Cybersecurity News
Microsoft Patches Major Crypto Spoofing Bug
January Patch Tuesday tackles 50 bugs, with eight rated critical, all as it pushes out its last regular Windows 7 patches.
14 January 2020
'Fancy Bear' Targets Ukrainian Oil Firm Burisma in Phishing Attack
The oil & gas company is at the heart of the ongoing US presidential impeachment case.14 January 2020
Google: Chrome Will Remove Third-Party Cookies and Tracking
It's "not about blocking" but removing them altogether, the company said.14 January 2020
Phishing Attack in Progress Against Ukrainian Oil Firm Burisma
The oil & gas company is at the heart of the ongoing US presidential impeachment process.14 January 2020
Attackers Increasingly Focus on Business Disruption
Network intruders are staying undetected for an average of 95 days, enabling them to target critical systems and more completely disrupt business.14 January 2020
Google to Nix Chrome Support for Third-Party Cookies by 2022
Google says it has a two-year timeline for phasing out support for third-party cookies in its Chrome web browser.
14 January 2020
Microsoft rolls out Windows 10 security fix after NSA warning
US agency revealed flaw that could be exploited by hackers to create malicious software
Microsoft is rolling out a security fix to Windows 10 after the US National Security Agency (NSA) warned the popular operating system contained a highly dangerous flaw that could be used by hackers.
The NSA revealed during a press conference on Tuesday that the “serious vulnerability” could be used to create malicious software that appeared to be legitimate.
Continue reading...14 January 2020
Global Predictions for Energy Cyber Resilience in 2020
How prepared is the energy sector for an escalating attack surface in the operating technology environment? Here are five trends to watch.14 January 2020
Microsoft fixes Windows crypto bug reported by the NSA
Fixes were released today part of the Microsoft's January 2020 Patch Tuesday.14 January 2020
Public Bug Bounty Takes Aim at Kubernetes Container Project
The cloud-focused program will pay out $10,000 as its top reward.
14 January 2020
Google to phase out user-agent strings in Chrome
Chrome will move to a new technology called Client Hints, part of the newer Privacy Sandbox project.14 January 2020
Millions of modems at risk of remote hijacking
Multiple cable modem models from various manufacturers found vulnerable to takeover attacks
The post Millions of modems at risk of remote hijacking appeared first on WeLiveSecurity
14 January 2020
Millions of modems at risk of remote hijacking
Multiple cable modem models from various manufacturers found vulnerable to takeover attacks
The post Millions of modems at risk of remote hijacking appeared first on WeLiveSecurity
14 January 2020
Adobe Patches Five Critical Illustrator CC Flaws
Overall Adobe patched nine flaws in Illustrator CC and Experience Manager.
14 January 2020
Consumer Reports Calls for IoT Manufacturers to Raise Security Standards
A letter to 25 companies says Consumer Reports will change ratings to reflect stronger security and privacy standards.14 January 2020
Dustman Attack Underscores Iran's Cyber Capabilities
For nearly six months, an attack group linked to Iran reportedly had access to the network of Bahrain's national oil company, Bapco, before it executed a destructive payload.14 January 2020
Processor Vulnerabilities Put Virtual Workloads at Risk
Meltdown, Spectre exploits will likely lead to customers making tradeoffs between performance and security of applications, especially virtual and cloud-based apps14 January 2020
Processor Vulnerabilites Put Virtual Workloads at Risk
Meltdown, Spectre exploits will likely lead to customers making tradeoffs between performance and security of applications, especially virtual and cloud-based apps14 January 2020
Industrial Control System Features at Risk
How some ICS product functions can be weaponized by altering their configurations.14 January 2020
How to Keep Security on Life Support After Software End-of-Life
It's the end of support this week for Windows 7 and Server 2008. But what if you truly can't migrate off software, even after security updates stop coming?
14 January 2020