How the False Hawaii Missile Warning Could Have Happened
Credit to Author: Issie Lapowsky| Date: Sat, 13 Jan 2018 23:14:23 +0000
And where was the federal government?
Read MoreComputer Security Articles
RSS Reader for Computer Security Articles
Security
Meltdown, Spectre, Malicious Apps, and More of This Week’s Security News
Credit to Author: Lily Hay Newman| Date: Sat, 13 Jan 2018 13:00:00 +0000
Meltdown, Spectre, malicious Android apps, and more of the week’s top security news.
Read MoreDr. StrangePatch or: How I Learned to Stop Worrying (about Meltdown and Spectre) and Love Security Advisory ADV180002
Credit to Author: Minh Tran| Date: Fri, 12 Jan 2018 11:39:59 +0000
Introduction 2018 truly is starting off with a bang: fundamental CPU flaws dubbed Meltdown and Spectre were found affecting pretty much all modern processors developed since the Pentium Pro (1995). These flaws root in two critical CPU features: Out of Order Execution and Speculative Execution, which are crucial for performance. Since this is an important feature and not a bug, it is inherently hard to fix. Furthermore, for performance reasons, speculative execution is almost always implemented in hardware, so “fixes”…
Read MoreAn Analysis of the OpenSSL SSL Handshake Error State Security Bypass (CVE-2017-3737)
Credit to Author: Dehui Yin| Date: Fri, 12 Jan 2018 11:39:59 +0000
OpenSSL is a widely used library for SSL and TLS protocol implementation that secures data using encryption and decryption based on cryptographic functions. However, a Security Bypass vulnerability – recently addressed in a patch by the OpenSSL Project –can be exploited to make vulnerable SSL clients or remote SSL servers send clean application data without encryption. This Security Bypass vulnerability (CVE-2017-3737) is caused by an error when the SSL_read or SSL_write function handles an "error state" during an SSL handshake….
Read MoreStripchat bot spells block
Credit to Author: Malwarebytes Labs| Date: Fri, 12 Jan 2018 23:26:29 +0000
 | |
| Learn why Malwarebytes is blocking a sub-domain of an adult website. Categories: Tags: advertisingblockcreative.stripchat.comfake chatMalwarebytesstreamingstripchatweb protection |
The post Stripchat bot spells block appeared first on Malwarebytes Labs.
Read MoreFake Spectre and Meltdown patch pushes Smoke Loader malware
Credit to Author: Jérôme Segura| Date: Fri, 12 Jan 2018 20:50:29 +0000
 | |
| German users are being targeted with a rogue patch for the recently announced Meltdown and Spectre flaws. Categories: Tags: germanmalwareMeltdownphishingsmoke loaderSmoke Loader MalwaresmokeloaderSpectre |
The post Fake Spectre and Meltdown patch pushes Smoke Loader malware appeared first on Malwarebytes Labs.
Read MoreMeltdown and Spectre Patches Have Caused Serious Performance Issues
Credit to Author: Lily Hay Newman| Date: Fri, 12 Jan 2018 17:58:49 +0000
Two of the worst vulnerabilities in years are slowly being fixed—but at a cost to consumers and companies alike.
Read MoreTech Companies Are Complicit in Censoring Iran Protests
Credit to Author: Firuzeh Mahmoudi| Date: Fri, 12 Jan 2018 14:00:00 +0000
Opinion: Google, Twitter, and Signal should take steps to ensure their tools aren’t restricting Iranian’s free speech.
Read More