Threatpost News Wrap, June 30, 2017
Mike Mimoso and Chris Brook discuss this week’s ExPetr global ransomware outbreak, how it was distributed, the wiper aspect, and similarities to 2016’s Petya ransomware.
Author Archives: Chris Brook
Linux Systemd Bug Could Have Led to Crash, Code Execution
Ubuntu fixed a Linux bug that could have let an attacker cause a denial of service or execute arbitrary code with a TCP payload this week.
Continue reading Linux Systemd Bug Could Have Led to Crash, Code Execution
Google Hit With $2.7 Billion Antitrust Fine
Claiming the company abused its dominance as a search engine to push its shopping service, search giant Google was hit with a hefty $2.7 billion fine this week. Continue reading Google Hit With $2.7 Billion Antitrust Fine
Anthem Agrees to Settle 2015 Data Breach for $115 Million
Anthem agreed late Friday to pay $115 million to settle U.S. lawsuits around a data breach that hit the company in 2015. Continue reading Anthem Agrees to Settle 2015 Data Breach for $115 Million
Siemens Patches Vulnerabilities in SIMATIC CP, XHQ
Siemens patched two vulnerabilities in products, SIMATIC CP and XHQ, commonly found in industrial control system setups this week Continue reading Siemens Patches Vulnerabilities in SIMATIC CP, XHQ
Threatpost News Wrap, June 23, 2017
Mike Mimoso and Chris Brook discuss the news of the week, including Citizen Lab’s latest report, WannaCry hitting Honda, GhostHook, and Fireball. Continue reading Threatpost News Wrap, June 23, 2017
Cisco Patches XXE, DOS, Code Execution Vulnerabilities
Cisco patched three vulnerabilities in three products this week that if exploited, could have resulted in a denial of service, crash and in some instances, arbitrary and remote code execution. Continue reading Cisco Patches XXE, DOS, Code Execution Vulnerabilities
Drupal Patches Three Vulnerabilities in Core Engine
Developers with Drupal patched three vulnerabilities, one critical, one being exploited in the wild, in Drupal’s core engine on Wednesday. Continue reading Drupal Patches Three Vulnerabilities in Core Engine
Microsoft Extends Edge Bug Bounty Program Indefinitely
Microsoft said Wednesday it would extend its Edge bug bounty program indefinitely. Continue reading Microsoft Extends Edge Bug Bounty Program Indefinitely
Honda Shut Down Plant Impacted by WannaCry
Carmaker Honda announced Wednesday that it was forced to shut down production at one of its Japanese plants earlier this week after it was hit by the WannaCry ransomware. Continue reading Honda Shut Down Plant Impacted by WannaCry