Wednesday, July 9, 2025
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Month: July 2017

IndependentSecuriteam
admin

SSD Advisory – Skype For Business XSS

Credit to Author: SSD / Maor Schwartz| Date: Thu, 06 Jul 2017 05:45:53 +0000

Vulnerability Summary The following advisory describes an XSS vulnerability found in Skype for Business. Credit An independent security researcher has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program. Vendor response The vendor has released patches to address this vulnerability and has only provided these details in response to our query on the status: … Continue reading SSD Advisory – Skype For Business XSS

Read More
FortinetSecurity
admin

Wannacry and Petya: The Circus Comes to Town

Credit to Author: Michael Xie| Date: Thu, 06 Jul 2017 20:00:00 +0000

By now, you will have all heard about the rampant spread of ransomware through countless press pieces, blog articles, and far too often, the outrageous claims of some security vendors. But let’s stop and think for a minute or two. How did these attacks happen? Are companies focusing on valid threats, fixing the right problems, or developing correct processes? Have so-called disruptive technologies disrupted our thinking? Let’s not go tactical. Instead, we need to consider, “what is our best strategy?” Ever since the…

Read More
MalwareBytesSecurity
admin

All this EternalPetya stuff makes me WannaCry

Credit to Author: Adam McNeil| Date: Thu, 06 Jul 2017 18:15:09 +0000

Get more background on the EternalPetya ransomware. Learn about its origin, attribution, decryption, and the methods of infection and propagation.

Categories:

Tags:

(Read more…)

The post All this EternalPetya stuff makes me WannaCry appeared first on Malwarebytes Labs.

Read More
MalwareBytesSecurity
admin

The key to old Petya versions has been published by the malware author

Credit to Author: Malwarebytes Labs| Date: Thu, 06 Jul 2017 17:06:15 +0000

As research concluded, the original author of Petya, Janus, was not involved in the latest attacks on Ukraine. As a result of the recent events, Janus released his private key, allowing all the victims of the previous Petya attacks, to get their files back.

Categories:

Tags:

(Read more…)

The post The key to old Petya versions has been published by the malware author appeared first on Malwarebytes Labs.

Read More
SecurityTrendMicro
admin

The Real-World Impact of Bug Bounties and Vulnerability Research

Credit to Author: Brian Gorenc| Date: Thu, 06 Jul 2017 16:31:43 +0000

Running the world’s largest vendor agnostic bug bounty program has afforded us the unique opportunity to purchase bugs of all varieties. The submissions to the Zero Day Initiative (ZDI) program range in severity from slightly annoying to hugely impactful. We wouldn’t have it any other way. Generally speaking, the goal of a bug bounty program…

Read More
ComputerWorldIndependent
admin

Microsoft releases 15 Office patches for July, but some June bugs still stink

Credit to Author: Woody Leonhard| Date: Thu, 06 Jul 2017 07:23:00 -0700

On Patch Wednesday of this week, Microsoft said it released 14 non-security Office updates, covering such fascinating topics as improved Dutch translations in Word 2013, Danish translations in Access, and Finnish and Swedish translations in Excel. Typical first Tuesday stuff.

Microsoft neglected to mention that it also shipped a fix for the bugs introduced by last month’s patches to Outlook 2010. Dubbed KB 4011042, the neglected fix appears to be a non-security patch that fixes bugs created by a security patch — a red flag for many advanced patchers.

To read this article in full or to leave a comment, please click here

Read More
FortinetSecurity
admin

Google Chromebook Security: At The Forefront of Education Discussions

Credit to Author: Susan Biddle| Date: Thu, 06 Jul 2017 12:58:00 +0000

During a 2015 event at the Northwestern Institute for Policy Research, participating panelists discussed the digital revolution and the classroom’s exposure to it. At the time, school districts had begun to adopt 1:1 policies, where each student would have access to laptops or tablets. Google was at the forefront of this surge, gaining a healthy chunk of new users each year across the education industry. Today, the formidable duo of the Google Chromebook and the G Suite for Education has changed the way education is approached. In this…

Read More