security threats – Page 4 – PossibleThreat Articles

SSL/TLS certificate validity chopped down to one year by Apple’s Safari

February 25, 2020 0 Comments Apple, Apple Safari, ca/browser forum, certificate authorities, Cryptography, Google, https, Privacy, Safari, security threats, sha-1, ssl/tls, TLS, tls certificates, Web Browsers

Credit to Author: John E Dunn| Date: Mon, 24 Feb 2020 11:42:33 +0000

From 1 September 2020, Safari will no longer trust SSL/TLS certificates with more than a year on the clock.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/cpkLvAwmg9A” height=”1″ width=”1″ alt=””/>

Security Sophos

KidsGuard stalkerware leaks data on secretly surveilled victims

February 24, 2020 0 Comments breach, clevguard, cyberstalking, data breach, data loss, kidsguard, mobiispy, mobile spyware, mspy, PII, Privacy, security threats, spying, spying app, spyware, Stalkerware, stalking, stalking apps, surveillance, Uncategorized

Credit to Author: Lisa Vaas| Date: Mon, 24 Feb 2020 13:28:57 +0000

The company left a server open and unprotected, regurgitating private data slurped from thousands of surveilled people, including children.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/F2UPHduG6YE” height=”1″ width=”1″ alt=””/>

Security Sophos

Apple chops Safari’s TLS certificate validity down to one year

February 24, 2020 0 Comments Apple, Apple Safari, ca/browser forum, certificate authorities, Cryptography, Google, https, Privacy, Safari, security threats, sha-1, ssl/tls, TLS, tls certificates, Web Browsers

Credit to Author: John E Dunn| Date: Mon, 24 Feb 2020 11:42:33 +0000

Security Sophos

US and UK call out Russian hackers for Georgia attacks

February 21, 2020 0 Comments Georgia, Government security, gru, nation state hacking, national crime agency, nca, russia, russian hacking, sandworm, security threats, uk, US

Credit to Author: Danny Bradbury| Date: Fri, 21 Feb 2020 12:43:24 +0000

The US and UK governments have both accused Russia of launching a cyber attack against the Georgian government last year.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/k1GSfrG1_cs” height=”1″ width=”1″ alt=””/>

Security Sophos

Data of 10.6m MGM hotel guests posted for sale on Dark Web forum

February 21, 2020 0 Comments Celebrities, data breach, data dump, data loss, gnosticplayers, guests, hacking forum, hotel, irina nesterovsky, kela, las vegas, mgm resorts, PII, security threats, sim card, sim swap, sim swap fraud, under the breach

Credit to Author: Lisa Vaas| Date: Fri, 21 Feb 2020 11:55:24 +0000

The data dump apparently included PII for Justin Bieber and Jack Dorsey.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/Z2tLH5LX16k” height=”1″ width=”1″ alt=””/>

Security Sophos

Adobe fixes critical flaws in Media Encoder and After Effects

February 21, 2020 0 Comments Adobe, adobe after effects, adobe media encoder, critical flaw, CVEs, out of band updates, out-of-band, security threats, updates, vulnerability

Credit to Author: John E Dunn| Date: Fri, 21 Feb 2020 10:16:30 +0000

After fixing a pile of critical security flaws as part of last week’s Patch Tuesday, Adobe has raised two more needing urgent attention.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/EikvZUdR_eM” height=”1″ width=”1″ alt=””/>

Security Sophos

Ransomware attack forces 2-day shutdown of natural gas pipeline

February 20, 2020 0 Comments cisa, cybersecurity and infrastructure security agency, department of homeland security, dhs, Government security, infrastructure, malware, natural gas facility, phishing, Ransomware, security threats, spearphishing, utilities

Credit to Author: Lisa Vaas| Date: Thu, 20 Feb 2020 14:35:31 +0000

The attacker(s) infected both IT and operational networks with an unspecified ransomware strain, though the facility never lost control.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/YqiqInxA_Kc” height=”1″ width=”1″ alt=””/>

Security Sophos

Nearly half of hospital Windows systems still vulnerable to RDP bugs

February 20, 2020 0 Comments BlueKeep, dejablue, Government security, Medical Devices, Microsoft, nhs, Operating Systems, security threats, vulnerability, Windows, wormable, worms

Credit to Author: Danny Bradbury| Date: Thu, 20 Feb 2020 13:58:46 +0000

Almost half of connected hospital devices are still exposed to the wormable BlueKeep Windows flaw nearly a year after it was announced, according to a report released this week.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/wGhEwriWtkU” height=”1″ width=”1″ alt=””/>

Security Sophos

Firefox 73.0.1 fixes crashes, blank web pages and DRM niggles

February 20, 2020 0 Comments 0patch, DNS-over-HTTPS, firefox, Mozilla, nextdns, security threats, vulnerability, Web Browsers

Credit to Author: John E Dunn| Date: Thu, 20 Feb 2020 11:20:44 +0000

Firefox version 73 has only been out for a week but already Mozilla has had to update it to v73.0.1 to fix a range of browser problems.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/caf79LMUoQo” height=”1″ width=”1″ alt=””/>

Security Sophos

Ring makes 2FA mandatory to keep hackers out of your doorbell account

February 20, 2020 0 Comments 2-factor Authentication, 2fa, amazon, credential stuffing, Data Sharing, doorbell, Internet of Things, IoT, neighbors, password reuse, ring, security threats, video doorbell, webcam

Credit to Author: Lisa Vaas| Date: Thu, 20 Feb 2020 10:03:25 +0000

Amazon is following Google’s lead by forcing all users to use two-factor authentication when logging into their Ring accounts.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/ZP4hOfnjH24″ height=”1″ width=”1″ alt=””/>