Office 365 phishing examples | Salted Hash Ep 10
Salted Hash looks at recent Office 365 phishing examples, discussing why they work and what can be done about them.
Computer Security Articles
RSS Reader for Computer Security Articles
Independent
Hacked Password Service Leakbase Goes Dark
Credit to Author: BrianKrebs| Date: Mon, 04 Dec 2017 05:39:53 +0000
Leakbase, a Web site that indexed and sold access to billions of usernames and passwords stolen in some of the world largest data breaches, has closed up shop. A source close to the matter says the service was taken down in a law enforcement sting that may be tied to the Dutch police raid of the Hansa dark web market earlier this year.
Read MoreFormer NSA Employee Pleads Guilty to Taking Classified Data
Credit to Author: BrianKrebs| Date: Sat, 02 Dec 2017 19:44:21 +0000
A former employee for the National Security Agency pleaded guilty on Friday to taking classified data to his home computer in Maryland. According to published reports, U.S. intelligence officials believe the data was then stolen from his computer by hackers working for the Russian government.
Read MoreWhen the threats get weird, the security solutions get weirder
Credit to Author: Mike Elgan| Date: Sat, 02 Dec 2017 02:00:00 -0800
The world of security is getting super weird. And the solutions may be even weirder than the threats.
I told you last week that some of the biggest companies in technology have been caught deliberately introducing potential vulnerabilities into mobile operating systems and making no effort to inform users.
One of those was introduced into Android by Google. In that case, Android had been caught transmitting location data that didn’t require the GPS system in a phone, or even an installed SIM card. Google claimed that it never stored or used the data, and it later ended the practice.
Carding Kingpin Sentenced Again. Yahoo Hacker Pleads Guilty
Credit to Author: BrianKrebs| Date: Sat, 02 Dec 2017 01:15:15 +0000
Roman Seleznev, a Russian man who is already serving a record 27-year sentence in the United States for cybercrime charges, was handed a 14-year sentence this week by a federal judge in Atlanta for his role in a credit card and identity theft conspiracy that prosecutors say netted more than $50 million. Separately, a Canadian national has pleaded guilty to charges of helping to steal more than a billion user account credentials from Yahoo.
Read MoreGet November Windows and Office updates installed — carefully
Credit to Author: Woody Leonhard| Date: Thu, 30 Nov 2017 04:23:00 -0800
The list of complaints about this month’s patches goes on forever. I covered the high points a couple of days ago. We’ve seen people who are running Win10 Creators Update and who specifically said they didn’t want to upgrade to Fall Creators Update get pushed into an upgrade anyway. Those using Epson dot matrix or POS printers lost them for a couple of weeks. Add to that a heaping handful of hooey and there were enough problems to keep most Windows customers shaking their heads. Or quaking in their boots.
Tech Talk: Uber hack, Google tracks, AWS packs (in China) … and Firefox is back
Our tech panel looks at how Uber (secretly) handled last year's hack and the controversy around Google's decision to track Android users' locations. Then it's time to discuss why AWS is selling off hardware in China and what Mozilla is up to with its new Firefox Quantum.
Apple apologizes, issues Mac login security patch
Credit to Author: Jonny Evans| Date: Wed, 29 Nov 2017 09:33:00 -0800
With great apology, Apple has rushed to respond to the appalling macOS High Sierra security flaw, issuing a software update that has been made immediately available for download and will be automatically installed in existing Macs.
‘We greatly regret’
Apple has shared the following statement:
“Security is a top priority for every Apple product, and regrettably we stumbled with this release of macOS.
“When our security engineers became aware of the issue Tuesday afternoon, we immediately began working on an update that closes the security hole. This morning, as of 8:00 a.m., the update is available for download, and starting later today it will be automatically installed on all systems running the latest version (10.13.1) of macOS High Sierra.