Mirai Okiru DDoS botnet targets ARC-based IoT
A new variant of the infamous Mirai malware dubbed “Okiru” (Mirai Okiru) is now capable of infecting devices running the ARC CPU.
Mirai Okiru DDoS botnet targets ARC-based IoT Read More »
MaMi DNS hijacking malware targets Mac OS X
A security researcher has spotted a new strain of malware dubbed “MaMi” (OSX/MaMi) that targets Mac OS X DNS settings.
MaMi DNS hijacking malware targets Mac OS X Read More »
Issue in Intel’s AMT
On the heels of recent Spectre and Meltdown vulnerabilities, the F-Secure security team has discovered a security issue in Intel’s Active Management Technology (AMT).
Issue in Intel’s AMT Read More »
WhatsApp flaws
Researchers at Germany’s Ruhr University Bochum released a technical research paper outlining security shortcomings in WhatsApp, that could allow unauthorized users to infiltrate and spy on private group chats.
Microsoft January 2018 Patch Updates
Microsoft issued January 2018 Security Updates that includes patches to fix 16 critical bugs in Microsoft products Office, Word and SharePoint.
Microsoft January 2018 Patch Updates Read More »
Apple releases new security updates to address Spectre
Apple released macOS High Sierra 10.13.2 Supplemental Update that includes security improvements to Safari and WebKit to mitigate the effects of Spectre vulnerability (CVE-2017-5753 and CVE-2017-5715). Apple also provided a security update for Safari 11.0.2 for OS X El Capitan 10.11.6 and macOS Sierra 10.12.6, with fixes for the same Spectre vulnerabilities. The MacOS High Sierra update will already upgrade Safari to version 11.0.2 (13604.4.7.1.6) or version 11.0.2
Apple releases new security updates to address Spectre Read More »
WPA3 – new WiFi standard
The Wi-Fi Alliance introduced a new WiFi protocol and standard WPA3 that will enhance Wi-Fi network security protections and simplify Wi-Fi security configuration for users and service providers. The Wi-Fi Alliance organization sets the standards for Wi-Fi safety and has certified 35,000 Wi-Fi products. The new standard will be the first since WPA2 was established over a decade ago
WPA3 – new WiFi standard Read More »
Vendors issue security updates for Spectre and Meltdown
Software and hardware vendors have issued advisories and fixes for “Spectre” (speculative execution side-channel attack) and “Meltdown” vulnerabilities, related to recently disclosed CPU processor design flaws.
Vendors issue security updates for Spectre and Meltdown Read More »
Meltdown and Spectre vulnerabilities
US-CERT issued a security update regarding the latest Intel processor design flaws. According to the vulnerability note, the CPU hardware implementations are vulnerable to side-channel attacks. The two vulnerabilities are referred to as Meltdown and Spectre. An excerpt from the advisory: “CPU hardware implementations are vulnerable to side-channel attacks referred to as Meltdown and Spectre. These attacks are described in detail by Google Project
Meltdown and Spectre vulnerabilities Read More »
Trackmageddon exposes millions of GPS tracking devices
Vulnerabilities dubbed “Trackmageddon” were discovered in online services of (GPS) location tracking devices. The vulnerabilities could allow third parties unauthorized access to location data of all location tracking devices managed by a vulnerable online service. Other types of data impacted include, serial number (i.e., IMEI), assigned phone number, model/type name and custom assigned names. The latter two
Trackmageddon exposes millions of GPS tracking devices Read More »