Europol wants ISPs to aid law enforcement by dropping CGN technologies

Europol is urging ISPs to stop using Carrier Grade Network Address Translation technologies, because they make identifying and tracking criminals a lot harder. What is Carrier Grade Network Address Translation? CGN (or CGNAT) allows up to several thousands Internet users to share the same IPv4 address. CGN was meant to be a temporary workaround for the problem arising from the slow transition from IPv4 to IPv6. But, according to Europol, for some operators it has … More

Posted on 18 October 2017 | 11:54 am

Digital skills gap: The biggest hindrance to addressing cybersecurity?

Although businesses recognize the importance of digital transformation, organizations worldwide are struggling to balance the elements needed to deliver on digital. Of 1,625 business leaders surveyed a new Fujitsu report, one in three has cancelled a project in the last two years at a cost of €423,000, while 28% has experienced a failed project costing €555,000. 84 percent of businesses say that their customers expect them to be more digital, while 71 percent believe that … More

Posted on 18 October 2017 | 10:41 am

Oracle fixes 252 vulnerabilities in October 2017 Critical Patch Update

Oracle has released its Critical Patch Update (CPU) for October 2017, addressing 252 vulnerabilities across the wide multitude of its products. Compared to the July 2017 CPU, this one addresses fewer security issues, but the number of yearly Oracle patches keeps rising: Delving into the October 2017 CPU This CPU contains 155 patches for vulnerabilities affecting a number of Oracle business applications: PeopleSoft, E-Business Suite, Fusion Middleware, Hospitality Applications, Retail, Hyperion, Siebel CRM, Supply Chain, … More

Posted on 18 October 2017 | 8:50 am

The pervasive risk of vulnerable open source components

Veracode announced findings from the 2017 State of Software Security Report, a comprehensive review of application security testing data from scans conducted by a base of more than 1,400 customers. Among other industry trends such as vulnerability fix rates and percent of applications with vulnerabilities, the report exposes the pervasive risk from vulnerable open source components. Researchers found that 88 percent of Java applications contain at least one vulnerable component, making them susceptible to widespread … More

Posted on 18 October 2017 | 6:05 am

Should non-security functions get more involved in cybersecurity?

According to a survey conducted by Dimensional Research, 100 percent of respondents believe soft skills are important when hiring for their security teams. The three most important soft skills cited were analytical thinker (selected by 65 percent), good communicator (60 percent) and troubleshooter (59 percent). Tied for fourth place, “strong integrity and ethical behaviour” and “ability to work under pressure” were selected by 58 percent of participants. The need for soft skills has changed “The … More

Posted on 18 October 2017 | 5:55 am

Digital transformation and the loss of security control

Unpatched web infrastructure and de-centralised web management practices are leaving UK organisations vulnerable to cyber-attacks and high profile data breaches. New RiskIQ research reveals a loss of control amongst the FT30, expanding their digital attack surface and opening doors to cyber criminals. Summary of risk findings across 99,467 live websites What’s leaving businesses exposed to cyber attack? New insight exposes five key areas leaving businesses exposed to cyber attack as a result of increasing digital … More

Posted on 18 October 2017 | 5:30 am

DARPA announces software defined radio UAV hacking event

Specifically, each team will utilize their SDR hacking skills to ultimately control UAVs through a defined set of operations, called Hackfest Missions.

Posted on 18 October 2017 | 5:11 am

This ransomware-spreading botnet will now screengrab your desktop too

The Necurs hackers have added the ability to snoop into their regular malware payloads. Image: iStock. Attackers behind one of the world's most ...

Posted on 18 October 2017 | 4:48 am

Children at Risk of Strangers Hacking Smartwatches, Watchdog Warns

Some children's smartwatches, designed to allow parents to keep tabs and talk to their kids remotely, could actually fall prey to hackers and ...

Posted on 18 October 2017 | 4:37 am

Government celebrates cyber security successes in Manchester

The NCSS was launched a year ago in response to the growing cyber security challenges and threats faced by the UK and to define the Government's ...

Posted on 18 October 2017 | 4:37 am

Government celebrates cyber security successes in Manchester

The NCSS was launched a year ago in response to the growing cyber security challenges and threats faced by the UK and to define the Government's ...

Posted on 18 October 2017 | 4:37 am

Malware Resurfaces After a Decade in Chinese Cyberespionage Campaign

According to experts at Cylance, who spotted the recent Hacker's Door infections, the malware "was signed with a stolen certificate, known to be used ...

Posted on 18 October 2017 | 4:26 am

Duo Security Raises $70 Million, Earning Valuation of More than $1 Billion

ANN ARBOR, MI--(Marketwired - Oct 18, 2017) - Duo Security, one of the fastest growing information security and software-as-a-service (SaaS) ...

Posted on 18 October 2017 | 4:26 am

Cyberdefenses put to test at computer speed

Cyberdefenses put to test at computer speed ... in southeast Idaho's desert, researchers are testing automated cybersecurity defenses to protect grid ...

Posted on 18 October 2017 | 4:26 am

ATM Malware Now For Sale On Darknet

Malware designed to compromise and empty ATMs has been discovered for sale on the darknet, according to news from Securelist, the online ...

Posted on 18 October 2017 | 4:15 am

It's Cyber Security Awareness Month. So take steps to protect your information

The Department of Homeland Security has dubbed October as Cybersecurity Awareness Month. As a reader of this column, you know how important it ...

Posted on 18 October 2017 | 4:15 am

Trade Recommendation: EURCAD

The daily chart gives a bearish signal. The price bounces from the resistance zone formed by SMA100 and 1.48000 resistance level. We can open ...

Posted on 18 October 2017 | 4:03 am

UK organisations ill-prepared for cyber attacks

Cyber attacks could happen to any organisation at any time, so it's important businesses and public sector organisations are getting the basics right ...

Posted on 18 October 2017 | 3:41 am

Oracle swats 252 bugs in patch update

Hundreds of different products are affected by a range of vulnerabilities tackled in the update.

Posted on 18 October 2017 | 3:29 am

Potential US Cyber Security Regulations

A spokesperson said, “Beginning in February 2018, Chief Information Security Officers [CISOs], [or designated officers] must be able to report in writing ...

Posted on 18 October 2017 | 3:18 am

Potential US Cyber Security Regulations

“The cybersecurity program must include monitoring and testing designed to assess the effectiveness of the program. A certificate of compliance must ...

Posted on 18 October 2017 | 3:18 am

Notifiable Data Breach guideline - assessing a suspected data breach

Businesses need to take steps now to ensure they have adequate practices, policies and procedures in place to assess data breaches in order to ...

Posted on 18 October 2017 | 3:07 am

Realty1 and Jigsaw likely responsible for SA's largest data breach

The largest data breach in SA seems to have come from a property company called Realty1 and its service provider Jigsaw; and the data appears to ...

Posted on 18 October 2017 | 3:07 am

Best antivirus: Keep your Windows PC safe from spyware, Trojans, malware, and more

Antivirus software ranks nearly as crucial as a PC's operating system. No matter how careful you are, some threats can't be prevented without the ...

Posted on 18 October 2017 | 2:56 am

Our massive cyber task ahead

The launch of the National Cyber Security Strategy in 2016 was a positive step toward securing Australia, but there is still more do be done, according ...

Posted on 18 October 2017 | 2:56 am

Best antivirus: Keep your Windows PC safe from spyware, Trojans, malware, and more

Antivirus software ranks nearly as crucial as a PC's operating system. No matter how careful you are, some threats can't be prevented without the ...

Posted on 18 October 2017 | 2:56 am

Hacking London's most exclusive hotels: how to get the best deals

But don't give up on joining the elite (for a night or two at least) just yet - here are five fab hacks to get you into the hottest places at the best rates.

Posted on 18 October 2017 | 2:56 am

Mysterious cyber espionage campaign uses 'torpedo' lure to trick you into downloading malware

If successful in compromising a system, the actor behind the attack looks to create backdoors in the system, installing Trojan malware. They include ...

Posted on 18 October 2017 | 2:45 am

Mysterious cyber espionage campaign uses 'torpedo' lure to trick you into downloading malware

An espionage group is launching cyber attacks against organisations in the maritime and defence sectors in what's highly likely to be an effort to steal ...

Posted on 18 October 2017 | 2:45 am

Australia's security under threat frm cyber attacks, ASIO report reveals

These activities—undertaken covertly to obscure the role of foreign governments—represent a threat to our sovereignty, the integrity of our national ...

Posted on 18 October 2017 | 2:45 am

Underground Markets Sell ATM Malware for $5000

Kaspersky Lab reported that the ATM Malware which targets automated teller machines is being sold on the underground markets for $5K.

Posted on 18 October 2017 | 2:33 am

Security dominates in global software sales

Cyber security has emerged as the area that businesses have spent the most on in 2017, a new report claims. According to ecommerce leader ...

Posted on 18 October 2017 | 2:27 am

Google and Apple yet to fix Wi-Fi hole in a billion devices

The WPA2 security protocol has been a mandatory requirement for all ... Alan Woodward, a computer security expert at the University of Surrey, UK, ...

Posted on 18 October 2017 | 2:20 am

Enable Google's New "Advanced Protection" If You Don't Want to Get Hacked

It is good to be paranoid when it comes to cybersecurity. Google already provides various advanced features such as login alerts and two-factor authentication to keep your Google account secure. However, if you are extra paranoid, Google has just introduced its strongest ever security feature, called "Advanced Protection," which makes it easier for users, who are usually at high risk of

Posted on 18 October 2017 | 2:19 am

As our power grids get smarter, they're more vulnerable to attack

In a sprawling office building in south Wales, Kevin Jones simulates massive cyber attacks on power grids, factories and other vital parts of national ...

Posted on 18 October 2017 | 2:11 am

Poland targeted by spate of cyber attacks: defence minister

Poland's defence ministry and other institutions have been targeted by one potentially dangerous cyber attack a week on average over the last six ...

Posted on 18 October 2017 | 2:11 am

Data breach hits 30m South Africans

Following the discovery of what is potentially SA's biggest data breach, yesterday Hunt tweeted: "South African followers: I have a very large breach ...

Posted on 18 October 2017 | 2:11 am

ATM malware available online for only $5,000

Malware which forces ATMs to hemorrhage cash has been discovered for sale on the Dark Web at an unfortunately accessible price.

Posted on 18 October 2017 | 2:00 am

ATM malware available online for only $5000

screen-shot-2017-10-18-at-08-33- Kaspersky. Researchers have discovered malware crafted to compromise ATMs available for sale in the underbelly ...

Posted on 18 October 2017 | 2:00 am

What is Hacker's Door? Old sophisticated Chinese Trojan resurfaces after more than a decade

The malware can also list and kill other processes, open Telnet and remote access ports and extract a Windows user's credentials from the ongoing ...

Posted on 18 October 2017 | 2:00 am

Private information of around 31.6m South Africans breached, still online

The private records of about 31.6-million South Africans are still online and available for download after possibly the largest data breach yet in the ...

Posted on 18 October 2017 | 1:48 am

Private information of about 31.6m South Africans breached and still online

The private records of about 31.6 million South Africans are still online and available for download after possibly the largest data breach yet in the ...

Posted on 18 October 2017 | 1:48 am

Mining malware: signals of a shift in cybercrime

This analysis also uncovers the opportunity that mining malware presents to rogue nation states like North Korea and explores how they may already ...

Posted on 18 October 2017 | 1:48 am

Behind Enemy Transmission Lines

Cybersecurity firm Symantec first reported the threat in September, while CrowdStrike and others went farther in attributing the infiltration to Russia.

Posted on 18 October 2017 | 1:37 am

Internet of Ships falling down on security basics

While they may not have physical leaks, they are catastrophically porous when it comes to cyber security. The same history that has led to poor ...

Posted on 18 October 2017 | 1:37 am

Editorial: Common People (Q4 2017 Issue)

Like it or not, the information security industry is heavily dominated by white, male, 40-something, middle-class straight men in suits. There is the ...

Posted on 18 October 2017 | 1:26 am

Eir customers warned about new scam that tricks users into downloading a file that infects their ...

Eir customers warned about new scam that tricks users into downloading a file that infects their computer with malware that holds them to ransom.

Posted on 18 October 2017 | 1:15 am

Massive data leak of personal info detected in SA

PRETORIA - A massive data breach has been detected which is being described as the biggest ever leak of private information in South Africa's ...

Posted on 18 October 2017 | 1:15 am

Simple Social Login for Users and Attackers

We looked into their claim and quickly realized that the automated attack was a centrally controlled botnet of tens of thousands of malware infected ...

Posted on 18 October 2017 | 1:15 am

UK organisations failing to prepare for cyber attacks

The cyber security risk to UK organisations continues to increase in both severity and impact, but nearly one in five (17%) admit they don't prepare or ...

