Threatpost News Wrap, Oct. 20, 2017
This week’s Threatpost News Wrap Podcast recaps the ROCA, KRACK and Boundhook attacks, as well as the release of Google Advanced Protection for Gmail. Continue reading Threatpost News Wrap, Oct. 20, 2017
Author Archives: Michael Mimoso
Google Play Bounty Promises $1,000 Rewards for Flaws in Popular Apps
Google announced a public bug bounty for Google Play that brings developers and researchers together to find and patch flaws in popular apps. Continue reading Google Play Bounty Promises $1,000 Rewards for Flaws in Popular Apps
FBI Asks Businesses to Share Details About DDoS Attacks
The FBI has made an appeal to organizations victimized by DDoS attacks to share details and characteristics of those incidents. Continue reading FBI Asks Businesses to Share Details About DDoS Attacks
Critical Code Execution Flaw Patched in PeopleSoft Core Engine
Organizations running PeopleSoft exposed to the internet should pay attention to a remote code execution vulnerability patched in the latest Oracle Critical Patch Update. Continue reading Critical Code Execution Flaw Patched in PeopleSoft Core Engine
Adobe Patches Flash Zero Day Exploited by Black Oasis APT
Adobe today released an out-of-band Flash Player update addressing a zero-day vulnerability being exploited by a little-known Middle Eastern APT group called Black Oasis. Continue reading Adobe Patches Flash Zero Day Exploited by Black Oasis APT
KRACK Attack Devastates Wi-Fi Security
The KRACK, or key reinstallation attack, disclosed today allow attackers to decrypt encrypted traffic, steal data and inject malicious code depending on the network configuration. Continue reading KRACK Attack Devastates Wi-Fi Security
KRACK Attack Devastates Wi-Fi Security
The KRACK, or key reinstallation attack, disclosed today allow attackers to decrypt encrypted traffic, steal data and inject malicious code depending on the network configuration. Continue reading KRACK Attack Devastates Wi-Fi Security
Google Busy Removing More Malicious Chrome Extensions from Web Store
Three malicious Chrome extensions spoofing AdBlock Plus were removed from the Chrome Web Store this week. Continue reading Google Busy Removing More Malicious Chrome Extensions from Web Store
Chris Brook Says Farewell to Threatpost
Staff writer Chris Brook says farewell to Threatpost after eight years on the site. He and Mike Mimoso talk about Threatpost’s early days and how the site grew up alongside the security industry. Continue reading Chris Brook Says Farewell to Threatpost
Equifax Takes Down Compromised Page Redirecting to Adware Download
Equifax has temporarily taken down one of its consumer-facing credit report services after the webpage was compromised and serving adware via a phony Flash Player download. Continue reading Equifax Takes Down Compromised Page Redirecting to Adware Download