Vulnerability – Page 16 – Computer Security Articles

Credit to Author: Jérôme Segura| Date: Wed, 26 Sep 2018 17:13:26 +0000

A threat actor implements a newer vulnerability exploited in Internet Explorer to serve up the Quasar RAT and diversify the portfolio of attacks.

Categories:

Tags: anti exploit CVE-2018-8174 CVE-2018-8373 exploit Indicators of compromise IOC IOCs pastebin patch Quasar rat remote administration tool virustotal vulnerabilities vulnerability

MalwareBytes Security

September 24, 2018 admin

A week in security (September 17 – 23)

Credit to Author: Malwarebytes Labs| Date: Mon, 24 Sep 2018 17:03:26 +0000

A roundup of the security news from September 17–23, including Android scams, massive WordPress compromises, and high fines for Equifax.

Categories:

Tags: Android emotet Equifax Equifax breach fine MagaCart malware phishing play ransomware round up. ukgov sasl vulnerability week in security

(Read more…)

The post A week in security (September 17 – 23) appeared first on Malwarebytes Labs.

MalwareBytes Security

August 31, 2018 admin

Explained: regular expression (regex)

Credit to Author: Pieter Arntz| Date: Fri, 31 Aug 2018 15:00:53 +0000

What is regular expression (regex) and what makes it vulnerable to attack? Learn how to use regex safely and avoid ReDoS attacks in the process.

Categories:

Tags: ddos JavaScript node.js redos regex search server vulnerability

(Read more…)

The post Explained: regular expression (regex) appeared first on Malwarebytes Labs.

Security Sophos

August 22, 2018 admin

Intercept X defends against SettingsContent-ms abuse (video)

Credit to Author: Andrew Brandt| Date: Tue, 21 Aug 2018 16:56:34 +0000

Even using an older version of our anti-exploit technology will protect you if you open a malicious document with the CVE-2018-8414 exploit embedded in it<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/qXrxxFkjKfc” height=”1″ width=”1″ alt=””/>

Security Sophos

August 21, 2018 admin

InterceptX defends against SettingsContent-ms abuse (video)

Credit to Author: Andrew Brandt| Date: Tue, 21 Aug 2018 16:56:34 +0000

Security Sophos

August 17, 2018 admin

What you need to know for Patch Tuesday, August 2018

Credit to Author: Andrew ODonnell| Date: Fri, 17 Aug 2018 19:16:44 +0000

With 23 critical vulnerabilities addressed in patches from Microsoft and Adobe, August is turning out to be a good month for updates — but don’t delay installing them.<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/_Fw-RIvgU1s” height=”1″ width=”1″ alt=””/>

MalwareBytes Security

May 30, 2018 admin

Researchers discover vulnerabilities in smart assistants’ voice commands

Credit to Author: Malwarebytes Labs| Date: Wed, 30 May 2018 16:59:51 +0000

Security researchers have now found new ways to exploit voice recognition weaknesses in your favorite home device: smart assistants. You may want to listen in.

Categories:

Tags: amazon Google Internet of Things IoT smart assistant smart speaker virtual personal assistant voice assistant voice masquerading voice squatting vulnerability

QuickHeal Security

May 16, 2018 admin

CVE-2018-4990 – Adobe Reader Double Free (Zero Day) vulnerability alert!

Credit to Author: Prashant Kadam| Date: Wed, 16 May 2018 13:10:48 +0000

The recent zero-day vulnerability CVE-2018-4990 in Adobe Reader enables attackers to perform a Remote Code Execution on targeted machines. Adobe has released a security advisory APSB18-09 on May 14, 2018 to address this issue. According to Adobe, the in-wild attack is targeted and it impacts limited Windows users. Vulnerable versions…