S3 Ep96: Zoom 0-day, AEPIC leak, Conti reward, heathcare security [Audio + Text]
Credit to Author: Paul Ducklin| Date: Thu, 18 Aug 2022 14:38:06 +0000
Latest episode – listen now (or read if you prefer!)
Read moremalware
Apple patches double zero-day in browser and kernel – update now!
Credit to Author: Paul Ducklin| Date: Wed, 17 Aug 2022 23:33:21 +0000
Double 0-day exploits – one in WebKit (to break in) and the other in the kernel (to take over). Patch now!
Read moreS3 Ep95: Slack leak, Github onslaught, and post-quantum crypto [Audio + Text]
Credit to Author: Paul Ducklin| Date: Thu, 11 Aug 2022 14:34:09 +0000
Latest episode – listen now! (Or read the transcript if you prefer.)
Read moreGitHub blighted by “researcher” who created thousands of malicious projects
Credit to Author: Paul Ducklin| Date: Wed, 03 Aug 2022 23:06:28 +0000
If you spew projects laced with hidden malware into an open source repository, don’t waste your time telling us “no harm done” afterwards.
Read morePowerShell: An Attacker’s Paradise
Credit to Author: Mrigank Tyagi| Date: Fri, 29 Jul 2022 12:13:02 +0000
PowerShell was originally intended as a task automation and configuration management program for system administrators. However, it…
The post PowerShell: An Attacker’s Paradise appeared first on Quick Heal Blog | Latest computer security news, tips, and advice.
Read more8 months on, US says Log4Shell will be around for “a decade or longer”
Credit to Author: Paul Ducklin| Date: Mon, 18 Jul 2022 18:57:17 +0000
When it comes to cybersecurity, ask not what everyone else can do for you…
Read moreMalicious IIS extensions quietly open persistent backdoors into servers
Credit to Author: Katie McCafferty| Date: Tue, 26 Jul 2022 17:00:00 +0000
Attackers are increasingly leveraging managed IIS extensions as covert backdoors into servers, providing a durable persistence mechanism for attacks.
The post Malicious IIS extensions quietly open persistent backdoors into servers appeared first on Microsoft Security Blog.
Read moreOffice macro security: on-again-off-again feature now BACK ON AGAIN!
Credit to Author: Paul Ducklin| Date: Sat, 23 Jul 2022 01:10:38 +0000
20 years to turn it on, then 20 weeks to turn it off, then just 2 weeks to turn it back on again. That’s progress!
Read moreS3 Ep91: CodeRed, OpenSSL, Java bugs, Office macros [Audio + Text]
Credit to Author: Paul Ducklin| Date: Thu, 14 Jul 2022 18:47:47 +0000
Latest episode – listen now! Great discussion, technical content, solid advice… all covered in plain English.
Read moreLast member of Gozi malware troika arrives in US for criminal trial
Credit to Author: Paul Ducklin| Date: Wed, 20 Jul 2022 14:56:08 +0000
His co-conspirators went into and got out of prison years ago, while he remained free. Now the tables have turned…
Read more