Collaborate Disseminate
Lenovo has warned customers that 24 models of its ThinkPad laptops, which are popular with business users, are affected by two critical vulnerabilities in Broadcom wireless controllers. The flaws, tracked as CVE-2017-11120 and CVE-2017-11121, were disc… Continue reading Lenovo Warns ThinkPads Vulnerable to Wi-Fi Flaws
Intel continues to release CPU microcode updates that include mitigation for the Spectre vulnerability announced in January. This week the company released fixes for several CPUs on the Skylake platform. The company’s first batch of microcode upd… Continue reading Intel Releases Microcode Spectre Patches for Skylake CPUs
Attackers can render many WordPress websites unresponsive by exploiting an unpatched vulnerability in core modules that loads JS and CSS files to improve performance. The issue stems from the “load” parameter in the load-styles.php and load… Continue reading Unpatched Vulnerability Exposes WordPress Sites to Denial-of-Service Attacks
Adobe has released an emergency update for Flash Player to fix a critical zero-day vulnerability that already has been used in targeted attacks by North Korean hackers. News of the vulnerability broke last week with an alert from the South Korean Compu… Continue reading Adobe Fixes Flash Player Zero-Day Vulnerability
Adobe Systems has confirmed that attackers are in possession of an exploit for a critical zero-day vulnerability in Flash Player that will be patched over the coming days. News of the flaw first came Jan. 31 in an alert from the South Korean Computer E… Continue reading Adobe Confirms Unpatched Flash Player Vulnerability Used in Attacks
Over the past year, a group of hackers has used the “EternalBlue” exploit to infect more than 500,000 computers from around the world and use them to mine Monero. According to researchers from security firm Proofpoint, who have been trackin… Continue reading Hackers Use EternalBlue Exploit to Infect 500K Computers with Cryptominer
In the first attack of its kind reported in the United States, a gang of criminals is using sophisticated techniques to access ATMs and infect them with specialized malware that allows extracting their cash, a technique known in the security industry a… Continue reading Criminals Use Jackpotting Attack to Steal Cash from U.S. ATMs
Lenovo is advising users of ThinkPad, ThinkCentre and ThinkStation business computers to install a new version of its fingerprint management software to fix a security issue that could expose credentials and authentication data. “Sensitive data s… Continue reading Lenovo Fingerprint Reader Software Failed to Properly Secure Credentials
Lenovo is advising users of ThinkPad, ThinkCentre and ThinkStation business computers to install a new version of its fingerprint management software to fix a security issue that could expose credentials and authentication data. “Sensitive data s… Continue reading Lenovo Fingerprint Reader Software Failed to Properly Secure Credentials
Intelligence services from the Netherlands reportedly had access to the computer network used by a Russian cyberespionage group known as Cozy Bear for years, watching the group break into the U.S. National Democratic Committee and other targets. Not on… Continue reading Dutch Spies Monitored Russian ‘Cozy Bear’ Hackers in Real Time For Years