Apple’s iOS 9.0, 9.1, and most recent 9.2.1 releases contain multiple connected passcode protection bypass vulnerabilities that affect both iPhone and iPad devices, researchers at Vulnerability Lab warn.
read more
Backdoor in WordPress Plugin Steals Admin Credentials
Custom Content Type Manager (CCTM), a WordPress plugin with over 10,000 active installations, recently turned rogue and started stealing admin credentials via a backdoor, researchers at Sucuri discovered.
read more
New OS X Ransomware Delivered via BitTorrent Client
A piece of ransomware designed to target OS X systems has been delivered to users via the official installer for the BitTorrent client Transmission.
read more
Don’t Shop Hungry for Security
Don’t Rush to Satisfy That Hunger Until You Can be Sure of What You Need…
read more
Amazon Changes Stance on Encryption for Fire Tablets
After killing support for full disk encryption on its Kindle Fire devices and quietly removing it from Fire HD and Fire HDX 8.9 devices with the release of Fire OS 5 in February, Amazon has had a change of heart.
read more
In Apple vs FBI Case, Compromise Appears Elusive
read more
Continue readingRomanian Hacker “Guccifer” to be Extradited to U.S.
Romanian Court Approves Extradition of Hacker "Guccifer" to United States
Marcel Lazar Lehel, the 42-year-old Romanian national known as “Guccifer” and accused of breaching the online accounts of several public figures, will be extradited to the United States.
read more
Flaw in Fortinet Login Page Allowed Attackers to Phish Credentials
A reflected cross-site scripting (XSS) vulnerability in a login page used to access some Fortinet product services could have been exploited for highly efficient phishing attacks, a researcher reported on Friday.
read more
New Cerber Ransomware Speaks to Victims
A new piece of ransomware has been discovered that speaks to its victims in order to inform them that their files have been encrypted.
read more
Macro Malware Dridex, Locky Using Forms to Hide Code
Researchers at Trend Micro recently observed a change in the Dridex and Locky macro malware families, which are now using Form object in macros to obfuscate their malicious code.
read more