Posted on 18 October 2017 | 1:15 am

Many Equifax Hack Victims Had Info Stolen Prior to Breach: IRS

The U.S. Internal Revenue Service (IRS) believes the recent Equifax breach will not make a significant difference in terms of tax fraud considering that many victims already had their personal information stolen prior to the incident.

read more

Posted on 18 October 2017 | 1:12 am

How to Fix Antimalware Service Executable (MsMpEng.exe) High CPU Usage

Windows Defender or Windows Defender Antivirus was introduced to us in 2006 as a free antispyware program in Windows XP. After being tagging ...

Posted on 18 October 2017 | 1:03 am

“Blockchain technology aptly lends itself to cybersecurity endeavors”

We've been talking about the advantages blockchain brings to the finance industry but how about cybersecurity? Blockchain is revolutionizing multiple ...

Posted on 18 October 2017 | 1:03 am

“Blockchain technology aptly lends itself to cybersecurity endeavors”

We've been talking about the advantages blockchain brings to the finance industry but how about cybersecurity? Blockchain is revolutionizing multiple ...

Posted on 18 October 2017 | 1:03 am

Ex-TalkTalk chief grilled by MPs on suitability to chair NHS Improvement

She said: "One of the reasons why my name is inextricably linked with cyber attacks is because at TalkTalk we made a choice to warn our customers ...

Posted on 18 October 2017 | 1:03 am

ESET works with Google to halt malware

ESET has launched Chrome Cleanup, a new scanner and cleaner for Google Chrome designed to help users browse the web safely and without ...

Posted on 18 October 2017 | 1:03 am

You think your company can't be hacked? Here's what you don't know

Atul Gupta, partner, cyber security services at KPMG, has many years of experience responding to security incidents in corporate India. He says that ...

Posted on 18 October 2017 | 12:52 am

2017 Cybersecurity Headlines in Review

2017 has been a landmark year in cybersecurity for so many reasons: ransomware attacks that dominated global headlines, the continued debate ...

Posted on 18 October 2017 | 12:52 am

Cyber-attacks have gone beyond Financial Services and Banking Sectors

Cyber-attacks have had a history of targeting information and computer networks inhabiting the cyberspace and hampering an individual's ability to ...

Posted on 18 October 2017 | 12:41 am

British businesses 'preparing for failure' when it comes to cybersecurity

UK companies are unprepared for potential cyber-attacks against their business, with major shortcomings in many areas of security, new research has ...

Posted on 18 October 2017 | 12:30 am

British businesses 'preparing for failure' when it comes to cybersecurity

Perhaps unsurprisingly, Only just over half of British businesses said they had a cross-organisational team in place working on cyber security issues.

Posted on 18 October 2017 | 12:30 am

British businesses 'preparing for failure' when it comes to cybersecurity

UK companies are unprepared for potential cyber-attacks against their business, with major shortcomings in many areas of security, new research has ...

Posted on 18 October 2017 | 12:30 am

Unpatched Flaws Possibly Stolen From Microsoft in 2013 Hack: Report

Hackers may have stolen information on unpatched vulnerabilities after breaching Microsoft’s systems and gaining access to a bug tracker back in 2013, Reuters reported on Monday.

At the time of the breach, Microsoft informed customers that it had been targeted in an attack similar to the ones aimed at Facebook and Apple.

read more

Posted on 18 October 2017 | 12:20 am

Traffic Citation Scam Making Rounds in New Hampshire

Any links that are clicked in the email could download a virus or malware onto the computer and compromise sensitive personal information, he said.

Posted on 18 October 2017 | 12:07 am

Google, ESET add anti-virus tools to Chrome for Windows

Google has teamed up with security specialist ESET to launch a new malware scanner and cleaner for Google Chrome as part of the Chrome Cleanup ...

Posted on 18 October 2017 | 12:07 am

Reckitt Benckiser's third quarter sales fall after cyber-attack disrupts operations

Reckitt Benckiser Group PLC's (LON:RB.) third quarter revenue fell after a cyber-attack in June disrupted operations at the consumer goods giant.

Posted on 18 October 2017 | 12:07 am

Here's why you might want to disable Adobe Flash Player

“After installation, the malware establishes a foothold on the attacked computer and connects to its command and control servers located in ...

Posted on 18 October 2017 | 12:07 am

Here's why you might want to disable Adobe Flash Player

NEWS DESK: A “critical” security issue in Adobe Flash Player is putting computer users at risk, reported The Independent. The vulnerability is being ...

Posted on 18 October 2017 | 12:07 am

Cyber Security Specialists Warn Wi-Fi Vulnerable to Hacker Attacks

Cyber security watchdogs and researchers are issuing warnings over risks associated with a widely used system for securing Wi-Fi communications ...

Posted on 17 October 2017 | 11:56 pm

Cyber Security Specialists Warn Wi-Fi Vulnerable to Hacker Attacks

Cyber security watchdogs and researchers are issuing warnings over risks associated with a widely used system for securing Wi-Fi communications ...

Posted on 17 October 2017 | 11:56 pm

Two Nigerian hackers among four held for e-mail, facebook fraud

Police have arrested four persons, including two Nigerian nationals, for allegedly hacking into email accounts of several persons and collecting cash ...

Posted on 17 October 2017 | 11:56 pm

Reckitt slashes sales outlook further after cyber attack hit

The group reported a 1% fall in group net revenues for the three months to the end of September as it blamed the cyber attack and difficult trading in a ...

Posted on 17 October 2017 | 11:56 pm

Cyber Security Specialists Warn Wi-Fi Vulnerable to Hacker Attacks

Cyber security watchdogs and researchers are issuing warnings over risks associated with a widely used system for securing Wi-Fi communications ...

Posted on 17 October 2017 | 11:56 pm

Cyber Security Specialists Warn Wi-Fi Vulnerable to Hacker Attacks

Cyber security watchdogs and researchers are issuing warnings over risks associated with a widely used system for securing Wi-Fi communications ...

Posted on 17 October 2017 | 11:56 pm

The Uncertain Future of Cybersecurity

Ensuring that our personal belongings are safe and secure seems to be a habitual process. We lock the doors to our dorms before going out for the ...

Posted on 17 October 2017 | 11:45 pm

Reckitt to Reshape as Sales Growth Evaporates

Reckitt, whose products range from Durex condoms to Lysol disinfectant, has blamed fallout from a cyber attack, a failed product launch and a safety ...

Posted on 17 October 2017 | 11:30 pm

All set for National Cyber Security Week

All is set for the National Cyber Security Week slated for 23rd to 27th October 2017. The date for the celebration is strategically selected to coincide the ...

Posted on 17 October 2017 | 10:48 pm

All set for National Cyber Security Week

All is set for the National Cyber Security Week slated for 23rd to 27th October 2017. The date for the celebration is strategically selected to coincide the ...

Posted on 17 October 2017 | 10:48 pm

All set for National Cyber Security Week

All is set for the National Cyber Security Week slated for 23rd to 27th ... Cyber Security Week offers an excellent opportunity for information sharing and ...

Posted on 17 October 2017 | 10:48 pm

The need for soft skills in cybersecurity has increased, says Tripwire Inc

“The cybersecurity industry should not overlook the soft skills that are needed to build a strong security program,” said Tim Erlin, vice president of ...

Posted on 17 October 2017 | 10:26 pm

Why CMOs Need to Become Cybersecurity Experts

And if we, as individuals, are not familiar with cybersecurity overall, we either need to get familiar at some level or we need to have somebody on our ...

Posted on 17 October 2017 | 9:52 pm

Why CMOs Need to Become Cybersecurity Experts

And if we, as individuals, are not familiar with cybersecurity overall, we either need to get familiar at some level or we need to have somebody on our ...

Posted on 17 October 2017 | 9:52 pm

AsTech Offers $1 Million Breach Defense Guarantee With Managed Qualys Offering

“Adding AsTech Vigilance means you get the peace of mind of a $1 million guarantee against data breaches that happen from vulnerabilities ...

Posted on 17 October 2017 | 9:41 pm

UK businesses have slashed their cyber security budgets by a third

Businesses in the UK have cut the amount of cash they are spending on cyber security despite the growing threat of attacks. Budgets for security are a ...

Posted on 17 October 2017 | 9:41 pm

UK businesses have slashed their cyber security budgets by a third

Businesses in the UK have cut the amount of cash they are spending on cyber security despite the growing threat of attacks. Budgets for security are a ...

Posted on 17 October 2017 | 9:41 pm

UK businesses have slashed their cyber security budgets by a third

Businesses in the UK have cut the amount of cash they are spending on cyber security despite the growing threat of attacks. Budgets for security are a ...

Posted on 17 October 2017 | 9:41 pm

Granada Cyber security

The First Secretary of State, Damien Green MP, will be visiting the HQ of global cyber security expert NCC Group at XYZ, Spinningfields in Manchester ...

Posted on 17 October 2017 | 9:30 pm

Granada Cyber security

The First Secretary of State, Damien Green MP, will be visiting the HQ of global cyber security expert NCC Group at XYZ, Spinningfields in Manchester ...

Posted on 17 October 2017 | 9:30 pm

Advanced Protection Program is Google's answer to targeted online attacks

Largely designed for high-profile people who are frequent hacking targets, the program replaces the usual two-factor authentication and takes extra ...

Posted on 17 October 2017 | 9:07 pm

Wi-Fi security flaw gives hackers access to your device

In a first-of-its-kind warning, some cyber-security experts are urging people to stay off Wi-Fi networks, even the one in your home and at work.

Posted on 17 October 2017 | 8:45 pm

ATM Malware Sold on Underground Markets for $5K

A recently discovered piece of malware targeting automated teller machines (ATM) is being sold on underground markets for $5,000, Kaspersky Lab reports.

read more

Posted on 17 October 2017 | 8:34 pm

Domino's blames data breach on former supplier's systems

Domino's has called in the Australian information commissioner to investigate the data breach. Photograph: Linda Nylind for the Guardian.

Posted on 17 October 2017 | 8:33 pm

Hackers Krack Wi-Fi

In theory, it allows an attacker within range of a Wi-Fi network to inject ... Connecting to a secure network involves a four-way "handshake" between a ...

Posted on 17 October 2017 | 8:33 pm

Antivirus Software Market Global: Report Focused on Top Manufacturers, Developments & Growth ...

“Global Antivirus Software Market by Manufacturers, Countries, Type and Application, Forecast to 2022 Report “ Provides In-Depth Analysis Of Parent ...

Posted on 17 October 2017 | 8:22 pm

Mad at Equifax? Use That Fuel to Boost Your Cybersecurity

It's National Cyber Security Awareness Month, and it couldn't have come at a better time, considering we all just went through National Equifax Breach ...

Posted on 17 October 2017 | 8:00 pm

Mad at Equifax? Use That Fuel to Boost Your Cybersecurity

It's National Cyber Security Awareness Month, and it couldn't have come at a better time, considering we all just went through National Equifax Breach ...

Posted on 17 October 2017 | 8:00 pm

Mad at Equifax? Use That Fuel to Boost Your Cybersecurity

It's National Cyber Security Awareness Month, and it couldn't have come at a better time, considering we all just went through National Equifax Breach ...

Posted on 17 October 2017 | 8:00 pm

FEATURE-As scientists ponder "hacking the climate," poor countries are wary

BERLIN, Oct 18 (Thomson Reuters Foundation) - As a child during Ethiopia's deadly famine of 1984, Asfawossen Kassaye remembers watching ...

Posted on 17 October 2017 | 7:48 pm

As scientists ponder "hacking the climate," poor countries are wary

Could geoengineering the planet to curb climate change leave people in poor countries better - or worse - off? By Anna Pujol-Mazzini. BERLIN, Oct 18 ...

Posted on 17 October 2017 | 7:48 pm

Liberian Registry launches cyber and ship security computer-based training

The Liberian Registry has launched a cyber and ship security computer-based training (CBT) programme that provides a comprehensive overview of ...

Posted on 17 October 2017 | 7:26 pm

Security researcher: Your Wi-Fi may not be as secure as you think

That's according to a computer security researcher who discovered a flaw in everyone's Wi-Fi network. The vulnerability allows someone to be able to ...

Posted on 17 October 2017 | 7:15 pm

Celo says healthcare platform is secure against cyber-threats such as KRACK vulnerability

According to the government's Computer Emergency Response Team, a series of Wi-Fi vulnerabilities have been identified and are collectively ...

Posted on 17 October 2017 | 7:15 pm

Peoria seminar on IT to focus on security threats for business

PEORIA — An information technology seminar this week marks a decade that a group of local information technology consultants have hosted a free ...

Posted on 17 October 2017 | 6:30 pm

Peoria seminar on IT to focus on security threats for business

But the Go Secure event that CIAN (Confidentiality, Integrity and Availability of your Network) has planned for Thursday seems more timely than usual, ...

