Trojan xHelper uses persistent re-infection tactics: here’s how to remove appeared first on Malwarebytes Labs.

Read more
ComputerWorld Independent 

Patch Tuesday: 99 holes, 'exploited' IE fix, Win7 mayhem and UEFI ghost

0 Comments , ,

Credit to Author: Woody Leonhard| Date: Wed, 12 Feb 2020 09:40:00 -0800

What a month it’s been – and the Patch Tuesday patches have only been out for 24 hours. There are many February patching foibles to report.

Every version of Windows 10, stretching back to the beginning of time (except for the long-neglected version 1511) got patches this month.

Welcome to the new, improved, paid-for Win7 patches

There was no free Windows 7 update this month, even though Microsoft released a Monthly Rollup Preview in January. Anyone concerned about the well-documented “Stretch” black wallpaper bug caused by last month’s Win7 Monthly Rollup apparently can pound sand – or manually download and install the fix. Your choice.

To read this article in full, please click here

Read more
Security Sophos 

Mozilla issues final warning to websites using TLS 1.0

0 Comments , , , , , , , , , , , , , ,

Credit to Author: John E Dunn| Date: Wed, 12 Feb 2020 16:13:57 +0000

From March, the Firefox, Chrome, Safari and Edge browsers will show warnings when users visit websites that only support TLS versions 1.0 or 1.1.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/3oMQ9dp5jKA” height=”1″ width=”1″ alt=””/>

Read more
ComputerWorld Independent 

Thought you already paid for Win7 Extended Security Updates? Think again.

0 Comments , ,

Credit to Author: Woody Leonhard| Date: Wed, 12 Feb 2020 05:43:00 -0800

I’m hearing lots of complaints from people who spent good money to get Win7 Extended Security Updates, but don’t see this month’s patches. There’s a reason why. Microsoft didn’t bother to tell us that you need a new patch, released yesterday, in order to start receiving Win7 ESU updates. You have to download the new patch, KB 4538483, from the Microsoft Catalog, and install it manually before the updates even appear.

Folks who spent money to get the February and later patches are livid. 

Yesterday, after releasing the February updates, Microsoft modified its ESU Procedure page to add this step:

To read this article in full, please click here

Read more
Security Sophos 

US charges four Chinese military members with Equifax hack

0 Comments , , , , , , , , , , , , ,

Credit to Author: Lisa Vaas| Date: Wed, 12 Feb 2020 11:48:41 +0000

The indictment suggests the hack was part of a series of major data thefts organized by Chinese military and intelligence agencies.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/2euIheG1QVA” height=”1″ width=”1″ alt=””/>

Read more
Security Sophos 

Data about inmates and jail staff spilled by leaky prison app

0 Comments , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

Credit to Author: Lisa Vaas| Date: Wed, 12 Feb 2020 10:16:24 +0000

A web-mapping project came across detainees’ prescriptions and other PII that could be used by identity thieves to victimize prisoners.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ypFJWLIWMOE” height=”1″ width=”1″ alt=””/>

Read more
Independent Krebs Security 

Microsoft Patch Tuesday, February 2020 Edition

0 Comments , , , , , , , , ,

Credit to Author: BrianKrebs| Date: Tue, 11 Feb 2020 23:13:57 +0000

Microsoft today released updates to plug nearly 100 security holes in various versions of its Windows operating system and related software, including a zero-day vulnerability in Internet Explorer (IE) that is actively being exploited. Also, Adobe has issued a bevy of security updates for its various products, including Flash Player and Adobe Reader/Acrobat.

Read more