Collaborate Disseminate
A large-scale malicious campaign has surreptitiously installed “mining” software for the Monero cryptocurrency on at least 15 million—and as many as 30 million—systems around the world. The campaign has been active for the past four months,… Continue reading More Than 15 Million Users Infected with Monero Mining Malware
Apple has released new security patches for its macOS and iOS devices, managing to be both the first and the last of the major OS vendors to fix the serious Meltdown vulnerability. When the Meltdown and Spectre CPU vulnerabilities were first revealed e… Continue reading Apple Finally Ships Meltdown Patch for Older MacOS Systems
HP and Dell, two of the largest server and enterprise workstation manufacturers, have stopped distributing BIOS/UEFI updates that include Intel’s CPU microcode patches for the Spectre vulnerability. The companies now advise customers to stop depl… Continue reading More OEMs Pull Spectre Patches As Intel Confirms Reboot Issues
Schneider Electric has confirmed that a recently uncovered malware program that was used to attack industrial infrastructure exploited a vulnerability in its Triconex safety controllers. The malware, dubbed Triton, was uncovered in December by research… Continue reading Triton Malware Exploited Zero-Day Flaw in Schneider Electric Safety Controllers
Schneider Electric has confirmed that a recently uncovered malware program that was used to attack industrial infrastructure exploited a vulnerability in its Triconex safety controllers. The malware, dubbed Triton, was uncovered in December by research… Continue reading Triton Malware Exploited Zero-Day Flaw in Schneider Electric Safety Controllers
Over the past six years, thousands of enterprises, educational institutions, medical professionals, activists, journalists, lawyers and military personnel from around the world have been spied on through their mobile devices by one or multiple groups t… Continue reading Lebanon-Based Spy Group Identified in Mobile Spying Effort
Oracle has released the first quarterly security update this year to fix 237 vulnerabilities, more than half of which affect business-critical applications. The products impacted by the patched flaws include Java, MySQL, Oracle Database Server, Financi… Continue reading Oracle Fixes 200-Plus Vulnerabilities in Business-Critical Applications
Security researchers have uncovered a malware program for Android devices that has highly sophisticated spying capabilities and is likely being used for surveillance. Researchers from antivirus vendor Kaspersky Lab found the spyware implant in October,… Continue reading Highly Sophisticated Spyware Skygofree Targets Android Users
The CPU crisis continues. After Windows and Ubuntu patches for the Meltdown and Spectre flaws caused problems for some users, Intel is now investigating reports that its CPU firmware updates are triggering system crashes and reboots. “We have rec… Continue reading Intel Investigating Reboots Caused by CPU Firmware Patches
The latest insider build of Skype allows users to engage in conversations that have end-to-end encryption. This means the application’s servers has no visibility into the encrypted traffic. The Microsoft-owned app was the latest holdout among the… Continue reading Skype Finally Gets End-to-End Encryption