Posted on 17 October 2017 | 6:30 pm

China's push to lead in AI

... the protection of privacy and property, information security, traceability, accountability -- these are the types of things that are already programmed in ...

Posted on 17 October 2017 | 6:30 pm

Vegas hotel security guard's disappearance draws attention

LAS VEGAS (AP) — The cancellation of scheduled TV interviews last week by a hotel security guard wounded by the Las Vegas shooter raised ...

Posted on 17 October 2017 | 5:56 pm

Oracle Releases Security Bulletin

Original release date: October 17, 2017

Oracle has released its Critical Patch Update for October 2017 to address 252 vulnerabilities across multiple products. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

Users and administrators are encouraged to review the Oracle October 2017 Critical Patch Update and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 17 October 2017 | 5:40 pm

IC3 Issues Alert on DDoS Attacks

Original release date: October 17, 2017

The Internet Crime Complaint Center (IC3) has issued an alert on distributed denial-of-service (DDoS)-for-hire services advertised on criminal forums and marketplaces. Using DDoS attacks to prevent legitimate users from accessing websites or information can lead to serious consequences.

US-CERT encourages users and administrators to review the IC3 Alert for more information and US-CERT's Alert on Heightened DDoS Threat Posed by Mirai and Other Botnets.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 17 October 2017 | 5:39 pm

Critical Wi-Fi Vulnerability 'KRACK' Discovered: Are You Safe Online?

Since this vulnerability may impact essentially anyone connected to Wi-Fi, the ... What you should know is that the vulnerability in question, exploitable ... it a phone, computer or router, you should assume it's able to be compromised.

Posted on 17 October 2017 | 5:33 pm

How North Korea Built An Army of Hackers: Q&A

The hackers also worked to bring in cash: In 2011, South Korean police arrested five people for allegedly working with North Korean hackers to steal ...

Posted on 17 October 2017 | 5:11 pm

How North Korea Built An Army of Hackers: Q&A

North Korea has been stepping up its cyber attacks amid rising tensions with the U.S. and the rest of the world. Last year, a group tied to the country ...

Posted on 17 October 2017 | 5:11 pm

What to do about the KRACK Wi-Fi exploit

Local traffic, for example files travelling between two computers, is less likely to be encrypted, so think about what you're transferring.

Posted on 17 October 2017 | 5:11 pm

Trade ministry affiliates report over 10000 hacking attempts since 2013

SEOUL, Oct. 18 (Yonhap) -- The trade ministry's affiliates came under more than 10,000 hacking attempts over the last five years, with the key trade ...

Posted on 17 October 2017 | 5:00 pm

US senator probes Pentagon on Russian source code reviews

Such reviews highlight a quandary for U.S. technology companies, as they weigh U.S. cyber security protections while pursuing business with some of ...

Posted on 17 October 2017 | 4:48 pm

Child safety smartwatches 'easy' to hack, watchdog says

Some smartwatches designed for children have security flaws that make them vulnerable to hackers, a watchdog has warned. The Norwegian ...

Posted on 17 October 2017 | 4:42 pm

Cloudflare, Crowdstrike CEOs Spar Over Future of Cybersecurity Business

LAGUNA BEACH, Calif. -- Two prominent executives in the cybersecurity industry on Tuesday debated whether the field is a long-term business -- or ...

Posted on 17 October 2017 | 4:26 pm

Cloudflare, Crowdstrike CEOs Spar Over Future of Cybersecurity Business

LAGUNA BEACH, Calif. -- Two prominent executives in the cybersecurity industry on Tuesday debated whether the field is a long-term business -- or ...

Posted on 17 October 2017 | 4:26 pm

The Cyberlaw Podcast: The Midnight Basketball of Cybersecurity

This episode features an interview with Mårten Mickos, the CEO of HackerOne. HackerOne administers bug bounty and vulnerability disclosure ...

Posted on 17 October 2017 | 4:26 pm

The Cyberlaw Podcast: The Midnight Basketball of Cybersecurity

This episode features an interview with Mårten Mickos, the CEO of HackerOne. HackerOne administers bug bounty and vulnerability disclosure ...

Posted on 17 October 2017 | 4:26 pm

Would Google's New Super-Secure Email Have Protected Hillary's Campaign?

A targeted phishing scam and an unfortunate typo helped hackers infiltrate the Gmail account of Hillary Clinton's campaign manager John Podesta ...

Posted on 17 October 2017 | 4:26 pm

RSA's Middle East cyber security conference gains its own identity

The Middle East's growing use of, and dependence on, digital technology has made the region an important location for RSA's series of cyber security ...

Posted on 17 October 2017 | 4:15 pm

RSA's Middle East cyber security conference gains its own identity

The Middle East's growing use of, and dependence on, digital technology has made the region an important location for RSA's series of cyber security ...

Posted on 17 October 2017 | 4:15 pm

RSA's Middle East cyber security conference gains its own identity

RSA's Middle East cyber security conference gains its own identity ... including the head of group information security at Etihad Airways, who will talk ...

Posted on 17 October 2017 | 4:15 pm

RSA's Middle East cyber security conference gains its own identity

The Middle East's growing use of, and dependence on, digital technology has made the region an important location for RSA's series of cyber security ...

Posted on 17 October 2017 | 4:15 pm

Domino's hacking scandal: Customer accuse pizza chain of leaking personal details

Domino's hacking scandal: Customer accuse pizza chain of leaking personal details. HAVE you ordered a pizza online? Chances are your personal ...

Posted on 17 October 2017 | 4:15 pm

Microsoft never disclosed 2013 hack of secret vulnerability database

Hackers broke into Microsoft's secret, internal bug-tracking database and stole information related to vulnerabilities that were exploited in later attacks.

Posted on 17 October 2017 | 4:03 pm

IC3 Issues Alert on IoT Devices

Original release date: October 17, 2017

In conjunction with National Cyber Security Awareness Month, the Internet Crime Complaint Center (IC3) has issued an alert to individuals and businesses about the security risks involved with the Internet of Things (IoT). IoT refers to the emerging network of devices (e.g., smart TVs, home automation systems) that connect to one another via the Internet, often automatically sending and receiving data. IC3 warns that once a device is compromised, an attacker may take control of an affected system, obtain sensitive information, or cause a denial-of-service condition.

US-CERT encourages individuals and businesses to review the IC3 Alert for more information on IoT vulnerabilities and mitigation techniques.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 17 October 2017 | 3:56 pm

Necurs Malware Will Now Take a Screenshot of Your Screen, Report Runtime Errors

Malware families evolve on a daily basis, but some updates catch your eye more than others. Necurs has just gone through one of these "interesting" ...

Posted on 17 October 2017 | 3:52 pm

ATM jackpotting for dummies; Yours for just £3788

Says Kaspersky Lab: "Although malicious tools for hacking ATMs have been known for many years, the latest discovery shows that malware creators ...

Posted on 17 October 2017 | 3:52 pm

Companies fall short on cyberthreat, warns PWC

For many companies of a certain size, falling victim to a cyber- attack is now a question of when, not if, and phishing scams and ransomware attacks ...

Posted on 17 October 2017 | 3:52 pm

Data breaches can haunt victims for years after they happen

TAMPA, Fla. - Sri Sridharan said there's so much of your private information for sale on the dark web that hackers have trouble selling all of it.

Posted on 17 October 2017 | 3:41 pm

Adobe Flash Zero Day: Company Patches Spying Vulnerability

FinSpy, also known as FinFisher, is a commercial malware that has been sold to nation states and law enforcement agencies to conduct surveillance.

Posted on 17 October 2017 | 3:30 pm

Sonic data breach hits close to home

It was all about a quick lunch Sonic in Great Bend. That's how Laura Mason become one of millions of Sonic customers nationwide sucked into a ...

Posted on 17 October 2017 | 3:30 pm

A Security CEO and Two Hackers on Building a Safer Internet, Powered by a Community of Hackers

In recent years technology has become an increasing mainstay of businesses in how they present their products and engage their customers. The net ...

Posted on 17 October 2017 | 3:29 pm

Domino's customers targeted by scammers as personal data leaks

"In this country we don't yet have mandatory data breach disclosure laws. We will have those laws from February 22 next year. The act has been ...

Posted on 17 October 2017 | 3:24 pm

'In the Age of the Smart Machine' kicks off third decade for Indiana University tech division

Harvard professor Shoshana Zuboff and computer security expert Dan Geer will kick off the conference with keynote speeches that are free and open ...

Posted on 17 October 2017 | 3:07 pm

Wi-Fi Security Flaw Could Make Every Device You Own Vulnerable To Hackers

“The attacker is now able to access the email address and password of the victim,” cyber security expert and software patent holder Anthony Roman ...

Posted on 17 October 2017 | 3:07 pm

Oracle Patches 250 Bugs in Quarterly Critical Patch Update

Of the critical patches, security researchers at Onapsis said that they identified three high-risk SQL injections vulnerabilities in Oracle's popular Oracle ...

Posted on 17 October 2017 | 3:07 pm

Expert: North Korea's Cyber Abilities Growing

Some experts believe North Korea's ability to carry out computer attacks is increasing. They point to a reported attack that took place in September of ...

Posted on 17 October 2017 | 2:56 pm

Half of Japan's banks have come under cyberattack since 2015: BOJ

Just over half of Japanese financial institutions have come under cyberattack since 2015, the Bank of Japan said as it released the results of a survey ...

Posted on 17 October 2017 | 2:56 pm

41 percent Android phones vulnerable to devastating Wi-Fi attack

On Patch Tuesday last week this fix was provided but Microsoft didn't disclose it in the release notes, as the vulnerability was yet to go public.

Posted on 17 October 2017 | 2:56 pm

Domino's blames supplier for data breach

Mandatory data breach notification laws will come into effect in February 2018, meaning organisations like Domino's will have to notify customers of ...

Posted on 17 October 2017 | 2:52 pm

Your Board Of Directors Is Exposing You To Risk

Your board of directors might be your security Achilles heel. ... with integrity—people you trust with sensitive company plans and information. That ...

Posted on 17 October 2017 | 2:51 pm

IRS Cybercrime Agent Lurks Dark Web Subreddit Looking For Hackers

On Tuesday, a hacker that goes by the name InsanityDRM posted on the subreddit dedicated to the Tor hidden service marketplace Trade Route to ...

Posted on 17 October 2017 | 2:45 pm

Knoxville hosting international cybersecurity conference

KNOXVILLE - Security industry experts and tech researchers are in Knoxville this week for an international conference on cybersecurity.

Posted on 17 October 2017 | 2:45 pm

Domino's customers complain of data breach

Domino's Australia customers are complaining their data has been breached but the pizza chain denies there's any problem with its systems.

Posted on 17 October 2017 | 2:45 pm

October is Cyber Security Awareness Month

October is National Cyber Security Awareness Month. Better Business Bureau of Minnesota and North Dakota (BBB) offers tips for individuals and ...

Posted on 17 October 2017 | 2:45 pm

October is Cyber Security Awareness Month

A computer should always have the most recent updates installed for spam filters, anti-virus and anti-spyware software and a secure firewall.

Posted on 17 October 2017 | 2:45 pm

Domino's customers complain of data breach

Customers of pizza chain Domino's Australia are complaining their personal data has been leaked, prompting eerie personalised emails from ...

Posted on 17 October 2017 | 2:45 pm

Knoxville hosting international cybersecurity conference

KNOXVILLE - Security industry experts and tech researchers are in Knoxville this week for an international conference on cybersecurity.

Posted on 17 October 2017 | 2:45 pm

October is Cyber Security Awareness Month

October is National Cyber Security Awareness Month. Better Business Bureau of Minnesota and North Dakota (BBB) offers tips for individuals and ...

Posted on 17 October 2017 | 2:45 pm

What the Tech? Wi-fi hacking warning

A serious vulnerability in the WPA2 security of most all wi-fi routers has been discovered that makes it easy for a hacker to gain access to data, ...

Posted on 17 October 2017 | 2:33 pm

After Equifax breach and ahead of 2018 filing season, IRS lays out plans to defend against tax frauds

“Our estimate has been before that breach, that information on over 100 ... “My advice to people is to assume your name, social security number and ...

Posted on 17 October 2017 | 2:33 pm

Cybersecurity in Satellite is Lagging, Says NDG's Childers

Chris Childers, founder and Chief Executive Officer (CEO) of the National Defense Group, is in a good position to talk about cybersecurity. His firm ...

Posted on 17 October 2017 | 2:33 pm

Google adds stronger security features for hacking targets

But even if a hacker is successful at tricking you into clicking a malicious link, the hacker still won't be able to access your Gmail account, because you ...

