Roczny kurs BUSINESS ENGLISH -50%Szlifuj język biznesu w wygodnej aplikacjiSPRAWDŹ >>

Security Now!

SN 898: Wi-Peep - FBI purchased Pegasus, Passkey support directory, Quantum decryption deadline, Firefox 107

Dodany: 23 listopada 2022

Picture of the Week.
Firefox v107 was released last Tuesday.
Google settles for a cool $391.5 million.
Red Hat Signing its ZIP file Packages.
The FBI purchased Pegasus for "research and...

SN 897: Memory-Safe Languages - Shennina Framework, Shufflecake, The Helm, LightSpeed vulnerabilities

Dodany: 16 listopada 2022

Picture of the Week.
Patch Tuesday review.
Shennina Framework - Automating Host Exploitation with AI.
GitHub's welcome new feature.
Three LightSpeed vulnerabilities.
Shufflecake: Plausible...

SN 896: Something for Everyone - Dropbox breach, cyber bank heists, Russia goes Linux, OpenSSL flaw update

Dodany: 9 listopada 2022

Picture of the Week.
A minor Dropbox breach.
OpenSSL follow-up.
FTC sued and settled with a repeated offender.
$1.2 billion in reported ransomware payments during 2021.
Akamai's Q3 Threat...

SN 895: After 20 years in GCHQ - Stranger Strings, PayPal passkeys, new TCP/IP RCE in Windows

Dodany: 2 listopada 2022

Picture of the Week.
Windows driver blocklist to be updated next Tuesday.
More Microsoft shenanigans.
An upcoming OpenSSL CRITICAL vulnerability update -- get ready!
A new TCP/IP RCE in...

SN 894: Data Breach Responsibility - Firefo 106, KataOS and Sparrow, banking malware, CVSS 9.8 updateQ

Dodany: 26 października 2022

Picture of the Week.
Firefox 106 is out.
Google's Open Source IoT KataOS and Sparrow.
This Week in CryptoCurrency Craziness.
New Windows 0-day bypasses executable security checks.
Apple's 9th...

SN 893: Password Change Automation - Windows Update RSS, malicious kernal drivers, Signal SMS/MMS, ZimaBoard

Dodany: 19 października 2022

Picture of the Week.
Microsoft "Won't Fix".
Malicious Kernel Drivers.
Microsoft has finally added an RSS feed for Windows Updates!
Passkeys [dot] Dev.
Largest DDoS attack.
Signal will be...

SN 892: Source Port Randomization - Targeted Malware, Uber CSO Guilty

Dodany: 12 października 2022

Picture of the Week.
Breach of Customer Information
Meta-targeted Malware
Uber's Chief Security Officer Found Guilty
More Cryptocurrency Chaos
The UK to drop GDPR
Summer Internship with the...

SN 891: Poisoning Akamai - Turnstile vs CAPTCHA, Microsoft Teams Under Attack

Dodany: 5 października 2022

Picture of the Week. (What Could Possibly Go Wrong)
Microsoft Teams - Unecessarily Insecure
Roskomnadzor blocks Soundcloud
Microsoft Exchange Server Under Attack Again
I'm (Still) Not a Robot!...

SN 890: DarkNet Politics - EU and Google Analytics, Rockstar hacker busted, Mozilla says no fair

Dodany: 28 września 2022

Picture of the Week.
Can't have it both ways.
Denmark has become the fourth EU member to rule that the use of Google Analytics is illegal.
Rockstar Games hacker is busted!
Mozilla says: No...

SN 889: Spell-Jacking - Cyber-Insurance, GTA 6 leak, MiraclePtr, CVSS9.8 for WordPress, Uber Oops!

Dodany: 21 września 2022

Picture of the Week.
This is Patch News-Day.
Lloyd's of London backing away from Cyber-Insurance.
Uber Oops!
Rockstar Games: Grand Theft Auto 6 Massive Leak.
LastPass Breach Update.
A CVSS...

