Security News

On Halloween night, Google discloses Chrome zero-day exploited in the wild

ZDNet Zero Day - Fri, 11/01/2019 - 03:27
On Halloween, Google releases Chrome 78.0.3904.87 to patch a Chrome zero-day discovered by Kaspersky exploited in the wild.
Categories: Security News

Mozilla to stop supporting sideloaded extensions in Firefox

ZDNet Zero Day - Thu, 10/31/2019 - 20:16
Firefox users won't be able to sideload extensions starting March 2020, with Firefox 74.
Categories: Security News

Cyber-attack hits Utah wind and solar energy provider

ZDNet Zero Day - Thu, 10/31/2019 - 18:40
First-of-its kind attack to hit a renewable energy provider. Also first cyber-attack to disconnect a US power grid operator from its power generation station.
Categories: Security News

Thousands of QNAP NAS devices have been infected with the QSnatch malware

ZDNet Zero Day - Thu, 10/31/2019 - 14:09
Over 7,000 infections reported in Germany alone. The malware is still spreading.
Categories: Security News

Chinese hackers developed malware to steal SMS messages from telco's network

ZDNet Zero Day - Thu, 10/31/2019 - 11:46
MessageTap malware is meant to be installed on Short Message Service Center (SMSC) servers, on a telco's network.
Categories: Security News

WhatsApp launches fingerprint security lock support for Android devices

ZDNet Zero Day - Thu, 10/31/2019 - 10:38
What Apple’s iOS has already received is now available for Android handsets.
Categories: Security News

GEDmatch highlights security concerns of DNA comparison websites

ZDNet Zero Day - Thu, 10/31/2019 - 08:02
DNA matching can produce interesting data on family trees, but may also expose us to serious risk.
Categories: Security News

At least 13 managed service providers were used to push ransomware this year

ZDNet Zero Day - Thu, 10/31/2019 - 06:51
Once hackers compromise an MSP's network, they can use its remote access tools to deploy ransomware to hundreds of companies and thousands of computers.
Categories: Security News

A Broken Random Number Generator in AMD Microcode

Schneier on Security - Thu, 10/31/2019 - 06:24
Interesting story. I always recommend using a random number generator like Fortuna, even if you're using a hardware random source. It's just safer.... Bruce Schneier
Categories: Security News

This is how malicious Android apps avoid Google’s security vetting

ZDNet Zero Day - Thu, 10/31/2019 - 06:09
Cyberattackers are using a variety of tactics to stop Google spotting suspicious app behavior.
Categories: Security News

Hackers who extorted Uber and LinkedIn plead guilty

ZDNet Zero Day - Wed, 10/30/2019 - 15:55
The two hackers stole 57 million user and driver details from Uber and 90,000 Lynda.com user details from LinkedIn. They then tried to extort the companies for "bug bounties."
Categories: Security News

Ubisoft reports 93% drop in DDoS attacks after pushing back against attackers

ZDNet Zero Day - Wed, 10/30/2019 - 13:05
Ubisoft said it sent cease-and-desist letters to DDoS service providers, filed complaints against offending players.
Categories: Security News

WhatsApp Sues NSO Group

Schneier on Security - Wed, 10/30/2019 - 09:36
WhatsApp is suing the Israeli cyberweapons arms manufacturer NSO Group in California court: WhatsApp's lawsuit, filed in a California court on Tuesday, has demanded a permanent injunction blocking NSO from attempting to access WhatsApp computer systems and those of its parent company, Facebook. It has also asked the court to rule that NSO violated US federal law and California state... Bruce Schneier
Categories: Security News

Confirmed: North Korean malware found on Indian nuclear plant's network

ZDNet Zero Day - Wed, 10/30/2019 - 07:06
Two days after rumors of a malware infection at the Kudankulam Nuclear Power Plant surfaced on Twitter, the plant's parent company confirms the security breach.
Categories: Security News

Corellium hits back against Apple lawsuit, claims iOS virtualization is for the common good

ZDNet Zero Day - Wed, 10/30/2019 - 06:38
The company also says that Apple’s attitude to security research is “harmful.”
Categories: Security News

Zealcon software firm owner sentenced for tax fraud

ZDNet Zero Day - Wed, 10/30/2019 - 05:35
Cash was withheld from staff wages but did not end up in IRS coffers.
Categories: Security News