Cyber criminals based in Russia are offering to sell 81,000 Facebook profiles after hacking into more than 120 million accounts. The hackers were attempting to sell the accounts online for as little as eight pence (10 cents) per profile. They published private messages from the compromised accounts to encourage people to make the purchase. Many of the users whose details have been compromised are based in Ukraine and Russia...
Read More
Cybersecurity researchers have revealed an unpatched logical flaw in Microsoft Office 2016 and older versions that could allow an attacker to embed malicious code inside a document file, tricking users into running malware onto their computers. Discovered by researchers at Cymulate, the bug abuses the ‘Online Video‘ option in Word documents, a feature that allows users to embedded an online video with a link to...
Read More
Why is it important to dispose of electronic devices safely? In addition to effectively securing sensitive information on electronic devices, it is important to follow best practices for electronic device disposal. Computers, smartphones, and cameras allow you to keep a great deal of information at your fingertips, but when you dispose of, donate, or recycle a device you may inadvertently disclose sensitive information which could...
Read More
Description: Cisco has released a security advisory to address a vulnerability affecting Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181031-asaftd-sip-dos https://www.kb.cert.org/vuls/id/339704
Description: The Apache Software Foundation has released a security update to address a vulnerability affecting Apache Tomcat JK Connectors 1.2.0 to 1.2.44. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: http://mail-archives.us.apache.org/mod_mbox/www-announce/201810.mbox/%3c16a616e5-5245-f26a-a5a4-2752b2826703@apache.org%3e
Recently, 360 Security Center captured the latest variant of Satan ransomware and monitored that it has begun to spread in the wild. The new version of Satan has been updated to v4.2. After the attack is launched successfully, the file will be encrypted and the file suffix will be “sicck”. The amount of the extortion is one bitcoin. This is the activity of Satan ransomware...
Read More
An Indian security researcher has discovered a highly critical flaw in X.Org Server package that impacts OpenBSD and most Linux distributions, including Debian, Ubuntu, CentOS, Red Hat, and Fedora. Xorg X server is a popular open-source implementation of the X11 system (display server) that offers a graphical environment to a wider range of hardware and OS platforms. It serves as an intermediary between client and user applications...
Read More
Recently, the researchers found that the popular Internet of Things (IoT) real-time operating system FreeRTOS has serious vulnerabilities. These vulnerabilities can allow hackers to break connected devices in smart homes or critical infrastructure systems, reveal information from device memory, and take over devices. Although patches have been released, the researchers alerted that updates from small vendors still take time. The researcher recently analyzed some of...
Read More
Description: Cisco has released security updates to address a vulnerability in Cisco Webex Productivity Tools and the Cisco Webex Meetings Desktop App. Impact: A remote attacker could exploit this vulnerability to take control of an affected system. Mitigation: Updates are available. Please see the references or vendor advisory for more information. Reference URL’s: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181024-webex-injection
Recently, 360 Security Center captured the latest variant of Satan ransomware and monitored that it has begun to spread in the wild. The new version of Satan has been updated to v4.2. After the attack is launched successfully, the file will be encrypted and the file suffix will be “sicck”. The amount of the extortion is one bitcoin. This is the activity of Satan ransomware...
Read More
