security threats – Page 24 – PossibleThreat Articles

Update ColdFusion now! Emergency patch for critical flaws

September 26, 2019 0 Comments Adobe, adobe coldfusion, critical flaw, security threats, vulnerability

Credit to Author: John E Dunn| Date: Thu, 26 Sep 2019 10:16:54 +0000

Adobe has rushed out fixes for three vulnerabilities in its ColdFusion web development platform, two of which have been given the top billing of ‘critical’.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/GUGdeqtu7ac” height=”1″ width=”1″ alt=””/>

Security Sophos

Microsoft rushes out fix for Internet Explorer zero-day

September 25, 2019 0 Comments cve-2019-1255, cve-2019-1367, CVEs, ie, Internet Explorer, Microsoft, Operating Systems, Patch, Patching, security threats, vulnerability, Web Browsers, Windows, Windows 10, windows defender, zero-day vulnerability

Credit to Author: John E Dunn| Date: Wed, 25 Sep 2019 11:48:58 +0000

Microsoft has rushed to patch two flaws affecting IE versions 9 to 11, one of which the company says is being exploited in real attacks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/JKx5VMBH6xs” height=”1″ width=”1″ alt=””/>

Security Sophos

Twitter’s new policy bans financial scams

September 25, 2019 0 Comments bitcoin, confidence, confidence fraud, confidence scams, cyrptocurrency, elon musk, financial scams, fraud, policy, security threats, Social networks, Spam, twitter

Credit to Author: Lisa Vaas| Date: Wed, 25 Sep 2019 10:30:59 +0000

“Oh no! However shall I give away Bitcoin to all my followers?” sobbed a bunch of crooks.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/RF4–MivPx4″ height=”1″ width=”1″ alt=””/>

Security Sophos

YouTube ‘influencers’ get 2FA tokens phished

September 24, 2019 0 Comments 2-factor Authentication, 2fa, account hijacking, Google, modlishka, otp, reverse proxy toolkit, security threats, Social networks, titan, two-factor authentication, u2f, youtube, yubico

Credit to Author: Lisa Vaas| Date: Tue, 24 Sep 2019 14:50:29 +0000

100K or so creators in the YouTube car community were targeted by a phishing campaign that captured 2FA codes.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/G-FEjS09n3I” height=”1″ width=”1″ alt=””/>

Security Sophos

Jira development and ticketing software hit by critical flaws

September 24, 2019 0 Comments altassian, CVEs, jira data center, jira service desk data center, jira service desk server, security threats, vulnerability

Credit to Author: John E Dunn| Date: Tue, 24 Sep 2019 10:10:40 +0000

Admins have a spot of patching work on their hands after the company released updates addressing two critical flaws.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/VgbcYoVOVyk” height=”1″ width=”1″ alt=””/>

Security Sophos

Google pulls more fake adblockers from Chrome Web Store

September 23, 2019 0 Comments ad block, ad blocking, Adblocker, adguard, bug bounty program, chrome, chrome web store, fake adblocker, Google, Google Chrome, security threats, ublock origin, Web Browsers

Credit to Author: John E Dunn| Date: Mon, 23 Sep 2019 12:47:31 +0000

Google has again been reprimanded for not spotting fake extensions impersonating popular brands in its Chrome Web Store.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/bENpOujBKCo” height=”1″ width=”1″ alt=””/>

Security Sophos

Investors accuse FedEx of lying, stock dumping after NotPetya attack

September 23, 2019 0 Comments fedex, Law & order, lawsuit, malware, notpetya, petya, Ransomware, security threats, shareholders, stockholder derivative complaint, stockholders, tnt express

Credit to Author: Lisa Vaas| Date: Mon, 23 Sep 2019 11:36:45 +0000

This is the second such suit, with shareholders asking why execs sold $40m+ of their shares while downplaying the ransomware attack.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/DZkjtO37crE” height=”1″ width=”1″ alt=””/>

Security Sophos

Two charged with tech-support scamming the elderly for $10m

September 23, 2019 0 Comments elderly, fake tech support, Law & order, security threats, tech support, tech support scam, tech support scammers

Credit to Author: Lisa Vaas| Date: Mon, 23 Sep 2019 09:55:01 +0000

The tech-support scammers were allegedly part of a network of crooks in the US and India who conned about 7,500 victims.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/0TbNYtAQBLk” height=”1″ width=”1″ alt=””/>

Security Sophos

Server-squashing zero-day published for phpMyAdmin tool

September 23, 2019 0 Comments cross site request forgery, csrf, mariadb, mysql, owasp, phpmyadmin, security threats, vulnerability, zero day

Credit to Author: Danny Bradbury| Date: Fri, 20 Sep 2019 12:22:50 +0000

A researcher has just published a zero-day security bug in one of the web’s most popular database administration software packages.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/XxpMh0dUMaQ” height=”1″ width=”1″ alt=””/>

Security Sophos

Air Force to offer up a satellite to hackers at Defcon 2020

September 19, 2019 0 Comments air force, aviation, Defcon, Government security, hack the air force, Hacking, military, military security, satellite, security events, security threats, vulnerability, will roper

Credit to Author: Lisa Vaas| Date: Thu, 19 Sep 2019 14:42:48 +0000

This year, the Air Force presented vetted hackers with a plane’s subsystem, which they duly tore up. Next year, it will be a satellite.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/wh-pZprliQk” height=”1″ width=”1″ alt=””/>