Security News & Updates
Keep up-to-date on the latest cybersecurity news
Kasper-Spy: Kaspersky Anti-Virus puts users at risk
A super interesting read on the failure of Kasperky to protect the data of their users from leaking out, revealing user’s web browsing for years. If you are a user, the vulnerability is filed under CVE-2019-8286. Read the report here: https://www.heise.de/ct/artikel/Kasper-Spy-Kaspersky-Anti-Virus-puts-users-at-risk-4496138.html
Patch Tuesday roundup from KrebsOnSecurity
https://krebsonsecurity.com/2019/08/patch-tuesday-august-2019-edition/ More RDP vulnerabilities - we do have a worklet for turning that off, in case you haven’t already: Worklet: How to Disable Remote Desktop Protocol Connection Worklets Here’s an example of a worklet we recently created in response to managing updates for the BlueKeep vulnerability: Introducing the Automox Worklet To enable your ability to configure and update systems using the Automox platform, we’ve created an endpoint hardening worklet that disables the remote desktop protocol connection. An Automox worklet is an open extensible automation architecture that allows IT operations to create any custom task that they can imagine. Our tool consumes and contain…
Ransomware on your camera
The Verge – 11 Aug 19 Security researchers find that DSLR cameras are vulnerable to ransomware attack Canon has issued a security advisory and firmware patch for the vulnerability Looks like it’s a remote exploit, so watch out what Wifi you connect your Canon to until you’ve updated your camera. It would suck to have your images encrypted before you even get to download them to a safe location.
With warshipping, hackers ship their exploits directly to their target’s mail room
TechCrunch With warshipping, hackers ship their exploits directly to their target’s mail... Why break into a company’s network when you can just walk right in — literally? Gone could be the days of having to find a zero-day vulnerability in a target’s website, or having to scramble for breached usernames and passwords to break through a... Do any of you take any security measures against packages delivered to your office?
Honda Motors Company databases leaked 40GB of employee data
https://www.scmagazine.com/home/security-news/data-breach/independent-researcher-xxdesmus-discovered-a-honda-motor-company-database-leaking-the-computer-data-of-134-million-rows-roughly-40gb-of-employee-information/ Looks like it’s mostly information about their computer endpoints, but that can still give hackers info they can use to try to break in using known vulnerabilities. Especially targeting the endpoints that don’t have their security software installed.
Already have an account? Login
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.