Posted on 17 October 2017 | 2:33 pm

Cybersecurity in Satellite is Lagging, Says NDG's Childers

Chris Childers, founder and Chief Executive Officer (CEO) of the National Defense Group, is in a good position to talk about cybersecurity. His firm ...

Posted on 17 October 2017 | 2:33 pm

Robert Mueller spoke to cybersecurity expert who claims he was recruited to collude with the ...

Special counsel Robert Mueller interviewed a cybersecurity expert who claims to have been recruited to collude with the Russians by a Republican ...

Posted on 17 October 2017 | 2:19 pm

UK Issues Cybersecurity Mandate For Defense Supply Chain

The U.S. is not the only nation wrestling with the challenge of safeguarding its defense supply chain from cybersecurity onslaughts. Five years ago, the ...

Posted on 17 October 2017 | 2:11 pm

Securing US borders requires reliable information sharing

Fortunately, there are many highly capable officials at the U.S. Department of Homeland Security (DHS), U.S. CBP, the FBI, the U.S. Intelligence ...

Posted on 17 October 2017 | 2:11 pm

UK Issues Cybersecurity Mandate For Defense Supply Chain

The U.S. is not the only nation wrestling with the challenge of safeguarding its defense supply chain from cybersecurity onslaughts. Five years ago, the ...

Posted on 17 October 2017 | 2:11 pm

Robert Mueller spoke to cybersecurity expert who claims he was recruited to collude with the ...

Special counsel Robert Mueller interviewed a cybersecurity expert who claims to have been recruited to collude with the Russians by a Republican ...

Posted on 17 October 2017 | 2:11 pm

Rising Stars: Nathaniel Melby

... and a Ph.D. in Information Systems from Nova Southeastern University, specializing in information security and telecommunications. He's also ...

Posted on 17 October 2017 | 2:11 pm

Vulnerability in code library allows attackers to work out private RSA keys

Researchers have discovered a security vulnerability in the Infineon-developed RSA library, which could be exploited by attackers to discover the RSA private key corresponding to an RSA public key generated by this library. This private key could be then misused to impersonate its legitimate owner, decrypt sensitive messages, forge signatures (e.g. for software releases) and more. The vulnerable version of the library is v1.02.013, and it’s unfortunately been in use since 2012 in a wide … More

Posted on 17 October 2017 | 2:09 pm

Security flaws put billions of Wi-Fi devices at risk

Issuing the alert yesterday, the Singapore Computer Emergency Response Team (SingCert) said: "These vulnerabilities may affect the data ...

Posted on 17 October 2017 | 2:00 pm

Editorial: Time for a less hacker-friendly Social Security system

Last month's announcement by Equifax that its consumer-credit database suffered a catastrophic hacking attack meant that nearly half of all Americans ...

Posted on 17 October 2017 | 2:00 pm

Cyberinsurance shifts to the mainstream

Cyberinsurance basically protects your business against catastrophic losses in the event of a security breach. Not surprisingly, its popularity is growing ...

Posted on 17 October 2017 | 2:00 pm

US Senate: Credit Bureaus Data Security and Equifax

“As a follow-up to our hearing on the Equifax data breach, today we will receive testimony on the protection of consumer data at credit bureaus,” Sen.

Posted on 17 October 2017 | 2:00 pm

Research experience has CSU undergrad hacking germs, exploring career path

Renée Plomondon's undergraduate research experience helps her in school and in her future career Renée Plomondon has learned a lot from her ...

Posted on 17 October 2017 | 2:00 pm

Miners beware growing cyber risk

Having a clear digital road map that is cognisant of cyber risk is fundamental, as it is not a matter of 'if' but 'when' an attack might strike. It is critical that ...

Posted on 17 October 2017 | 1:52 pm

Chinese Groups Attack Japanese Firms, Resurrect Old Malware

Groups linked to China continue to launch attacks at the nation's rivals, with reports of one group targeting Japanese companies using a zero-day ...

Posted on 17 October 2017 | 1:48 pm

Google releases new email, browser security features to prevent common hacking issues

Google would not classify the updated detection engine as a “general-purpose antivirus,” saying that “it only removes software that doesn't comply ...

Posted on 17 October 2017 | 1:37 pm

Google releases new email, browser security features to prevent common hacking issues

On Monday, Google also announced a set of a set of improved anti-malware features in Chrome for Windows users. They include protections against ...

Posted on 17 October 2017 | 1:37 pm

Pizza Hut says personal data stolen in breach

Pizza Hut says personal data stolen in breach ... Pizza Hut acknowledged that thousands of customers may have been affected by a data breach.

Posted on 17 October 2017 | 1:27 pm

Modified video games on Russian forum tainted with WaterMiner cryptominer

The malware, known as WaterMiner, is also a mod – in this case, an altered version of a legit open-source miner known as XMRig, according to a ...

Posted on 17 October 2017 | 1:26 pm

At Pentagon, National Cybersecurity Awareness Month is for families too

The Defense Department, like much of the United States, is recognizing October as National Cybersecurity Awareness Month, using it as a chance to ...

Posted on 17 October 2017 | 1:26 pm

At Pentagon, National Cybersecurity Awareness Month is for families too

The Defense Department, like much of the United States, is recognizing October as National Cybersecurity Awareness Month, using it as a chance to ...

Posted on 17 October 2017 | 1:26 pm

Cybersecurity Is Operational Readiness

Cyberspace is an operational domain, and cybersecurity is essential to the operational readiness of military units to achieve the mission, defeat the ...

Posted on 17 October 2017 | 1:15 pm

Chrome Now Has Its Own Antivirus

Google wants to guarantee safe web browsing. To do this, it has added three new Chrome features Chrome aimed at the security world: a detector that ...

Posted on 17 October 2017 | 1:03 pm

Proposed bill calls for a national breach notification standard

In the wake of the Equifax data breach that may have affected more than 143 million individuals, Rep. Jim Langevin (D-Rhode Island) has ...

Posted on 17 October 2017 | 1:03 pm

Coinhive Tries to Appease Critics With Opt-in Crypto Miner

Coinhive has come up with a new version of its controversial cryptocurrency miner after some ad blockers and antivirus companies decided to block ...

Posted on 17 October 2017 | 1:03 pm

Wounded casino security guard vanishes from Las Vegas — and surfaces on the set of 'Ellen'

The mystery is over: Las Vegas security guard Jesus Campos has been found. ... of first-hand information on how the shooting rampage unfolded and how the ... questions about the response of hotel security and Las Vegas police.

Posted on 17 October 2017 | 1:00 pm

Are you employees snooping on the corporate network?

The overwhelming majority of employees are deliberately seeking out information they are not permitted to access, exposing a major snooping problem among today’s workforce. Have you ever looked for or accessed sensitive information about your company’s performance, apart from what you are required to do as part of your job? A Dimensional Research survey polled more than 900 IT security professionals on trends and challenges related to managing employee access to corporate data. Among key … More

Posted on 17 October 2017 | 1:00 pm

Mueller interviews cyber expert who claimed he was 'recruited to collude' with Russians: report

Special counsel Robert Mueller has interviewed a cybersecurity expert who claims he was "recruited to collude with the Russians" in the 2016 election ...

Posted on 17 October 2017 | 12:59 pm

Mueller interviews cyber expert who claimed he was 'recruited to collude' with Russians: report

Matt Tait, a former information security specialist for Britain's Government Communications Headquarters was interviewed weeks ago by Mueller, ...

Posted on 17 October 2017 | 12:59 pm

The Trump team has failed to address the nation's mounting cybersecurity threats

No matter, it seems, that massive and increasing cyberattacks domestically and internationally are shredding confidence in the ability of major ...

Posted on 17 October 2017 | 12:52 pm

Pizza Hut Near Me Hacked? Company Doesn't Disclose Breach For Two Weeks

Pizza Hut recently disclosed it experienced a data breach earlier this month that may have exposed its customers' personal and financial information ...

Posted on 17 October 2017 | 12:41 pm

Pentagon, Services Observe National Cybersecurity Awareness Month

Joining Essye Miller, who is also DoD's chief information security officer, was Air Force Maj. Gen. Burke 'Ed' Wilson, deputy principal cyber advisor to ...

Posted on 17 October 2017 | 12:41 pm

Oracle Critical Patch Update Advisory - October 2017

Posted on 17 October 2017 | 12:30 pm

How agencies can start catching up to the moving goalposts of information security

Twenty years after the Government Accountability Office put federal information security on the High-Risk List, it found that most of the 24 Chief ...

Posted on 17 October 2017 | 12:30 pm

ESET helps Google protect Chrome users from unwanted software

Google has redesigned Chrome Cleanup on Chrome for Windows, and has upgraded the technology it uses to detect and remove unwanted software. A basic antivirus for Chrome “We worked with IT security company ESET to combine their detection engine with Chrome’s sandbox technology. We can now detect and remove more unwanted software than ever before, meaning more people can benefit from Chrome Cleanup,” Product Manager Phillippe Rivard noted, but added that this feature is not … More

Posted on 17 October 2017 | 12:12 pm

Scammers have Domino's Australia customer data – and are sending scarily customised spam ...

Domino's Australia customer data has been leaked, and Australians are ... Domino's blamed a “former supplier” for the privacy breach and insisted ...

Posted on 17 October 2017 | 12:07 pm

Are Hackers 21st Century Mercenaries?

Hacking also remains a low-cost way for so-called rogue states like Iran ... wolves who have sympathies to a cause or regime can be a major threat.

Posted on 17 October 2017 | 12:07 pm

Clinic Pays Ransom After Backups Encrypted in Attack

Namaste's office manager, who asked not to be named, tells Information Security Media Group that the clinic had backups, but those were encrypted in ...

Posted on 17 October 2017 | 12:07 pm

Windows Defender review: Basic protection at the right price

What started out as a basic antivirus detection feature has slowly grown into something that resembles a security suite. It doesn't have anything close ...

Posted on 17 October 2017 | 12:07 pm

IRS: 'Significant' number of Equifax victims had already had info stolen

The Equifax breach resulted in hackers maintaining access to Social Security numbers, birth dates and other personal information on millions of ...

Posted on 17 October 2017 | 12:03 pm

Mystery as Vegas police stop news conferences on massacre, call wounded guard a 'victim'

The Mandalay Bay security guard who slipped out of the public spotlight in the aftermath of the Las Vegas shooting is not a missing person, police told ...

Posted on 17 October 2017 | 11:49 am

Norton Security Premium review: You'll pay a pretty penny for this excellent security suite

Currently, Symantec offers several versions of its long-lived antivirus software: The current flagship product is Norton Security Premium, which costs ...

Posted on 17 October 2017 | 11:45 am

A newly discovered Adobe Flash vulnerability leaves many PC users scared

A new finding made by Kaspersky Lab's advanced exploit prevention systems reveal hackers are using a new security vulnerability in the Adobe Flash ...

Posted on 17 October 2017 | 11:45 am

Avast Premier review: An attractive antivirus suite with limited install options

Avast is one of the more popular free, third-party antivirus programs. For anyone willing to pay for more advanced features, however, Avast's premium ...

Posted on 17 October 2017 | 11:45 am

Tampa companies partner to detect cybersecurity threats before a deal closes

About 42 percent of cyber attacks target small business, and about six in 10 small companies go out of business within six months of a cyber attack, ...

Posted on 17 October 2017 | 11:45 am

AVG Internet Security Review: A premium antivirus suite that you can put on all your household PCs

AVG has a big advantage in the free antivirus space since it owns both Avast (acquired in 2016) and its homegrown product, AVG Free. The hope is ...

Posted on 17 October 2017 | 11:45 am

Basic Tech Skills Every Employee Should Know

How to Set-up an Anti-Virus Software Program: You need to protect your computer from external attacks so you can protect your data. The world is ...

Posted on 17 October 2017 | 11:22 am

Risk & Repeat: Kaspersky antivirus scans implicated in NSA breach

In this week's Risk & Repeat podcast, SearchSecurity editors discuss reports implicating Kaspersky antivirus scans in the recently disclosed breach at ...

Posted on 17 October 2017 | 11:22 am

Supreme Court Will Hear U.S. Vs Microsoft Privacy Case

World Will Watch the U.S. Government Vs Microsoft Played Out in the Supreme Court

read more

Posted on 17 October 2017 | 11:17 am

Security Pros Admit Snooping on Corporate Network: Survey

IT security professionals, particularly executives, often access information that is not relevant to their day-to-day work, according to a new One Identity study focusing on “snooping” on the corporate network.

read more

Posted on 17 October 2017 | 11:17 am

Elevation of Privilege Flaw Impacts Linux Kernel

The Linux kernel is susceptible to a local escalation of privilege impacting the Advanced Linux Sound Architecture (ALSA), Cisco warns.

read more

Posted on 17 October 2017 | 11:00 am

Say Hello To KRACK: WiFi Is No Longer Secure

Researchers revealed details of a new exploit called KRACK, which allows ... It lets attackers monitor traffic between computers and wireless access ...

