Doug Olenick

Google patches 37 security issues in Chrome

Google patches 37 security issues in Chrome

Google issued patches for 37 security issues in Chrome, with one being rated critical and six considered high risks, with the release of Chrome 63.0.3239.84.
By Doug Olenick Dec 11 2017, 12:50PM
WordPress hit with keylogger, 5,400 sites infected

WordPress hit with keylogger, 5,400 sites infected

The cryptomining malware pushed from cloudflare.solutions earlier this year has been modified with the addition of keylogger functionality to its mix.
By Doug Olenick Dec 11 2017, 10:42AM
US Senate bill would require jail time for data breach cover ups

US Senate bill would require jail time for data breach cover ups

Three US Senators have introduced a bill that would require jail time for corporate executives who do not notify consumers of a breach within 30 days.
By Doug Olenick Dec 5 2017, 10:34AM
US CERT issues warning on ASLR vulnerability in Windows

US CERT issues warning on ASLR vulnerability in Windows

US CERT has issued a warning on a vulnerability in Windows' Address Space Layout Randomisation (ASLR) that affects Windows 8, Windows 8.1, and Windows 10 which could allow an attacker to take control of an affected system.
By Doug Olenick Nov 23 2017, 10:54AM
Microsoft Patch Tuesday: 20 critical issues addressed

Microsoft Patch Tuesday: 20 critical issues addressed

Microsoft's November Patch Tuesday rollout included patches 53 flaws, 20 rated critical, spread across a variety of products, including Edge, Internet Explorer, Windows and Office.
By Doug Olenick Nov 16 2017, 1:23PM
Adobe Patch Tuesday: 62 vulnerabilities for Acrobat, 5 critical for Flash

Adobe Patch Tuesday: 62 vulnerabilities for Acrobat, 5 critical for Flash

Adobe's November Patch Tuesday included 83 patches, including fixes for five critical-rated issues in Flash Player. Reader and Acrobat, by themselves, generated more than five dozen CVEs.
By Doug Olenick Nov 16 2017, 11:20AM
Coinhive cryptocurrency miner on Check Point's Most Wanted Malware list

Coinhive cryptocurrency miner on Check Point's Most Wanted Malware list

Cryptocurrency miners are becoming one of the most prolific threats facing everyone, with Check Point Software Technologies naming this type of malicious software in its Ten Most Wanted Malware list for October.
By Doug Olenick Nov 16 2017, 11:20AM
Boeing 757 airliner successfully hacked with radio comms hacking tools

Boeing 757 airliner successfully hacked with radio comms hacking tools

A Boeing 757 airliner was successfully hacked by a team of public and private security professionals, according to a US Department of Homeland Security (DHS) official.
By Doug Olenick Nov 15 2017, 11:04AM
CIA impersonated Kaspersky Labs as cover for malware operations

CIA impersonated Kaspersky Labs as cover for malware operations

WikiLeaks, under its new Vault 8 series of released documents, has rolled out what it says is the source code to a previously noted CIA tool, called Hive, that is used to help hide espionage actions when the Agency implants malware.
By Doug Olenick Nov 14 2017, 10:47AM
ToastAmigo malware uses new twist to attack Toast overlay vulnerability

ToastAmigo malware uses new twist to attack Toast overlay vulnerability

A new malware uses an updated methodology to abuse the previously patched Android Toast overlay vulnerability, which once installed, can download additional malware as well as use various permissions to access the phone.
By Doug Olenick Nov 13 2017, 10:32AM
Brother printers and multi-function devices vulnerable to DoS attack

Brother printers and multi-function devices vulnerable to DoS attack

Trustwave researchers revealed a vulnerability in Brother consumer and business printers and multi-function devices that can allow a denial of service attack.
By Doug Olenick Nov 10 2017, 10:01AM
Cryptoshuffler trojan diverting bitcoin payments to criminal's pockets

Cryptoshuffler trojan diverting bitcoin payments to criminal's pockets

Cryptocurrency mining may be all the rage right now, but some malicious actors are finding it easier to use a specialised trojan that simply steals the money right out of a digital wallet.
By Doug Olenick Nov 2 2017, 10:16AM
Microsoft adds ransomware defence with new Windows update

Microsoft adds ransomware defence with new Windows update

Microsoft is claiming that the latest version of Windows 10, the Fall Creator's Update, is the most secure version of the operating system yet released.
By Doug Olenick Oct 26 2017, 11:09AM
Mozilla patches three critical issues in Thunderbird and Firefox

Mozilla patches three critical issues in Thunderbird and Firefox

Mozilla issued a security update stating that the newly released Thunderbird 52.4 , Firefox 56 and Firefox ESR 52.4 patch 10 vulnerabilities, two rated critical, five high and three moderate found in earlier iterations of the software.
By Doug Olenick Oct 16 2017, 11:02AM
Patch Tuesday Microsoft: 62 vulnerabilities, 28 critical, 1 in the wild

Patch Tuesday Microsoft: 62 vulnerabilities, 28 critical, 1 in the wild

Microsoft's October Patch Tuesday release covered a wide spectrum of problems with the majority possibly resulting in remote code execution (RCE) and CVE-2017-11826 being publicly disclosed and actively exploited.
By Doug Olenick Oct 13 2017, 10:52AM
Apple issues new security update for macOS High Sierra

Apple issues new security update for macOS High Sierra

Apple issued a supplemental security update for macOS High Sierra 10.13 to patch two issues, one of which fixes a keychain password issue discovered last week.
By Doug Olenick Oct 11 2017, 11:17AM
Kaspersky Labs denies report its software was used to hack NSA

Kaspersky Labs denies report its software was used to hack NSA

Russian hackers used a Kaspersky Labs antivirus product to steal hacking tools from the National Security Agency, The Wall Street Journal reported Thursday, subsequently denied by Eugene Kaspersky.
By Doug Olenick Oct 9 2017, 10:40AM
Evidence of Russian Twitter accounts subverting US election criticised

Evidence of Russian Twitter accounts subverting US election criticised

Twitter's revelation that it had identified about 200 accounts that may have broken its terms of service and were possibly linked to nefarious activity geared toward influencing the 2016 US election criticised in Senate.
By Doug Olenick Oct 3 2017, 1:04PM
Avast narrows down probable location of CCleaner attacker

Avast narrows down probable location of CCleaner attacker

Avast continued to reveal further details surrounding the cyberattack that placed a backdoor in its free computer maintenance app, CCleaner. Attack believed originated from a country located in the UTC + 4 or UTC + 5 time zones.
By Doug Olenick Sep 28 2017, 9:58AM
Remotely locked Apple devices being held for ransom

Remotely locked Apple devices being held for ransom

Some Apple product owners have found themselves on the receiving end of a new ransom attack that has someone locking their device most likely using stolen iCloud credentials.
By Doug Olenick Sep 27 2017, 11:20AM