Happy Birthday, CVE!

Credit to Author: Danny Bradbury| Date: Fri, 01 Nov 2019 12:49:16 +0000

The Common Vulnerabilities and Exposures (CVE) system is 20 years old this week.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/vrPGAuEivhc” height=”1″ width=”1″ alt=””/>

Read more

Hackers plead guilty to breach that Uber covered up

Credit to Author: Lisa Vaas| Date: Fri, 01 Nov 2019 10:45:41 +0000

The two men pointed to Uber’s $100K hush-money payment when they tried to extort Linkedin-owned Lynda… that instead called the cops.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/5jZvM2TMsYc” height=”1″ width=”1″ alt=””/>

Read more

Linux maintainer: Patching side-channel flaws is killing performance

Credit to Author: John E Dunn| Date: Thu, 31 Oct 2019 13:15:11 +0000

Mirror, mirror on the wall, which is the worst side-channel vulnerability of them all?<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/4OlRsV8RD_Y” height=”1″ width=”1″ alt=””/>

Read more

Researchers find hole in EU-wide identity system

Credit to Author: Danny Bradbury| Date: Thu, 31 Oct 2019 12:47:20 +0000

The EU has fixed a flaw in the powerful yet complex eIDAS digital identification system that let people authenticate as someone else.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/pCEuDkvSosQ” height=”1″ width=”1″ alt=””/>

Read more

WhatsApp sues spyware maker for allegedly hacking phones worldwide

Credit to Author: Lisa Vaas| Date: Thu, 31 Oct 2019 12:32:02 +0000

WhatsApp has publicly attributed the attack on its users in May 2019 to the Israeli spyware makers, NSO Group.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/rTg4uWB-Hmg” height=”1″ width=”1″ alt=””/>

Read more

Got an early iPhone or iPad? Update now or turn it into a paperweight

Credit to Author: John E Dunn| Date: Wed, 30 Oct 2019 12:26:25 +0000

Calling Apple iPhone 5, iPhone 4s or early iPad owners – your device may be about to turn into a vintage technology paperweight.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/zgT62q9uedk” height=”1″ width=”1″ alt=””/>

Read more

Sextortion scammers are hijacking blogs – and victims are paying up

Credit to Author: Danny Bradbury| Date: Wed, 30 Oct 2019 11:47:05 +0000

Sextortion scammers have started hijacking poorly managed or defunct blogs to expand an increasingly profitable business.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/-sDLyHGhvIU” height=”1″ width=”1″ alt=””/>

Read more

Facebook launches $2m suit against alleged phishing, hacking sites

Credit to Author: Lisa Vaas| Date: Wed, 30 Oct 2019 11:33:21 +0000

Facebook is using trademark law to target the operators of sites that imitate or target Facebook and Instagram sites.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/g_OViBXsCtw” height=”1″ width=”1″ alt=””/>

Read more

PHP team fixes nasty site-owning remote execution bug

Credit to Author: Danny Bradbury| Date: Tue, 29 Oct 2019 11:48:14 +0000

The PHP development team has fixed a bug that could allow remote code execution in some setups of the programming language.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/r_X-vIvi4pg” height=”1″ width=”1″ alt=””/>

Read more

Ransomware with a difference as hackers threaten to release city data

Credit to Author: Danny Bradbury| Date: Mon, 28 Oct 2019 13:34:08 +0000

Johannesburg spent the weekend struggling to recover from its second malware attack this year as it took key services systems offline.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/3n2p-QydisI” height=”1″ width=”1″ alt=””/>

Read more