Skip to content

WindowsTechs.com

Collaborate Disseminate

Search for:

Primary menu

Home

Author Archives: Michael Mimoso

Flaw in Google Bug Tracker Exposed Reports About Unpatched Vulnerabilities

Posted on October 30, 2017 by Michael Mimoso

Google’s Issue Tracker contained until recently a vulnerability that would allow an external party access to any unpatched bug listed and described in the database. Continue reading Flaw in Google Bug Tracker Exposed Reports About Unpatched Vulnerabilities→

Posted in Alex Birsan, bug reports, bug tracker, Google, Google Buganizer, Google Issue Tracker, vulnerabilities, Web Security

Malicious Chrome Extension Steals Data Posted to Any Website

Posted on October 30, 2017 by Michael Mimoso

A malicious Google Chrome extension being spread in phishing emails steals any data posted online by victims. Continue reading Malicious Chrome Extension Steals Data Posted to Any Website→

Posted in Brazilian malware, browser extension, Catch-All Google Chrome Malicious Extension, chrome extension, cybercrime, Dropper, malware, Morphus Labs, Phishing, Renato Marinho, SSL

Rockwell Automation Patches Wireless Access Point against Krack

Posted on October 27, 2017 by Michael Mimoso

Rockwell Automation has patched its Stratix wireless access point against the KRACK vulnerability, joining a growing list of vendors in the commercial and industrial controls spaces moving quickly to reduce their exposure. Continue reading Rockwell Automation Patches Wireless Access Point against Krack→

Posted in critical infrastructure, ICS-CERT, KRACK, KRACK attack, KRACK vulnerability, Rockwell Automation, vulnerabilities, Wi-Fi, wireless security

EternalRomance Exploit Found in Bad Rabbit Ransomware

Posted on October 26, 2017 by Michael Mimoso

Researchers at Cisco found a modified version of the leaked NSA exploit EternalRomance in this week’s Bad Rabbit attack. Continue reading EternalRomance Exploit Found in Bad Rabbit Ransomware→

Posted in Bad Rabbit, Cisco Talos, DoublePulsar, EternalBlue, EternalRomance, Kaspersky Lab, malware, MS17-010, NSA exploit, Ransomware, ShadowBrokers, Wiper malware

Bad Rabbit Linked to ExPetr/Not Petya Attacks

Posted on October 25, 2017 by Michael Mimoso

Researchers have linked the Bad Rabbit ransomware attack to this summer’s ExPetr/Not Petya outbreak. Continue reading Bad Rabbit Linked to ExPetr/Not Petya Attacks→

Posted in Bad Rabbit, EternalBlue, Ex Petr, Government, Kaspersky Lab, malware, Ransomware, SMB, Wiper malware, WMIC | Tagged NotPetya

BadRabbit Ransomware Attacks Hitting Russia, Ukraine

Posted on October 24, 2017 by Michael Mimoso

A ransomware attack called BadRabbit has put a halt to business inside a handful of Russian and Ukrainian businesses. Continue reading BadRabbit Ransomware Attacks Hitting Russia, Ukraine→

Posted in BadRabbit, ExPetr, Interfax, Kaspersky Lab, malware, Ransomware, Securelist, Wiper malware

DUHK Attack Exposes Gaps in FIPS Certification

Posted on October 24, 2017 by Michael Mimoso

The DUHK Attack leverages a 20-year-old random number generator flaw to recover private keys. More pertinent, researchers said, is that the flaw exposes gaps in the FIPS certification process. Continue reading DUHK Attack Exposes Gaps in FIPS Certification→

Posted in ANSI X9.31 PRNG, Cryptography, DUHK attack, encryption, fips, Fortinet, Matthew Green, Nadia Heninger, private key, pseudorandom number generator, RNG, seed key, Shaanan Cohney, VPN, vulnerabilities

Latest Sofacy Campaign Targeting Security Researchers

Posted on October 23, 2017 by Michael Mimoso

Sofacy has been using a lure document connected to a cyber conflict conference to target researchers and others interested in cybersecurity. Continue reading Latest Sofacy Campaign Targeting Security Researchers→

Posted in advanced attackers, APT, Cisco Talos, CyCon, Fancy Bear, Government, malware, Sofacy

DHS Alert on Dragonfly APT Contains IOCs, Rules Likely to Trigger False Positives

Posted on October 23, 2017 by Michael Mimoso

A joint Technical Alert, TA17–293A, describing the activities of a Russian APT may contain signatures and rules likely to trigger false positives in some security systems. Continue reading DHS Alert on Dragonfly APT Contains IOCs, Rules Likely to Trigger False Positives→

Posted in APT, DHS, Dragonfly APT, exploits, fbi, Government, indicators of compromise, IOCs, Joint Technical Alert, malware, TA17-293, vulnerabilities, yara rules

Necurs-Based DDE Attacks Now Spreading Locky Ransomware

Posted on October 20, 2017 by Michael Mimoso

Researchers have spotted Locky ransomware infections emanating from the Necurs botnet via Word attachments using a DDE technique that Microsoft says is an Office feature and does not merit a security patch. Continue reading Necurs-Based DDE Attacks Now Spreading Locky Ransomware→

Posted in botnet, Brad Duncan, DDE, locky, malware, Microsoft, necurs, Office, Office patch, Ransomware, SANS ISC, vulnerabilities

Post navigation

← Older posts

Newer posts →

Primary Sidebar Widget Area

Infocon Status

Recent Posts

I’ve tested Sony headphones for years, and these tweaks get me the best audio – always April 26, 2026
Australia’s Teen Social Media Ban Isn’t Working. Half Their Teens Still Have Access, Survey Finds April 25, 2026
Colorado Adds Open-Source Exemption to Age-Verification Bill April 25, 2026
OneNote flickering or not working on second monitor April 25, 2026
Is the World Ready For a Car Without a Rear Window? April 25, 2026

Tag Cloud

Agriculture Alzheimer's Disease Art Audio Automation Bluetooth Building and Construction Campervan Camping Cancer Coronavirus (COVID-19) Cycling Dementia Diabetes DNA Electric Vehicles Food Home House Huawei Indiegogo MIT Mobility Moon New Atlas Audio NVIDIA Off-grid Off-road Pedal-assisted Photography Physics Radio Repair RV Samsung Satellite Sony SpaceX spoofing sustainable design The Immune System Tiny Footprint Training Water Zoom

Archives

Facebook
Twitter
Linkedin
Email

Copyright © 2026 WindowsTechs.com. All Rights Reserved.

Theme: Catch Box by Catch Themes

Scroll Up