In an ideal world, organizations would patch every new vulnerability once it’s discovered. In real-life, this is impossible. Security analysts responsible for vulnerability management activities face multiple challenges that result in what the industry calls “The Patching Paradox” – common sense tells you to keep every system up to date in order to be protected, but this is not possible due to limited resources, existence...
Read More
Cybersecurity firm Comparitech and researcher Bob Diachenko say they’ve found a database containing the Facebook IDs, phone numbers, and names of 267 million users on the web. The database, they claim, was entirely exposed on the internet and did not require a password or any other form of authentication to access. They posit that the origins of the database probably lie in Facebook API abuse by criminals...
Read More
Google had to force-stop the rollout of the Chrome 79 update to Android devices over the weekend following the discovery of a destructive bug that is obliterating user data on mobile applications; unfortunately the update for Android has already been offered to 50 percent of the user base. The bug discovery comes after the release last week of Chrome 79 – a major update for...
Read More
A critical vulnerability fixed in mid-2018 has been resurrected recently in denial-of-service and information disclosure attempts against Cisco’s appliances Adaptive Security (ASA) and Firepower. The company is issuing a warning to its customers urging them to follow recommendations for proper mitigation actions. DoS and sensitive info Tracked as CVE-2018-0296, the vulnerability can be leveraged by an unauthenticated, remote attacker to cause the appliance to reload...
Read More
The big tech giants, online advertising companies, and data brokers use a ton of tricks to track you around the web. These include things like cookies, location and device logging, fingerprinting, and even share buttons, the last of which make it very easy for companies like Facebook and Google to see what you do online, even on third-party websites. Of course, today’s users aren’t blind...
Read More