Posted on 17 October 2017 | 11:00 am

How to Block Windows 10 Fall Creators Update from Installing Itself – No Compromise on Security ...

If you are comfortable with manually installing cumulative updates every Patch Tuesday, then you can easily use this option to delay Windows 10 Fall ...

Posted on 17 October 2017 | 10:56 am

RSA Unveils New GDPR Compliance Offerings

RSA Says GDPR is More About Evidence-based Process Than Technology

read more

Posted on 17 October 2017 | 10:19 am

LastPass releases separate beta listing on the Play Store to test autofill in Android Oreo

Developers need to get their apps ready for new API, and password manager LastPass was one of the first to come out and say it was in the works.

Posted on 17 October 2017 | 10:03 am

Cyber security expert updates businesses on hacking

Europol came out and said it is the number one threat to the European Union.” Attacks, such as ransomware, which can be installed through ...

Posted on 17 October 2017 | 9:52 am

Microsoft 365 coming to US government platforms in early 2018

The service also has increased security, something that is necessary with the growing threat of hacking. "The workplace is changing rapidly," Ron ...

Posted on 17 October 2017 | 9:52 am

Dangerous Malware Allows Anyone to Empty ATMs—And It’s On Sale!

Hacking ATM is now easier than ever before. Usually, hackers exploit hardware and software vulnerabilities to hack ATMs and force them to spit out cash, but now anyone can simply buy a malware to steal millions in cash from ATMs. Hackers are selling ready-made ATM malware on an underground hacking forum that anybody can simply buy for around $5000, researchers at Kaspersky Lab discovered

Posted on 17 October 2017 | 9:42 am

Adobe releases emergency fix for Flash Player zero-day exploited in the wild

Adobe has released an out-of-band security update for Adobe Flash Player that patches a zero-day remote code execution vulnerability actively exploited in the wild. Kaspersky Lab researchers spotted the live attacks on October 10, 2017, and say that the exploit is delivered through a Microsoft Word document and deploys the most recent version of the FinSpy (aka FinFisher) commercial malware developed by Gamma International. The attack leveraging CVE-2017-11292 The researchers believe that the zero-day is … More

Posted on 17 October 2017 | 9:40 am

Common Internet of Things Devices May Expose Consumers to Cyber Exploitation

Posted on 17 October 2017 | 9:30 am

Here's every patch for KRACK Wi-Fi vulnerability available right now

Vendors are reacting swiftly to a vulnerability that lets attackers eavesdrop on your network traffic.

Posted on 17 October 2017 | 9:30 am

Booter and Stresser Services Increase the Scale and Frequency of Distributed Denial of Service Attacks

Posted on 17 October 2017 | 9:30 am

Adobe Warns Users About Hacking

The company has announced that a vulnerability in the program could ... is getting the victims' computer connected to command-and-control servers in ... Kaspersky Lab has worked closely with Adobe to clarify the exploit, leading the ...

Posted on 17 October 2017 | 9:18 am

Chinese backdoor malware resurfaces after more than a decade

The malware affects Windows 7 and up to Windows 8.1, the researchers confirmed.

Posted on 17 October 2017 | 9:00 am

Google to Offer Stepped-up Security For 'High Risk' Users

Google said Tuesday it would offer stronger online security for "high risk" users who may be frequent targets of online attacks.

The US technology titan said anyone with a personal Google account can enroll in the new "advanced protection," while noting that it will require users to "trade off a bit of convenience" for extra security.

read more

Posted on 17 October 2017 | 8:45 am

'Witch hunt & Inquisition': Kaspersky Lab head responds to US spying accusations

The ongoing US campaign against antivirus software firm Kaspersky Lab has failed to provide any proof of security risks of its products or ties to ...

Posted on 17 October 2017 | 8:22 am

Google Chrome adds 3 new antivirus protections, improving security for Windows users

Chrome for Windows users have three new antivirus features for safer browsing, the company announced in a blog post Monday. Building onto ...

Posted on 17 October 2017 | 8:00 am

Antivirus Software Market Analysis by Product Types, Marketing Channel Development Trend ...

Antivirus Software Market report presents a detailed analysis of the industry by size, growth rate, key players, regions, product types & applications.

Posted on 17 October 2017 | 8:00 am

Vendors Race to Fight KRACK Wi-Fi Attacks

Technology companies worldwide have released or are working on releasing patches to address the dangerous Wi-Fi vulnerabilities publicly disclosed this week.

read more

Posted on 17 October 2017 | 7:52 am

SD Times new digest: Windows 10 Fall Creators Update, Adobe Flash vulnerability, MapR's ...

According to Kaspersky, the exploit is delivered through a Microsoft Word document and deploys the FinSpy malware to the user's computer.

Posted on 17 October 2017 | 7:48 am

All Future Official LineageOS 14.1 Builds Are Safe From the KRACK Vulnerability

The KRACK vulnerability is interesting due to how secure many people thought ... Conference on Computer and Communications Security on November 1st. ... many enthusiasts are looking for how we can stay safe from the exploit.

Posted on 17 October 2017 | 7:26 am

How to get the Windows 10 Fall Creators Update (if you don't have it already)

Since this update brings lots of new features, the download will take longer than Patch Tuesday cumulative updates, so it's best to be patient. Installing ...

Posted on 17 October 2017 | 7:02 am

Taiwan Bank Heist Linked to North Korean Hackers

A recent cyber-heist that targeted a bank in Taiwan has been linked by security researchers to an infamous threat group believed to be operating out of North Korea.

read more

Posted on 17 October 2017 | 6:51 am

Google Advanced Protection is for high-profile hacking targets

Sign up and you'll put restrictions on your account that will be borderline onerous, but could be vital when you know you're facing a serious threat.

Posted on 17 October 2017 | 6:41 am

How to protect your Wi-Fi network from a Krack attack

The Krack exploit – extensive technical details of which can be found on ... “Wi-Fi Alliance now requires testing for this vulnerability within our global ... Nicholas Weaver, a senior staff researcher focusing on computer security at the ...

Posted on 17 October 2017 | 6:41 am

In Google Chrome appeared antivirus

Google has released an updated desktop version of the Chrome browser for Windows. It has a new function to combat with malicious code.

Posted on 17 October 2017 | 6:41 am

Be Careful When Copying and Pasting Your Ethereum Wallet Address!

This was then discovered by the major antivirus development firm Symantec in February 2016. This Trojan was spread around by different phishing ...

Posted on 17 October 2017 | 6:30 am

APT group's active exploit of Flash bug prompts emergency Adobe patch

The fix came just six days after Adobe's last Patch Tuesday release cycle, at which time the company had zero updates for its product line – a rare and ...

Posted on 17 October 2017 | 6:30 am

Learn Ethical Hacking — Get 8 Online Courses For Just $29

With the rise in cyber-crimes, ethical hacking has become a powerful strategy in the fight against online threats. In general terms, ethical hackers are authorised to break into supposedly 'secure' computer systems without malicious intent, but with the aim of discovering vulnerabilities to bring about improved protection. Ethical Hackers are now kind of becoming the alchemists of the 21st

Posted on 17 October 2017 | 6:27 am

LastPass Makes It Easy to Protect Your Family's Passwords

BOSTON, Oct. 17, 2017 (GLOBE NEWSWIRE) -- LastPass today announced the general availability of LastPass Families, a new version of its popular ...

Posted on 17 October 2017 | 5:56 am

Steps to Improve Critical Infrastructure and ICS Network Security

These Prescriptive Steps Can Help the State of Security in Your ICS Network Environment 

read more

Posted on 17 October 2017 | 5:35 am

How to fix October 10 update causing 'Inaccessible Boot Device' error in Windows 10

On October 10, Microsoft rolled out its Patch Tuesday for Windows 10 as usual, but unfortunately a number of users quickly started reporting an ...

Posted on 17 October 2017 | 5:31 am

No Modern Wi-Fi Network Was Ready to Face the Krack Attack

Experts were aware of this digital threat for some weeks now. However ... The hacking method works by attacking the core of the WPA2 protocol itself.

Posted on 17 October 2017 | 5:00 am

KRACK down: Vendors start to patch WPA2 flaw

THE FULL EXTENT of the KRACK WiFi exploit which makes the standard WPA2 encryption on ... Then he has to have enough “CPU hours” (that is to say, enough computer power to exploit the vulnerability in a reasonable time).

Posted on 17 October 2017 | 5:00 am

Microsoft Kept Secret That Its Bug-Tracking Database Was Hacked In 2013

It was not just Yahoo among "Fortune 500" companies who tried to keep a major data breach incident secret. Reportedly, Microsoft had also suffered a data breach four and a half years ago (in 2013), when a "highly sophisticated hacking group" breached its bug-reporting and patch-tracking database, but the hack was never made public until today. According to five former employees of the

Posted on 17 October 2017 | 4:33 am

Today’s Predictions for Tomorrow’s Internet

Original release date: October 17, 2017

October is National Cybersecurity Awareness Month, an annual campaign to raise awareness about cybersecurity. Smart cities, connected devices, digitized records, as well as smart cars and homes, have become a new reality. While there are tremendous benefits to this technology, it is critical to understand how to use these cutting-edge innovations in safe and secure ways. The National Cyber Security Alliance has released Online Cybersecurity Advice to help users access digital innovations safely and efficiently.

US-CERT encourages users and administrators to review the following resources:


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 17 October 2017 | 4:24 am

FAQ: What is KRACK and how to secure your Wi-Fi networks

This led to the Singapore Computer Emergency Response Team ... Mr Vanhoef said his attack method does not exploit access points but the devices ...

Posted on 17 October 2017 | 3:47 am

BlackBerry Patches Vulnerabilities in Workspaces Server

Updates released by BlackBerry for some Workspaces Server components address two vulnerabilities, including a high severity flaw that can be exploited for arbitrary code execution.

BlackBerry Workspaces, formerly known as WatchDox, is a platform that allows organizations to securely access, share and manage important files.

read more

Posted on 17 October 2017 | 3:40 am

Security flaw prompts fears on WiFi connections

The US government's Computer Emergency Response Team (CERT) issued a ... Attackers can exploit the flaw in WPA2 – the name for the encryption ...

Posted on 17 October 2017 | 3:18 am

Serious Crypto-Flaw Lets Hackers Recover Private RSA Keys Used in Billions of Devices

If you think KRACK attack for WiFi is the worst vulnerability of this year, then hold on… ...we have got another one for you which is even worse. Microsoft, Google, Lenovo, HP and Fujitsu are warning their customers of a potentially serious vulnerability in widely used RSA cryptographic library produced by German semiconductor manufacturer Infineon Technologies. It's noteworthy that this

Posted on 17 October 2017 | 1:57 am

As devastating as KRACK: New vulnerability undermines RSA encryption keys

A new security flaw has placed the security of RSA encryption in jeopardy.

Posted on 17 October 2017 | 1:57 am

DHS Orders Federal Agencies to Use DMARC, HTTPS

The U.S. Department of Homeland Security (DHS) has issued a binding operational directive requiring all federal agencies to start using web and email security technologies such as HTTPS, DMARC and STARTTLS within the next few months.

read more

Posted on 17 October 2017 | 1:13 am

KRACK mass Wi-Fi attack: Who is to blame?

A cryptography expert weighs in on how the bug managed to lurk in WPA2 without detection.

Posted on 17 October 2017 | 12:09 am

Adobe patches zero-day vulnerability used to plant gov't spying software

KRACK is not the only security flaw you should be concerned about.

Posted on 16 October 2017 | 11:22 pm

Adobe Flash vulnerability exploited by BlackOasis hacking group to plant FinSpy spyware

Once the Flash vulnerability has been exploited and the FinSpy malware is installed on the targeted computer, the spyware “establishes a foothold on ...

Posted on 16 October 2017 | 10:26 pm

Adobe Flash vulnerability exploited by BlackOasis hacking group to plant FinSpy spyware

Once the Flash vulnerability has been exploited and the FinSpy malware is installed on the targeted computer, the spyware "establishes a foothold on ...

Posted on 16 October 2017 | 10:26 pm

Google Adds Barebones Antivirus Protection To Chrome Browser For Windows

The “bloat” is about to increase again today, although Google says that the latest addition to Chrome should help protect your system from attacks.

Posted on 16 October 2017 | 9:30 pm

US government issues warning as Wi-Fi security flaw makes millions of internet users' data ...

The U.S. government's Computer Emergency Response Team (CERT) issued ... Attackers can exploit the flaw in WPA2 — the name for the encryption ...

Posted on 16 October 2017 | 7:10 pm

Sensitive data hackable via new Wi-Fi exploit

According to Mathy Vanhoef, a doctoral researcher in computer security from ... In a statement on the KRACK Wi-Fi exploit, McAfee's Chief Technology ...

