Google to Block .js Attachments in Gmail
Citing security concerns, Google announced that it will soon block JavaScript (.js) file attachments in Gmail. Continue reading Google to Block .js Attachments in Gmail
Author Archives: Michael Mimoso
High-Severity Chrome Vulnerabilities Earn Researcher $32K in Rewards
Researcher Mariusz Mlynski found and disclosed four high-severity vulnerabilities in Chrome’s Blink rendering engine, earning himself $32,000 through the Chrome Rewards program. Continue reading High-Severity Chrome Vulnerabilities Earn Researcher $32K in Rewards
Default Credentials Found in Schneider Electric Wonderware Historian
ICS-CERT warns of default credentials in Schneider Electric Wonderware Historian that can be abused to compromise Historian databases. Continue reading Default Credentials Found in Schneider Electric Wonderware Historian
St. Louis Public Library Recovers from Ransomware Attack
Services are being restored to the St. Louis Public Library computer system after a ransomware attack impacted access to machines and data at all 17 branches. Continue reading St. Louis Public Library Recovers from Ransomware Attack
Cisco Patches Critical Flaw in WebEx Chrome Plugin
Cisco has fixed a vulnerability in its WebEx extension for Chrome that allowed for remote code execution on computers running the plugin. Continue reading Cisco Patches Critical Flaw in WebEx Chrome Plugin
Apple Patches Critical Kernel Vulnerabilities
Apple released updates across its product lines, including iOS 10.2.1, patching a number of critical code execution vulnerabilities in the kernel, libarchive and WebKit. Continue reading Apple Patches Critical Kernel Vulnerabilities
Sage and Satan Ransomware, Double Trouble
A spam campaign has started spreading Sage ransomware, while a ransomware service known as Satan allows users to customize distribution. Continue reading Sage and Satan Ransomware, Double Trouble
Massive Twitter Botnet Dormant Since 2013
Researchers from the University College London have found a Twitter botnet of 350,000 bots that has been dormant since shortly after the accounts were registered. Continue reading Massive Twitter Botnet Dormant Since 2013
Hack the Army Bounty Pays Out $100,000; 118 Flaws Fixed
The U.S. Army released the results of its Hack the Army bug bounty, and said that close to $100,000 was paid out, and 118 unique and actionable vulnerabilities were reported. Continue reading Hack the Army Bounty Pays Out $100,000; 118 Flaws Fixed
The Changing Face of Carbanak
Carbanak has moved away from its exclusive focus on financial services, branching out to attacks against hospitality and retail. Continue reading The Changing Face of Carbanak