Tuesday, December 30, 2025
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Month: March 2017

ComputerWorldIndependent
admin

Scammers scare iPhone users into paying to unlock not-really-locked Safari

Credit to Author: Gregg Keizer| Date: Tue, 28 Mar 2017 13:28:00 -0700

Apple yesterday patched a bug in the iOS version of Safari that had been used by criminals to spook users into paying $125 or more because they assumed the browser was broken.

The flaw, fixed in Monday’s iOS 10.3 update, had been reported to Apple a month ago by researchers at San Francisco-based mobile security firm Lookout.

“One of our users alerted us to this campaign, and said he had lost control of Safari on his iPhone,” Andrew Blaich, a Lookout security researcher, said in a Tuesday interview. “He said, ‘I can’t use my browser anymore.'”

The criminal campaign, Blaich and two colleagues reported in a Monday post to Lookout’s blog, exploited a bug in how Safari displayed JavaScript pop-ups. When the browser reached a malicious site implanted with the attack code, the browser went into an endless loop of dialogs that refused to close no matter who many times “OK” was tapped. The result: Safari was unusable.

To read this article in full or to leave a comment, please click here

Read More
ComputerWorldIndependent
admin

LastPass is scrambling to fix another serious vulnerability

Credit to Author: Lucian Constantin| Date: Tue, 28 Mar 2017 10:01:00 -0700

For the second time in two weeks, developers of the popular LastPass password manager are working to fix a serious vulnerability that could allow malicious websites to steal user passwords or infect computers with malware.

Like the LastPass flaws patched last week, the new issue was discovered and reported to LastPass by Tavis Ormandy, a researcher with Google’s Project Zero team. The researcher revealed the vulnerability’s existence in a message on Twitter, but didn’t publish any technical details about it that could allow attackers to exploit it.

To read this article in full or to leave a comment, please click here

Read More
MalwareBytesSecurity
admin

World of Warcraft phish campaign lures victims with free pet

Credit to Author: Christopher Boyd| Date: Tue, 28 Mar 2017 15:00:14 +0000

We take a look at a World of Warcraft phish doing the rounds which could stand to do a spot of updating where it’s branding is concerned.

Categories:

Tags:

(Read more…)

The post World of Warcraft phish campaign lures victims with free pet appeared first on Malwarebytes Labs.

Read More
FortinetSecurity
admin

Cybercriminals Are Building an Army of Things Creating a Tipping Point for Cybersecurity

Credit to Author: Derek Manky| Date: Tue, 28 Mar 2017 06:25:15 -0700

Today, Fortinet released our quarterly Threat Landscape Report for Q4 of 2016. The data in it was drawn from millions of security devices located around the world that analyze up to 50 billion threats a day. Which means that the conclusions and trends detailed in this report are based on over a trillion security events that occurred between Oct 1 and Dec 31, 2016.

Read More
SecurityTrendMicro
admin

A Tribute To My Friend Raimund Genes

Credit to Author: Eva Chen| Date: Tue, 28 Mar 2017 12:00:26 +0000

On Friday, March 24, we at Trend Micro were saddened to learn that our chief technology officer, Raimund Genes, died unexpectedly at his family home in Germany. It is an incredible loss for us all, and one that still has us wishing it were not true. For me personally, I’m losing a wonderful, close friend…

Read More
ComputerWorldIndependent
admin

How to deal with backdoors inserted or left by vendors

Credit to Author: David Geer| Date: Tue, 28 Mar 2017 03:54:00 -0700

It’s bad enough when black hat hackers insert malicious backdoors into systems and software after vendors/makers have sold these into the marketplace. It is another matter when the vendors who create these devices and programs unwittingly or purposely leave backdoors inside their products.

To read this article in full or to leave a comment, please click here

(Insider Story)

Read More