security threats – Page 12 – PossibleThreat Articles

Google to choke off ‘less secure applications’

December 18, 2019 0 Comments g suite, Google, less secure apps, lsas, oauth, oauth 2.0, security threats, trusted apps

Credit to Author: Danny Bradbury| Date: Wed, 18 Dec 2019 10:50:20 +0000

If you’re entering a username and password to give an app access to a G Suite account, beware: you won’t be able to do it for much longer.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/cmm98FFm0vQ” height=”1″ width=”1″ alt=””/>

Security Sophos

Ransomware-seized New Orleans declares state of emergency

December 17, 2019 0 Comments data loss, Government security, Law & order, malware, new orleans, nola, nola ready, office of homeland security and emergency preparedness, Ransomware, ryuk, security threats, state of emergency

Credit to Author: Lisa Vaas| Date: Tue, 17 Dec 2019 12:14:47 +0000

There are signs that the attackers used the particularly pernicious Ryuk strain of ransomware.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/_IFQ_O3lT1A” height=”1″ width=”1″ alt=””/>

Security Sophos

Researchers discover weakness in IoT digital certificates

December 17, 2019 0 Comments digital certificate management, digital certificates, encrypted keys, encryption, Internet of Things, IoT, keyfactor, keys, private keys, public keys, security threats, vulnerability

Credit to Author: Danny Bradbury| Date: Tue, 17 Dec 2019 12:10:45 +0000

IoT devices are using weak digital certificates that could expose them to attack, according to a study released over the weekend.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/zJlF9M3_vf4″ height=”1″ width=”1″ alt=””/>

Security Sophos

Npm patches two serious bugs

December 16, 2019 0 Comments cve-2019-16775, cve-2019-16776, cve-2019-16777, java, JavaScript, javascript packages, npm, Patch, Patches, security threats, vulnerability

Credit to Author: Danny Bradbury| Date: Mon, 16 Dec 2019 10:57:26 +0000

JavaScript package users have been warned to update due to a bug that could enable an attacker to infect them with malicious applications.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Yb7pRyvF7Uo” height=”1″ width=”1″ alt=””/>

Security Sophos

Google adds Verified SMS and anti-spam feature to Messages app

December 16, 2019 0 Comments Android, Google, google messages, messages app, Mobile, Operating Systems, rcs, rich communication services, security threats, SMS, SMS spam, Spam, spam protection for messages, verified sms system

Credit to Author: John E Dunn| Date: Mon, 16 Dec 2019 10:50:02 +0000

If webmail, WhatsApp and IM are killing SMS, someone might want to tell Google – as it continues to add new features to its Messages app.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/bOkj5uWtjPM” height=”1″ width=”1″ alt=””/>

Security Sophos

Weak account checks earn company $10.5 million privacy fine

December 13, 2019 0 Comments 1&1 telecommunications, data breach, data loss, fines, GDPR, GDPR compliance, General Data Protection Regulation, marriott, security threats

Credit to Author: John E Dunn| Date: Fri, 13 Dec 2019 11:28:03 +0000

The telecomms company violates the EU’s GDPR by allegedly failing to fully authenticate people phoning up to access their accounts.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/X_4Ifs4bgEs” height=”1″ width=”1″ alt=””/>

Security Sophos

Chrome 79 includes anti-phishing and hacked password protection

December 12, 2019 0 Comments anti-phishing, chrome, Cryptography, encryption, Google, Google Chrome, password checkup, password protection, password security, passwords, phishing, Privacy, security threats, Web Browsers

Credit to Author: Danny Bradbury| Date: Thu, 12 Dec 2019 17:03:59 +0000

Version 79 of Chrome is out, and it promises to do a better job of protecting you against phishing sites and credential stuffing attacks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/kPx8Ii–vqQ” height=”1″ width=”1″ alt=””/>

Security Sophos

December Patch Tuesday blunts WizardOpium attack chain

December 12, 2019 0 Comments Adobe, chrome, Intel, intel sgx, lazarus group, Microsoft, Patch Tuesday, Patching, plundervolt, RDP, security threats, vulnerability, Windows, windows xp, zero day, zero-day vulnerability

Credit to Author: John E Dunn| Date: Thu, 12 Dec 2019 10:42:32 +0000

December 2019’s Patch Tuesday updates are, including a fix for the Windows flaw used in recently discovered WizardOpium attacks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/PoQEqUB0h3I” height=”1″ width=”1″ alt=””/>

Security Sophos

Apple iOS 13.3 is here, bringing support for keyfobby authentication

December 12, 2019 0 Comments 2-factor Authentication, 2fa, Apple, Apple Safari, data loss, fido, fido u2f, Google, Incognito mode, iOS, ios 13.3, ios update, ipados 13.3, lightning, Mobile, nfc, security threats, sim swap fraud, titan key, tvos 13.3, usb, watchos 6.1.1, yubico, Yubikey

Credit to Author: Lisa Vaas| Date: Thu, 12 Dec 2019 10:27:30 +0000

Bullet-proof authentication is just a tap away!<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/I3Xzl-C4fcA” height=”1″ width=”1″ alt=””/>

Security Sophos

DoItForState domain name thief gets 14 years for pistol-whipping plot

December 11, 2019 0 Comments data loss, do it for state!, doitforstate.com, domain name, domain name transfer, ethan deyo, facebook, influencer, Instagram, iowa state university, Law & order, pistol whipping, polo, rossi lorathio adams ii, security threats, sherman hopkins, Social networks, state snaps, taser

Credit to Author: Lisa Vaas| Date: Wed, 11 Dec 2019 11:18:02 +0000

He hired his cousin to break in, hold the rightful domain holder at gunpoint, and force a transfer to his own GoDaddy account.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/_zSeajgNmp8″ height=”1″ width=”1″ alt=””/>