SN 888: The EvilProxy Service - MooBot, Crypto Heist, Cyberwarfare, QNAP, The Silver Ships

Dodany: 14 września 2022

Picture of the Week. 
Cyberwarfare: Albania vs Iran. 
Crypto Heist — this or that. 
The White House "Tech Platform Accountability" Listening Session. 
Changes to the Dutch Intelligence Law. ...

SN 887: Embedded AWS Credentials - TikTok leak, urgent Chrome patch, PyPI warning, Quantum Hype Bubble

Dodany: 7 września 2022

Picture of the Week. 
Google's (newest) Open Source Software Vulnerability Rewards Program. 
Did TikTok leak 2.05 BILLION User Records? 
An urgent Chrome update patches new 0-day flaw. ...

SN 886: Wacky Data Exfiltration - LastPass breach, FTC Kochava lawsuit, Hikvision IoT mess

Dodany: 31 sierpnia 2022

Picture of the Week. 
LastPass Breached. 
The US Federal Trade Commission filed a lawsuit against data broker Kochava. 
The US Federal Communications Commission launched an investigation into...

SN 885: The Bumblebee Loader - RTL819x Exploit, RubyGems Update, Chrome's Fifth 0-Day of 2022

Dodany: 24 sierpnia 2022

VIDEO of the Week
Crashing Laptop Computers With Janet Jackson
RealTek SoC flaw affects many millions of IoT devices
46 Million RPS - requests per second
Chrome's 5th 0-Day of 2022
Apple: Not...

SN 884: TLS Private Key Leakage - BIG patch Tuesday, Facebook E2E encryption, VNC insecurity, Cyotek WebCopy

Dodany: 17 sierpnia 2022

Picture of the Week.
Patch Flashback Tuesday.
Facebook is cautiously creeping toward default E2E encryption.
VNC's inherent insecurity.
The need to control domain names.
And speaking of...

SN 883: The Maker's Schedule - VirusTotal, Daniel Bernstein sues the NSA, Win 11 might damage encrypted data

Dodany: 10 sierpnia 2022

Picture of the Week.
Crypto is Hard.
VirusTotal: Deception at a scale.
Windows 11 might damage encrypted data.
Microsoft Defender External Attack Surface Management.
Closing The Loop.
Daniel...

SN 882: Rowhammer's Nine Lives - TLS-Anvil, Chrome cookies stick around, Atlassian Confluence under attack

Dodany: 3 sierpnia 2022

Picture of the Week.
Atlassian's "Confluence" under attack.
LS-Anvil.
Google delays Chrome's cookie phase-out again.
Attacker responding to loss of Office Macros.
SpinRite.
Closing The Loop....

SN 881: The MV720 - MS Office VBA macros, Win 11 security changes, start button failure

Dodany: 27 lipca 2022

Picture of the Week.
Patch Tuesday Redux Redux.
Windows 11 Start button failure.
The continuing saga of Windows VBA macros.
Windows 11 now blocks RDP brute-force attacks by default.
Black Hat...

SN 880: RetBleed - Facebook encrypted URLs, cracking Lockdown Mode, ClearView AI resistance, Roskomnadzor

Dodany: 20 lipca 2022

Picture of the Week. 
The Rolling Pwn, take II. 
The great IPv4 Address Space Depletion. 
Confronting Reality in Cyberspace: Foreign Policy for a Fragmented Internet. 
Facebook has started...

SN 879: The Rolling Pwn - OpenSSL patch, iOS Lockdown Mode, Yubikey's to Ukraine, Office Macros re-enabled

Dodany: 13 lipca 2022

 Picture of the Week. 
 OpenSSL's Patch For Heap Memory Corruption Vulnerability. 
 NIST Announces First Four Quantum-Resistant Cryptographic Algorithms. 
 Yubico donated 30,000 Yubikeys to...