Posted on 16 October 2017 | 7:03 pm

Serious “KRACK” vulnerability puts nearly every Wi-Fi network at risk, opens sensitive data to ...

Serious “KRACK” vulnerability puts nearly every Wi-Fi network at risk, ... for the vulnerability and should be keeping their computer systems updated, ...

Posted on 16 October 2017 | 5:56 pm

What You Should Know About the ‘KRACK’ WiFi Security Weakness

Researchers this week published information about a newfound, serious weakness in WPA2 -- the security standard that protects all modern Wi-Fi networks. What follows is a short rundown on what exactly is at stake here, who's most at-risk from this vulnerability, and what organizations and individuals can do about it.

Posted on 16 October 2017 | 1:43 pm

Security Flaw Prompts Fears on Wi-Fi Connections

A newly discovered flaw in the widely used Wi-Fi encryption protocol could leave millions of users vulnerable to attacks, prompting warnings Monday from the US government and security researchers worldwide.

read more

Posted on 16 October 2017 | 12:47 pm

Adobe Releases Security Updates

Original release date: October 16, 2017

Adobe has released security updates to address a vulnerability in Adobe Flash Player. A remote attacker could exploit this vulnerability to take control of an affected system.

US-CERT encourages users and administrators to review Adobe Security Bulletin APSB17-32 and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 16 October 2017 | 12:33 pm

Firm Backs Vulnerability Management Service With $1 Million Guarantee

San Francisco-based consulting firm AsTech has today announced a $1 million guarantee for its Qualys Managed Services offering. AsTech is one of a small but growing number of vendors applying a different approach to cyber insurance: a monetary guarantee against failure of their own products.

read more

Posted on 16 October 2017 | 12:06 pm

How A Drive-by Download Attack Locked Down Entire City for 4 Days

We don't really know the pain and cost of a downtime event unless we are directly touched. Be it a flood, electrical failure, ransomware attack or other broad geographic events; we don't know what it is really like to have to restore IT infrastructure unless we have had to do it ourselves. We look at other people's backup and recovery issues and hope we are smarter or clever enough to keep

Posted on 16 October 2017 | 10:14 am

Security flaw prompts fears on Wi-Fi connections

The agency's warning came on the heels of research by computer scientists at ... Attackers can exploit the flaw in WPA2 — the name for the encryption ...

Posted on 16 October 2017 | 9:30 am

Hackers Use New Flash Zero-Day Exploit to Distribute FinFisher Spyware

FinSpy—the infamous surveillance malware is back and infecting high-profile targets using a new Adobe Flash zero-day exploit delivered through Microsoft Office documents. Security researchers from Kaspersky Labs have discovered a new zero-day remote code execution vulnerability in Adobe Flash, which was being actively exploited in the wild by a group of advanced persistent threat actors,

Posted on 16 October 2017 | 8:53 am

Yet Another Linux Kernel Privilege-Escalation Bug Discovered

Security researchers have discovered a new privilege-escalation vulnerability in Linux kernel that could allow a local attacker to execute code on the affected systems with elevated privileges. Discovered by Venustech ADLab (Active-Defense Lab) researchers, the Linux kernel vulnerability (CVE-2017-15265) is due to a use-after-free memory error in the Advanced Linux Sound Architecture (ALSA)

Posted on 16 October 2017 | 8:02 am

Homeland Security orders federal agencies to start encrypting sites, emails

Three-quarters of the federal government uses encryption. Homeland Security says that isn't enough.

Posted on 16 October 2017 | 6:45 am

CERT/CC Reports WPA2 Vulnerabilities

Original release date: October 16, 2017

CERT Coordination Center (CERT/CC) has released information on Wi-Fi Protected Access II (WPA2) protocol vulnerabilities. Exploitation of these vulnerabilities could allow an attacker to take control of an affected system.

The vulnerabilities are in the WPA2 protocol, not within individual WPA2 implementations, which means that all WPA2 wireless networking may be affected. Mitigations include installing updates to affected products and hosts as they become available. US-CERT encourages users and administrators to review CERT/CC's VU #228519.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 16 October 2017 | 6:20 am

Krebs Given ISSA’s ‘President’s Award’

KrebsOnSecurity was honored this month with the 2017 President's Award for Public Service from the Information Systems Security Association, a nonprofit organization for cybersecurity professionals. The award recognizes an individual's contribution to the information security profession in the area of public service.

Posted on 16 October 2017 | 5:35 am

KRACK Demo: Critical Key Reinstallation Attack Against Widely-Used WPA2 Wi-Fi Protocol

Do you think your wireless network is secure because you're using WPA2 encryption? If yes, think again! Security researchers have discovered several key management vulnerabilities in the core of Wi-Fi Protected Access II (WPA2) protocol that could allow an attacker to hack into your Wi-Fi network and eavesdrop on the Internet communications. WPA2 is a 13-year-old WiFi authentication scheme

Posted on 16 October 2017 | 4:27 am

WPA2 security flaw puts almost every Wi-Fi device at risk of hijack, eavesdropping

Security experts have said the bug is a total breakdown of the WPA2 security protocol.

Posted on 16 October 2017 | 3:00 am

Ukraine Police Warns of New NotPetya-Style Large Scale CyberAttack

Remember NotPetya? The Ransomware that shut down thousands of businesses, organisations and banks in Ukraine as well as different parts of Europe in June this year. Now, Ukrainian government authorities are once again warning its citizens to brace themselves for next wave of "large-scale" NotPetya-like cyber attack. According to a press release published Thursday by the Secret Service of

Posted on 14 October 2017 | 12:24 am

New Ransomware Not Just Encrypts Your Android But Also Changes PIN Lock

DoubleLocker—as the name suggests, it locks device twice. Security researchers from Slovakia-based security software maker ESET have discovered a new Android ransomware that not just encrypts users’ data, but also locks them out of their devices by changing lock screen PIN. On top of that: DoubleLocker is the first-ever ransomware to misuse Android accessibility—a feature that provides

Posted on 14 October 2017 | 12:03 am

This bug let a researcher bypass GoDaddy's site security tool

A security researcher said the tool, which is supposed to prevent SQL injections, could be easily bypassed.

Posted on 13 October 2017 | 8:58 am

Scam Alert: Your Trusted Friends Can Hack Your Facebook Account

If you receive a message from any of your Facebook Friends asking for urgent help to recover their Facebook account, since they've added you as one of their 'Trusted Contacts'—just don’t blindly believe it. Researchers have detected a new Facebook phishing scam that can even trick an experienced technical user into falling victim to the scam, helping an attacker gain access to your Facebook

Posted on 13 October 2017 | 1:21 am

Equifax insists web portal has not been compromised

The credit rating agency has pushed back on claims of a second cyberattack.

Posted on 13 October 2017 | 1:07 am

500 million PCs are being used for stealth cryptocurrency mining online

Your PC may be used to find cryptocurrency when you visit websites, with or without your consent.

Posted on 13 October 2017 | 12:22 am

Equifax Credit Assistance Site Served Spyware

Big-three consumer credit bureau Equifax says it has removed third-party code from its credit report assistance Web site that prompted visitors to download malicious software disguised as an update for Adobe's Flash Player software.

Posted on 12 October 2017 | 2:03 pm

Hyatt Hotels Suffers 2nd Card Breach in 2 Years

Hyatt Corp. is alerting customers about another credit card breach at some hotels, the second major incident with the hospitality chain in as many years.

Posted on 12 October 2017 | 10:44 am

Researchers find 450,000 financial scams operating on social media

Each successful attack can cost victims tends of thousands of dollars.

Posted on 12 October 2017 | 6:00 am

Online Training for CISA, CISM, and CISSP Cyber Security Certifications

Believe it or not, but any computer connected to the Internet is vulnerable to cyber attacks. With more money at risk and data breaches at a rise, more certified cyber security experts and professionals are needed by every corporate and organisation to prevent themselves from hackers and cyber thieves. That's why jobs in the cyber security field have gone up 80% over the past three years

Posted on 12 October 2017 | 4:52 am

MS Office Built-in Feature Allows Malware Execution Without Macros Enabled

Since new forms of cybercrime are on the rise, traditional techniques seem to be shifting towards more clandestine that involve the exploitation of standard system tools and protocols, which are not always monitored. Security researchers at Cisco's Talos threat research group have discovered one such attack campaign spreading malware-equipped Microsoft Word documents that perform code

Posted on 12 October 2017 | 4:06 am

SEC spoofed, malware hosted on US gov't server in new DNS attack

A compromised US government server has been used to host malware in the attack chain.

Posted on 12 October 2017 | 2:11 am

Buggy Microsoft Outlook Sending Encrypted S/MIME Emails With Plaintext Copy For Months

Beware, If you are using S/MIME protocol over Microsoft Outlook to encrypt your email communication, you need to watch out. From at least last 6 months, your messages were being sent in both encrypted and unencrypted forms, exposing all your secret and sensitive communications to potential eavesdroppers. S/MIME, or Secure/Multipurpose Internet Mail Extensions, is an end-to-end encryption

Posted on 12 October 2017 | 1:58 am

Republican polling firm's database was hacked, exposing donor records

The data was stolen just after the 2016 election, the polling outfit confirmed.

Posted on 11 October 2017 | 2:00 pm

Outlook bug meant S/MIME emails were sent unencrypted for months

The bug meant emails might not have been properly encrypted before they were sent.

Posted on 11 October 2017 | 10:53 am

Mozilla Releases Security Update

Original release date: October 11, 2017

Mozilla has released a security update to address multiple vulnerabilities in Thunderbird. Exploitation of some of these vulnerabilities may allow a remote attacker to take control of an affected system.

US-CERT encourages users and administrators to review the Mozilla Security Advisory for Thunderbird and apply the necessary update.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 11 October 2017 | 7:25 am

Microsoft’s October Patch Batch Fixes 62 Flaws

Microsoft on Tuesday released software updates to fix at least 62 security vulnerabilities in Windows, Office and other software. Two of those flaws were detailed publicly before yesterday's patches were released, and one of them is already being exploited in active attacks, so attackers already have a head start.

Posted on 11 October 2017 | 7:18 am

Israel Hacked Kaspersky, Caught Russian Spies Hacking American Spies, But...

The cold cyber war has just turned hot. According to a story published today by the New York Times, Israeli government hackers hacked into Kaspersky’s network in 2015 and caught Russian government hackers red-handed hacking US government hackers with the help of Kaspersky. In other words — Russia spying on America, Israel spying on Russia and America spying on everyone. What the F^#% is

Posted on 11 October 2017 | 5:39 am

US deputy attorney general just called for 'responsible encryption.' Don't fall for it.

You only need to look at the past year of data breaches, leaks, and exposures to see that some of the most precious national security and technological secrets in the US aren't safe.

Posted on 11 October 2017 | 5:38 am

Hackers Steal $60 Million from Taiwanese Bank; Two Suspects Arrested

A Taiwanese bank has become the latest to fall victim to hackers siphoning off millions of dollars by targeting the backbone of the world financial system, SWIFT. SWIFT, or Society for Worldwide Interbank Telecommunication, is a global financial messaging system that thousands of banks and commercial organizations across the world use to transfer billions of dollars every day. Hackers

Posted on 11 October 2017 | 4:49 am

Judge smashes boundless warrant for identities of anti-Trump website users

A US judge has stripped away the warrant to the bare bones, to DreamHost's delight.

Posted on 11 October 2017 | 2:44 am

Microsoft Issues Patches For Severe Flaws, Including Office Zero-Day & DNS Attack

As part of its "October Patch Tuesday," Microsoft has today released a large batch of security updates to patch a total of 62 vulnerabilities in its products, including a severe MS office zero-day flaw that has been exploited in the wild. Security updates also include patches for Microsoft Windows operating systems, Internet Explorer, Microsoft Edge, Skype, Microsoft Lync and Microsoft

Posted on 11 October 2017 | 2:13 am

OnePlus Secretly Collects Way More Data Than It Should — Here’s How to Disable It

There is terrible news for all OnePlus lovers. Your OnePlus handset, running OxygenOS—the company's custom version of the Android operating system, is collecting way more data on its users than it requires. A recent blog post published today by security researcher Christopher Moore on his website detailed the data collection practice by the Shenzhen-based Chinese smartphone maker, revealing

Posted on 11 October 2017 | 12:47 am

Equifax Hackers Stole Info on 693,665 UK Residents

Equifax Inc. said today an investigation into information stolen in the epic data breach the company disclosed on Sept. 7 revealed that intruders took a file containing 15.2 million UK records. The company says it is now working to inform nearly 700,000 U.K. consumers whose data was stolen in the attack.

