Friday, September 19, 2025
Latest:

Computer Security Articles

RSS Reader for Computer Security Articles

Month: September 2018

IndependentKrebs
admin

U.S. Mobile Giants Want to be Your Online Identity

Credit to Author: BrianKrebs| Date: Wed, 12 Sep 2018 20:58:31 +0000

The four major U.S. wireless carriers today detailed a new initiative that may soon let Web sites eschew passwords and instead authenticate visitors by leveraging data elements unique to each customer’s phone and mobile subscriber account, such as location, customer reputation, and physical attributes of the device. Here’s a look at what’s coming, and the potential security and privacy trade-offs of trusting the carriers to handle online authentication on your behalf.

Read More
MicrosoftSecurity
admin

Office VBA + AMSI: Parting the veil on malicious macros

Credit to Author: Microsoft Secure Blog Staff| Date: Wed, 12 Sep 2018 16:02:43 +0000

As part of our continued efforts to tackle entire classes of threats, Office 365 client applications now integrate with Antimalware Scan Interface (AMSI), enabling antivirus and other security solutions to scan macros and other scripts at runtime to check for malicious behavior. Macro-based threats have always been a prevalent entry point for malware, but we

Read more

The post Office VBA + AMSI: Parting the veil on malicious macros appeared first on Microsoft Secure.

Read More
MalwareBytesSecurity
admin

The many faces of omnichannel fraud

Credit to Author: Jovi Umawing| Date: Wed, 12 Sep 2018 15:00:00 +0000

There’s a new kind of fraud out there, and it’s after organizations that have embraced omnichannel, a strategy that focuses on improved user experience. We take a look at what omnichannel is, the kinds of fraud that can affect businesses using this approach, and how they can protect themselves—and their clients.

Categories:

Tags:

(Read more…)

The post The many faces of omnichannel fraud appeared first on Malwarebytes Labs.

Read More
QuickHealSecurity
admin

CVE-2018-8440 – Task Scheduler ALPC Zero-Day Exploit in the Wild

Credit to Author: Sameer Patil| Date: Wed, 12 Sep 2018 13:30:14 +0000

The recent zero-day vulnerability CVE-2018-8440 in Windows Task Scheduler enables attackers to perform a privilege elevation on targeted machines. Microsoft has released a security advisory CVE-2018-8440 on September 11, 2018 to address this issue. According to Microsoft, successful exploitation of this vulnerability could run arbitrary code in the security context…

Read More