Author Archives: John E Dunn

Microsoft uses AI to push Windows 10 upgrade to users

Posted on June 21, 2019 by John E Dunn

From November, users running some versions of Windows 10 will be required to upgrade or find themselves unable to receive security updates. Continue reading Microsoft uses AI to push Windows 10 upgrade to users→

Facebook’s Libra cryptocurrency is big news but will it be secure?

Posted on June 20, 2019 by John E Dunn

Unless you’ve been under a rock, you’ll know that earlier this week Facebook announced plans for a new global cryptocurrency for absolutely everyone called Libra. Continue reading Facebook’s Libra cryptocurrency is big news but will it be secure?→

Netflix researcher spots TCP SACK flaws in Linux and FreeBSD

Posted on June 19, 2019 by John E Dunn

Three vulnerabilities in the FreeBSD and Linux kernels could allow attackers to induce a denial-of-service by clogging networking I/O. Continue reading Netflix researcher spots TCP SACK flaws in Linux and FreeBSD→

Phishing attack lures victims with encrypted message alert

Posted on June 18, 2019 by John E Dunn

Why are phishing emails so enduringly popular with the bad guys? A new approach may suggest that curiosity is at play. Continue reading Phishing attack lures victims with encrypted message alert→

Yubico recalls FIPS Yubikey tokens after flaw found

Posted on June 17, 2019 by John E Dunn

Security token maker Yubico has issued an important advisory affecting high-end versions of its YubiKey authentication key. Continue reading Yubico recalls FIPS Yubikey tokens after flaw found→

Critical flaw found in Evernote Web Clipper for Chrome

Posted on June 14, 2019 by John E Dunn

Anyone using it in its unpatched state is at risk not only of a compromise of their Evernote account but, potentially, of third-party accounts too. Continue reading Critical flaw found in Evernote Web Clipper for Chrome→

Microsoft’s battle with SandboxEscaper zero days turns into grim Groundhog Day

Posted on June 13, 2019 by John E Dunn

Why is SandboxEscaper releasing vulnerabilities in such an irresponsible way? It matters not – Microsoft must patch what’s in front of it whatever the backstory. Continue reading Microsoft’s battle with SandboxEscaper zero days turns into grim Groundhog Day→

FBI warns users to be wary of phishing sites abusing HTTPS

Posted on June 12, 2019 by John E Dunn

Why you shouldn’t trust a website simply because it’s secured using HTTPS and backed by the green padlock symbol. Continue reading FBI warns users to be wary of phishing sites abusing HTTPS→

Critical flaws found in Amcrest security cameras

Posted on June 11, 2019 by John E Dunn

The Amcrest 721 family of security cameras features six security flaws discovered back in 2017 by a researcher at security outfit Synopsys. Continue reading Critical flaws found in Amcrest security cameras→

The GoldBrute botnet is trying to crack open 1.5 million RDP servers

Posted on June 10, 2019 by John E Dunn

Even its most optimistic users would have to concede that it’s been a bracing few weeks for anyone who relies on Microsoft’s Remote Desktop Protocol (RDP). Continue reading The GoldBrute botnet is trying to crack open 1.5 million RDP servers→