Posted on 10 October 2017 | 3:00 pm

Microsoft Releases October 2017 Security Updates

Original release date: October 10, 2017

Microsoft has released updates to address vulnerabilities in Microsoft software. A remote attacker could exploit some of these vulnerabilities to take control of an affected system.

US-CERT encourages users and administrators to review Microsoft's October 2017 Security Update Summary and Deployment Information and apply the necessary updates.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 10 October 2017 | 12:37 pm

Equifax says 693,000 UK residents affected by hack

The company initially said 400,000 UK residents were at risk.

Posted on 10 October 2017 | 10:48 am

Cybersecurity in the Workplace is Everyone’s Business

Original release date: October 10, 2017

October is National Cybersecurity Awareness Month, an annual campaign to raise awareness about cybersecurity. Creating a culture of cybersecurity is critical for all organizations—large and small businesses, academic institutions, non-profits, and government agencies—and is a responsibility shared among all employees. The National Institute of Standards and Technology (NIST) has published resources including standards, guidelines, and best practices to help organizations of all sizes to strengthen cyber resilience.

US-CERT encourages organizations and employees to review the following resources:


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 10 October 2017 | 10:38 am

Watch Out! Difficult-to-Detect Phishing Attack Can Steal Your Apple ID Password

Can you detect which one of the above screens—asking an iPhone user for iCloud password—is original and which is fake? Well, you would agree that both screenshots are almost identical, but the pop-up shown in the second image is fake—a perfect phishing attack that can be used to trick even the most careful users on the Internet. Felix Krause, an iOS developer and founder of Fastlane.Tools,

Posted on 10 October 2017 | 10:03 am

Microsoft Cortana Can Now Read Your Skype Messages to Make Chat Smarter

Microsoft today announced built-in support for Cortana—an artificial intelligence-powered smart assistant—in Skype messenger on Android as well as iOS devices. What purpose does it serve? Microsoft wants its AI-based smart assistance to understand your conversations and help you with quick suggestions, ideas and information right inside your chat window. "Cortana can also help you organize

Posted on 10 October 2017 | 8:31 am

Accenture left a huge trove of highly sensitive data on exposed servers

The four exposed servers had no password, but contained the "keys to the kingdom."

Posted on 10 October 2017 | 6:00 am

Warning: Millions Of P0rnHub Users Hit With Malvertising Attack

Researchers from cybersecurity firm Proofpoint have recently discovered a large-scale malvertising campaign that exposed millions of Internet users in the United States, Canada, the UK, and Australia to malware infections. Active for more than a year and still ongoing, the malware campaign is being conducted by a hacking group called KovCoreG, which is well known for distributing Kovter ad

Posted on 10 October 2017 | 3:30 am

FBI Arrests A Cyberstalker After Shady "No-Logs" VPN Provider Shared User Logs

FBI recently arrested a psycho cyber stalker with the help of a popular VPN service and this case apparently exposed the company's lies about the "no logs" policy. Taking down cyber stalkers and criminals is definitely a good thing, and the FBI has truly done a great job, but the VPN company whose first line of the privacy policy is—"We Do Not monitor user activity nor do we keep any logs"—

Posted on 9 October 2017 | 1:21 am

Equifax Breach Fallout: Your Salary History

In May, KrebsOnSecurity broke a story about lax security at a payroll division of big-three credit bureau Equifax that let identity thieves access personal and financial data on an unknown number of Americans. Incredibly, this same division makes it simple to access detailed salary and employment history on a large portion of Americans using little more than someone's Social Security number and date of birth -- both data elements that were stolen in the recent breach at Equifax.

Posted on 8 October 2017 | 11:56 am

Disqus Hacked: More than 17.5 Million Users' Details Stolen in 2012 Breach

Another day, Another data breach disclosure. This time the popular commenting system has fallen victim to a massive security breach. Disqus, the company which provides a web-based comment plugin for websites and blogs, has admitted that it was breached 5 years ago in July 2012 and hackers stole details of more than 17.5 million users. The stolen data includes email addresses, usernames,

Posted on 7 October 2017 | 12:07 am

U.S. Believes Russian Spies Used Kaspersky Antivirus to Steal NSA Secrets

Do you know—United States Government has banned federal agencies from using Kaspersky antivirus software over spying fear? Though there's no solid evidence yet available, an article published by WSJ claims that the Russian state-sponsored hackers stole highly classified NSA documents from a contractor in 2015 with the help of a security program made by Russia-based security firm Kaspersky Lab

Posted on 6 October 2017 | 6:43 am

Apple Releases Security Update for macOS High Sierra

Original release date: October 05, 2017

Apple has released a supplemental security update to address vulnerabilities in macOS High Sierra 10.13. An attacker could exploit these vulnerabilities to obtain sensitive information.

US-CERT encourages users and administrators to review the Apple security page for macOS High Sierra 10.13 and apply the necessary update.


This product is provided subject to this Notification and this Privacy & Use policy.


Posted on 5 October 2017 | 2:00 pm

Fear Not: You, Too, Are a Cybercrime Victim!

Maybe you've been feeling left out because you weren't among the lucky few hundred million or billion who had their personal information stolen in either the Equifax or Yahoo! breaches. Well buck up, camper: Both companies took steps to make you feel better today. Yahoo! announced that, our bad!: It wasn't just one billion users who had their account information filched in its record-breaking 2013 data breach. It was more like three billion (read: all) users. Meanwhile, big three credit bureau Equifax added 2.5 million more victims to its roster of 143 million Americans who had their Social Security numbers and other personal data filched in a breach earlier this year. At the same time, Equifax's erstwhile CEO informed Congress that the breach was the result of even more bone-headed security than was first disclosed. To those still feeling left out by either company after this spate of news, I have only one thing to say (although I feel a bit like a broken record in repeating this): Assume you're compromised, and take steps accordingly.

Posted on 3 October 2017 | 9:34 pm

USPS ‘Informed Delivery’ Is Stalker’s Dream

A free new service from the U.S. Postal Service that provides scanned images of incoming mail days before it is slated to arrive at its destination address is raising eyebrows among security experts who worry about the service's potential for misuse by private investigators, identity thieves, stalkers or abusive ex-partners. The USPS says it hopes to have changes in place by early next year that could help blunt some of those concerns.

Posted on 2 October 2017 | 9:32 am

Here’s What to Ask the Former Equifax CEO

Richard Smith -- who resigned as chief executive of big-three credit bureau Equifax this week in the wake of a data breach that exposed 143 million Social Security numbers -- is slated to testify in front of no fewer than four committees on Capitol Hill next week. If I were a lawmaker, here are some of the questions I'd ask when Mr. Smith goes to Washington.

Posted on 29 September 2017 | 9:07 am

Twitter Forensics From The 2017 German Election

Over the past month, I’ve pointed Twitter analytics scripts at a set of search terms relevant to the German elections in order to study trends and look for interference. Germans aren’t all that into Twitter. During European waking hours Tweets in German make up less than 0.5% of all Tweets published. Over the last month, […]

Posted on 25 September 2017 | 7:59 am

Oracle Security Alert for CVE-2017-9805 - 22 September 2017

Posted on 22 September 2017 | 12:30 pm

Revised: Internet-Connected Toys Could Present Privacy and Contact Concerns for Children

Posted on 21 September 2017 | 1:00 pm

Fraudsters Capitalize on Natural Disasters

Posted on 20 September 2017 | 6:30 am

WordPress 4.8.2 Security and Maintenance Release

WordPress 4.8.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.8.1 and earlier are affected by these security issues: $wpdb->prepare() can create unexpected and unsafe queries leading to potential SQL injection (SQLi). WordPress core is not directly vulnerable to this […]

Posted on 19 September 2017 | 3:17 pm

TrickBot In The Nordics, Episode II

The banking trojan TrickBot is not retired yet. Not in the least. In a seemingly never ending series of spam campaigns – not via the Necurs botnet this time – we’ve spotted mails written in Norwegian that appear to be sent by DNB, Norway’s largest bank. The mail wants the recipient to believe that they […]

Posted on 14 September 2017 | 6:01 am

Working Around Twitter API Restrictions To Identify Bots

Twitter is by far the easiest social media platform to work with programmatically. The Twitter API provides developers with a clean and simple interface to query Twitter’s objects (Tweets, users, timelines, etc.) and bindings to this API exist for many languages. As an example, I’ve been using Tweepy to write Python scripts that work with Twitter data. […]

Posted on 31 August 2017 | 4:45 am

Trump Hating South Americans Hacked HBO

Last week – I read the message “Mr. Smith” reportedly sent to HBO… and it brought up a few questions. And also, it offered some “answers” to questions that I’m often asked. Questions such as “how much money do cyber criminals make?” Here’s the start of the message. First, let’s examine Mr. Smith and his […]

Posted on 24 August 2017 | 8:39 am

Online Scammers Require Payment Via Music Application Gift Cards

Posted on 1 August 2017 | 11:25 am

Break your own product, and break it hard

Hello readers, I am Andrea Barisani, founder of Inverse Path, which is now part of F-Secure. I lead the Hardware Security consulting team within F-Secure’s Cyber Security Services. You may have heard of our USB armory product, an innovative compact computer for security applications that is 100% open hardware, open source and Made in Italy. […]

Posted on 19 July 2017 | 7:49 am

Oracle Critical Patch Update Advisory - July 2017

Posted on 18 July 2017 | 12:30 pm

Retefe Banking Trojan Targets Both Windows And Mac Users

Based on our telemetry, customers (mainly in the region of Switzerland and Germany) are being targeted by a Retefe banking trojan campaign which uses both Windows and macOS-based attachments. Its massive spam run started earlier this week and peaked yesterday afternoon (Helsinki time). TrendMicro did a nice writeup on this threat earlier this week. The […]

Posted on 14 July 2017 | 7:03 am

How EternalPetya Encrypts Files In User Mode

On Thursday of last week (June 29th 2017), just after writing about EternalPetya, we discovered that the user-mode file encryption-decryption mechanism would be functional, provided a victim could obtain the correct key from the malware’s author. Here’s a description of how that mechanism works. EternalPetya malware uses the standard Win32 crypto API to encrypt data. […]

Posted on 4 July 2017 | 4:26 am

What Good Is A Not For Profit (Eternal) Petya?

Following up on our post from yesterday, as an intellectual thought experiment, let’s take the position that there’s something to the idea of (Eternal) Petya not being motivated by money/profit. Let’s also just go ahead and imagine that it’s been developed by a nation state. In my mind, it raises the following question: WTF WHY? […]

Posted on 30 June 2017 | 5:09 am

(Eternal) Petya From A Developer’s Perspective

In our previous post about Petya, we speculated that the short-cuts, design flaws, and non-functional mechanisms observed in the  malware could have arisen due to it being developed under a tight deadline. I’d now like to elaborate a little on what we meant by that. As a recap, this is what the latest version of Petya […]

Posted on 30 June 2017 | 3:29 am

Petya: “I Want To Believe”

There’s been a lot of speculation and conjecture around this “Petya” outbreak. A great deal of it seems to have been fueled by confirmation bias (to us, at least). Many things about this malware don’t add up (at first glance). But it wouldn’t be the first time that’s happened. And yet everyone seems to have […]

Posted on 29 June 2017 | 9:21 am

Processing Quote Tweets With Twitter API

I’ve been writing scripts to process Twitter streaming data via the Twitter API. One of those scripts looks for patterns in metadata and associations between accounts, as streaming data arrives. The script processes retweets, and I decided to add functionality to also process quote Tweets. Retweets “echo” the original by embedding a copy of the […]

Posted on 23 June 2017 | 3:41 am

Super Awesome Fuzzing, Part One

An informative guide on using AFL and libFuzzer. Posted on behalf of Atte Kettunen (Software Security Expert) & Eero Kurimo (Lead Software Engineer) – Security Research and Technologies. The point of security software is to make a system more secure. When developing software, one definitely doesn’t want to introduce new points of failure, or to […]

Posted on 22 June 2017 | 4:00 am

Oracle Security Alert for CVE-2017-3629

Posted on 19 June 2017 | 12:30 pm

TrickBot Goes Nordic… Once In A While

We’ve been monitoring the banking trojan TrickBot since its appearance last summer. During the past few months, the malware underwent several internal changes and improvements, such as more generic info-stealing, support for Microsoft Edge, and encryption/randomization techniques to make analysis and detection more difficult. Unlike the very fast expansion of banks targeted during the first […]

Posted on 13 June 2017 | 3:58 am

OSINT For Fun And Profit: Hung Parliament Edition

The 2017 UK general election just concluded, with the Conservatives gaining the most votes out of all political parties. But they didn’t win enough seats to secure a majority. The result is a hung parliament. Both the Labour and Conservative parties gained voters compared to the previous general election. Some of those wins came from […]

Posted on 8 June 2017 | 11:09 pm

Why Is Somebody Creating An Army Of Twitter Bots?

