security threats – Page 22 – PossibleThreat Articles

Most Americans don’t have a clue what https:// means

October 11, 2019 0 Comments 2-factor Authentication, 2fa, cybersecurity survey, https, MFA, multi-factor authentication, pew research center, security threats, two-factor authentication

Credit to Author: Lisa Vaas| Date: Fri, 11 Oct 2019 11:21:40 +0000

…and wouldn’t know 2FA from a hole in the ground, according to Pew Research.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/pS7Yk0iqaXE” height=”1″ width=”1″ alt=””/>

Security Sophos

Hackers bypassing some types of 2FA security FBI warns

October 11, 2019 0 Comments 2-factor Authentication, 2fa, FBI, MFA, multi-factor authentication, security threats, SIM swaps, two-factor authentication, vulnerability, WebAuthn, youtube

Credit to Author: John E Dunn| Date: Fri, 11 Oct 2019 11:13:06 +0000

Some types of 2FA security can no longer be guaranteed to keep the bad guys out, the FBI warned US companies.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/M0mTuBNjc54″ height=”1″ width=”1″ alt=””/>

Security Sophos

October Patch Tuesday: Microsoft fixes critical remote desktop bug

October 9, 2019 0 Comments Azure, cve-2019-1060, cve-2019-1255, cve-2019-1333, cve-2019-1365, cve-2019-1366, cve-2019-1367, cve-2019-1368, CVEs, edge browser, Internet Explorer, Microsoft, Microsoft Edge, Operating Systems, Organisations, Patch Tuesday, Patches, remote code, remote code execution, security threats, Technologies, vulnerability, Web Browsers, Windows

Credit to Author: Danny Bradbury| Date: Wed, 09 Oct 2019 12:14:46 +0000

Microsoft fixed 59 vulnerabilities in October’s Patch Tuesday, including several critical remote code execution (RCE) flaws.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/jWWY6mMadts” height=”1″ width=”1″ alt=””/>

Security Sophos

Copy-and-paste sharing on Stack Overflow spreads insecure code

October 9, 2019 0 Comments bad code, c, copy and paste, github, security threats, stack overflow, vulnerability

Credit to Author: John E Dunn| Date: Wed, 09 Oct 2019 10:45:30 +0000

It’s the time-saving technique employed by many coders – copy and paste code from crowd-sourcing ‘Q&A’ websites. But is it always secure?<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/owsdar3-5Ug” height=”1″ width=”1″ alt=””/>

Security Sophos

TOMS hacker tells people to log off and enjoy a screenless day

October 9, 2019 0 Comments hack, nathan, responsible disclosure, security threats, toms shoes, vulnerability

Credit to Author: Lisa Vaas| Date: Wed, 09 Oct 2019 10:09:06 +0000

TOMS seems like a really nice shoe company, and it just got hacked in a really nice way. But it’s still a hack.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/c6nlBxWC_hA” height=”1″ width=”1″ alt=””/>

Security Sophos

Signal immediately fixed FaceTime-style eavesdropping bug

October 8, 2019 0 Comments Android, Apple, Bug, eavesdropping, facetime, Google, Google Project Zero, iOS, Mobile, Privacy, security threats, signal, signal bug, vulnerability

Credit to Author: Danny Bradbury| Date: Tue, 08 Oct 2019 11:25:17 +0000

Remember the FaceTime bug that allowed a caller to eavesdrop on your phone? Researchers just discovered another – this time in Signal.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/kuYuPSST8YI” height=”1″ width=”1″ alt=””/>

Security Sophos

Android devices hit by zero-day exploit Google thought it had patched

October 7, 2019 0 Comments Android, cve-2019-2215, Google, Google Project Zero, Mobile, nso group, Operating Systems, pegasus, Privacy, security threats, vulnerability, zero-day vulnerability

Credit to Author: John E Dunn| Date: Mon, 07 Oct 2019 11:41:15 +0000

Android smartphones are vulnerable to a zero-day exploit that Google thought it had patched for good two years ago.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/9TX4gOYOCsQ” height=”1″ width=”1″ alt=””/>

Security Sophos

WhatsApp vulnerability could compromise Android smartphones

October 4, 2019 0 Comments Android, cve-2019-11932, CVEs, double free memory vulnerability, facebook, malicious gif, Privacy, rce, remote code execution, security threats, vulnerability, whatsapp

Credit to Author: John E Dunn| Date: Fri, 04 Oct 2019 12:10:03 +0000

A researcher has released details of a WhatsApp flaw that could be used to compromise the app and the mobile device the app is running on.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/fPnnKlP45pM” height=”1″ width=”1″ alt=””/>

Security Sophos

PDF encryption standard weaknesses uncovered

October 3, 2019 0 Comments Adobe, aes symmetric encryption, cipher block chaining, direct exfiltration, PDF, pdf encryption, security threats, vulnerability

Credit to Author: John E Dunn| Date: Thu, 03 Oct 2019 12:12:48 +0000

Researchers have discovered weaknesses in PDF encryption which could be exploited to reveal the plaintext contents of a file to an attacker.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/yigSKdsoe6I” height=”1″ width=”1″ alt=””/>

Security Sophos

Google’s Password Manager now checks for breached credentials

October 3, 2019 0 Comments chrome, Chrome browser, Google, Google Chrome, Google Password Checkup, google password manager, security threats, Web Browsers

Credit to Author: Danny Bradbury| Date: Thu, 03 Oct 2019 11:56:21 +0000

Google has taken the next step in its strategy to secure users’ passwords. The search giant has taken a password-checking feature released in February as an extension to its Chrome browser and embedded it directly into its password manager service.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/htCIKPrCE8I” height=”1″ width=”1″ alt=””/>