There’s been some speculation this week regarding Donald Trump’s Twitter account. Why? Because its follower count “dramatically” increased (according to reports) due to a bunch of bots. Since Twitter analytics are my thing at the moment, I decided to do some digging. Sean examined some of Trump’s new followers and found they had something in […]

Posted on 2 June 2017 | 6:22 am

Now Hiring: Developers, Researchers, Data Scientists

We’re hiring right now, and if you check out our careers page, you’ll find over 30 new positions ranging from marketing (meh) to malware analysis (woot!). A select number of these new positions are in F-Secure Labs. If you’re on the lookout for a job in cyber security, you might find one of these jobs […]

Posted on 31 May 2017 | 5:47 am

WordPress 4.7.5 Security and Maintenance Release

WordPress 4.7.5 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.4 and earlier are affected by six security issues: Insufficient redirect validation in the HTTP class. Reported by Ronni Skansing. Improper handling of post meta data values in the XML-RPC […]

Posted on 16 May 2017 | 3:39 pm

WordPress Now on HackerOne

WordPress has grown a lot over the last thirteen years – it now powers more than 28% of the top ten million sites on the web. During this growth, each team has worked hard to continually improve their tools and processes. Today, the WordPress Security Team is happy to announce that WordPress is now officially […]

Posted on 15 May 2017 | 9:02 am

WannaCry, Party Like It’s 2003

Let’s take a moment to collect what we know about WannaCry (W32/WCry) and what we can learn from it. When looked at from a technical perspective, WCry (in its two binary components) has the following properties. Comprised of two Windows binaries. mssecsvc.exe: a worm that handles spreading and drops the payload. tasksche.exe: a ransomware trojan […]

Posted on 15 May 2017 | 5:59 am

WCry: Knowns And Unknowns

WCry, WannaCry, Wana Decrypt0r. I’m sure at this point you’ve heard something about what the industry has dubbed the largest crypto ransomware outbreak in history. Following its debut yesterday afternoon, a lot of facts have been flying around. Here’s what we know, and don’t know. WCry has currently made a measly $25,000 They now made […]

Posted on 13 May 2017 | 3:09 am

OSINT For Fun And Profit: #Presidentielle2017 Edition

As I mentioned in a previous post, I’m writing scripts designed to analyze patterns in Twitter streams. One of the goals of my research is to follow Twitter activity around a newsworthy event, such as an election. For example, last weekend France went to the polls to vote for a new president. And so I […]

Posted on 11 May 2017 | 7:20 am

Business E-mail Compromise E-mail Account Compromise The 5 Billion Dollar Scam

Posted on 4 May 2017 | 11:10 am

Unicode Phishing Domains Rediscovered

There is a variant of phishing attack that nowadays is receiving much attention in the security community. It’s called IDN homograph attack and it takes advantage of the fact that many different Unicode characters look alike. The use of Unicode in domain names makes it easier to spoof websites as the visual representation of an […]

Posted on 26 April 2017 | 4:28 am

Oracle Critical Patch Update Advisory - April 2017

Posted on 18 April 2017 | 12:30 pm

WordPress 4.7.3 Security and Maintenance Release

WordPress 4.7.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.2 and earlier are affected by six security issues: Cross-site scripting (XSS) via media file metadata.  Reported by Chris Andrè Dale, Yorick Koster, and Simon P. Briggs. Control characters can trick redirect […]

Posted on 6 March 2017 | 9:53 am

WordPress 4.7.2 Security Release

WordPress 4.7.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7.1 and earlier are affected by three security issues: The user interface for assigning taxonomy terms in Press This is shown to users who do not have permissions to use it. […]

Posted on 26 January 2017 | 11:34 am

Employment Scam Targeting College Students Remains Prevalent

Posted on 18 January 2017 | 7:55 am

Oracle Critical Patch Update Advisory - January 2017

Posted on 17 January 2017 | 11:30 am

WordPress 4.7.1 Security and Maintenance Release

WordPress 4.7 has been downloaded over 10 million times since its release on December 6, 2016 and we are pleased to announce the immediate availability of WordPress 4.7.1. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.7 and earlier are affected by eight security issues: […]

Posted on 10 January 2017 | 7:53 pm

Oracle Critical Patch Update Advisory - October 2016

Posted on 18 October 2016 | 12:30 pm

WordPress 4.6.1 Security and Maintenance Release

WordPress 4.6.1 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.6 and earlier are affected by two security issues: a cross-site scripting vulnerability via image filename, reported by SumOfPwn researcher Cengiz Han Sahin; and a path traversal vulnerability in […]

Posted on 7 September 2016 | 8:52 am

Oracle Critical Patch Update Advisory - July 2016

Posted on 19 July 2016 | 12:30 pm

WordPress 4.5.3 Maintenance and Security Release

WordPress 4.5.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.5.2 and earlier are affected by several security issues: redirect bypass in the customizer, reported by Yassine Aboukir; two different XSS problems via attachment names, reported by Jouko Pynnönen and Divyesh Prajapati; revision history information disclosure, reported […]

Posted on 18 June 2016 | 2:38 am

WordPress 4.5.2 Security Release

WordPress 4.5.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.5.1 and earlier are affected by a SOME vulnerability through Plupload, the third-party library WordPress uses for uploading files. WordPress versions 4.2 through 4.5.1 are vulnerable to reflected XSS […]

Posted on 6 May 2016 | 12:17 pm

Oracle Critical Patch Update Advisory - April 2016

Posted on 19 April 2016 | 12:30 pm

Oracle Security Alert for CVE-2016-0636 - 23 Mar 2016

Posted on 23 March 2016 | 12:30 pm

WordPress 4.4.2 Security and Maintenance Release

WordPress 4.4.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.4.1 and earlier are affected by two security issues: a possible SSRF for certain local URIs, reported by Ronni Skansing; and an open redirection attack, reported by Shailesh Suthar. Thank you […]

Posted on 2 February 2016 | 9:57 am

Oracle Critical Patch Update Advisory - January 2016

Posted on 19 January 2016 | 11:30 am

Oracle Security Alert for CVE-2015-4852 - 10 November 2015

Posted on 10 November 2015 | 11:30 am

Oracle Critical Patch Update Advisory - October 2015

Posted on 20 October 2015 | 12:30 pm

Oracle Critical Patch Update Advisory - July 2015

Posted on 14 July 2015 | 12:30 pm

Oracle Security Alert for CVE-2015-3456 - 15 May 2015

Posted on 15 May 2015 | 12:30 pm

Oracle Critical Patch Update Advisory - April 2015

Posted on 14 April 2015 | 12:30 pm

Oracle Security Alert for CVE-2016-0603 - 5 February 2016

Posted on 5 February 2015 | 11:30 am

Oracle Critical Patch Update Advisory - January 2015

Posted on 20 January 2015 | 11:30 am

Oracle Critical Patch Update Advisory - October 2014

Posted on 14 October 2014 | 12:30 pm

Oracle Security Alert for CVE-2014-7169 - 26 September 2014

Posted on 26 September 2014 | 12:30 pm

Oracle Critical Patch Update Advisory - July 2014

Posted on 15 July 2014 | 12:30 pm

Oracle Security Alert for CVE-2014-0160 - 18 April 2014

Posted on 18 April 2014 | 12:30 pm

Oracle Critical Patch Update Advisory - April 2014

Posted on 15 April 2014 | 12:30 pm

Oracle Critical Patch Update Advisory - January 2014

Posted on 14 January 2014 | 11:30 am

Oracle Critical Patch Update Advisory - October 2013

Posted on 15 October 2013 | 12:30 pm

Oracle Critical Patch Update Advisory - July 2013

Posted on 16 July 2013 | 12:30 pm

Oracle Java SE Critical Patch Update Advisory - June 2013

Posted on 18 June 2013 | 12:30 pm

Oracle Java SE Critical Patch Update Advisory - April 2013

Posted on 16 April 2013 | 12:30 pm

Oracle Critical Patch Update Advisory - April 2013

Posted on 16 April 2013 | 12:30 pm

Oracle Security Alert for CVE-2013-1493 - 04 Mar 2013

Posted on 4 March 2013 | 11:30 am

Updated Release of the Oracle Java SE Critical Patch Update - February 2013

Posted on 19 February 2013 | 11:30 am

Oracle Java SE Critical Patch Update Advisory - February 2013

Posted on 1 February 2013 | 11:30 am

Oracle Critical Patch Update Advisory - January 2013

Posted on 15 January 2013 | 11:30 am

Oracle Security Alert for CVE-2013-0422 - 13 Jan 2013

Posted on 13 January 2013 | 11:30 am

Oracle Java SE Critical Patch Update Advisory - October 2012

Posted on 16 October 2012 | 12:26 pm

Oracle Critical Patch Update Advisory - October 2012

Posted on 16 October 2012 | 12:26 pm

Oracle Security Alert for CVE-2012-4681 - 30 Aug 2012

Posted on 30 August 2012 | 12:26 pm

Oracle Security Alert for CVE-2012-3132 - 10 Aug 2012

Posted on 10 August 2012 | 12:14 pm

Oracle Critical Patch Update (CPU) Advisory - July 2012

Posted on 19 July 2012 | 3:15 pm

Oracle Java SE Critical Patch Update Advisory - June 2012

Posted on 12 June 2012 | 1:00 pm

Oracle Security Alert for CVE-2012-1675

Posted on 30 April 2012 | 1:01 pm

Oracle Critical Patch Update (CPU) Advisory - April 2012

Posted on 18 April 2012 | 8:40 am

Oracle Java SE Critical Patch Update Advisory - February 2012

Posted on 14 February 2012 | 12:00 pm

Oracle Security Alert for CVE-2011-5035

Posted on 31 January 2012 | 1:20 pm

Oracle Critical Patch Update (CPU) Advisory - January 2012

Posted on 17 January 2012 | 12:44 pm

Oracle Critical Patch Update (CPU) Advisory - October 2011

Posted on 24 October 2011 | 11:33 am

Oracle Security Alert for CVE-2011-3192

Posted on 15 September 2011 | 2:22 pm

Oracle Critical Patch Update (CPU) Advisory - July 2011

Posted on 19 July 2011 | 3:45 pm

Oracle Java SE Critical Patch Update Advisory - June 2011

Posted on 7 June 2011 | 3:18 pm

Oracle Critical Patch Update (CPU) - April 2011

Posted on 19 April 2011 | 1:00 pm

Oracle Java SE and Java for Business Critical Patch Update Advisory - February 2011

Posted on 15 February 2011 | 2:00 pm

Oracle Critical Patch Update (CPU) - January 2011

Posted on 18 January 2011 | 11:40 am

Oracle Critical Patch Update (CPU) - October 2010

Posted on 12 October 2010 | 9:07 am

Oracle Critical Patch Update (CPU) - July 2010

Posted on 14 July 2010 | 12:35 pm

Oracle Critical Patch Update (CPU) - April 2010

Posted on 13 April 2010 | 2:01 pm

Oracle Security Alert for CVE-2010-0073 - February 2010

Oracle Security Alert for CVE-2010-0073

Posted on 4 February 2010 | 12:00 pm

Critical Patch Update - January 2010

Posted on 13 January 2010 | 10:05 am

Critical Patch Update - October 2009

Posted on 20 October 2009 | 8:39 am

Critical Patch Update - July 2009

Posted on 15 July 2009 | 6:00 pm

Critical Patch Update - April 2009

Posted on 14 April 2009 | 3:40 pm

Critical Patch Update - January 2009

Posted on 14 April 2009 | 3:40 pm

Critical Patch Update - October 2008

Posted on 15 October 2008 | 11:53 am

Critical Patch Update - July 2008

Posted on 15 July 2008 | 1:01 pm

Critical Patch Update - April 2008

Posted on 15 April 2008 | 3:13 pm

Critical Patch Update - January 2008

Posted on 15 January 2008 | 2:55 pm

Critical Patch Update - October 2007

Posted on 16 October 2007 | 1:47 pm

Critical Patch Update - July 2007

Posted on 17 July 2007 | 1:21 pm

Critical Patch Update - April 2007

Posted on 18 April 2007 | 8:57 am

Critical Patch Update - January 2007

Posted on 16 January 2007 | 3:35 pm

Critical Patch Update - October 2006

Posted on 17 October 2006 | 11:37 am

Critical Patch Update - April 2006

Posted on 18 April 2006 | 1:42 pm

Critical Patch Update - January 2006

Posted on 17 January 2006 | 4:20 pm

Critical Patch Update - January 2005

Posted on 18 October 2005 | 3:28 pm

Critical Patch Update - April 2005

Posted on 18 October 2005 | 3:28 pm

Critical Patch Update - October 2005

Posted on 18 October 2005 | 3:25 pm

Critical Patch Update - July 2005

Posted on 12 July 2005 | 12:46 pm