Goodbye Passwords: Hello Identity Management
As passwords are increasingly viewed as security liabilities, Identity Management solutions are picking up the slack.
Alerts
Shade Ransomware Expands to U.S. Targets
Coming to America: The Shade ransomware, which has historically targeted Russian victims, was recently spotted expanding its sights.
Calibration Attack Drills Down on iPhone, Pixel Users
A new way of tracking mobile users creates a globally unique device fingerprint that browsers and other protections can't stop.
SandboxEscaper Drops Three More Windows Exploits, IE Zero-Day
As promised, developer SandboxEscaper has dropped exploit code for four more bugs, on the heels of releasing a Windows zero-day yesterday.
Soaring Cryptocurrency Prices Draw Malicious New Onslaught of Apps, Malware
As Bitcoin prices surge, so too are malicious apps, malware-ridden scams and cryptojacking attacks looking to profit from the cryptocurrency industry.
WannaCry-Infested Laptop Starts at $1.13M in Art Auction
The "bestiary" houses six historical threats that combined resulted in at least $95B in damages worldwide.
Critical Flaws in Khan Academy Opened Door to Account Takeovers
The two critical cross-site request forgery flaws in the online learning non-profit Khan Academy have been resolved.
Windows Zero-Day Drops on Twitter, Developer Promises 4 More
SandboxEscaper has released her latest local privilege-escalation exploit for Windows.
Google Stored G Suite Passwords in Plaintext Since 2005
Google said it had stored G Suite enterprise users' passwords in plain text since 2005 marking a giant security faux pas.
Mozilla Tackles Two Critical Flaws with Firefox 67 Release
Mozilla has released a host of fixes for its browser as it rolls out its latest 67 version of Firefox, which touts better speed and privacy.
Intel Fixes Critical, High-Severity Flaws Across Several Products
Intel has issued fixes for a slew of vulnerabilities, separate from the side-channel bugs disclosed last week.
Data Security in the Cloud: How to Lock Down the Next-Gen Perimeter
Enjoy the video replay of the recent Threatpost cloud security webinar, featuring a panel of experts offering best practices and ideas for managing data in a cloudified world.
Cisco Starts Patching Firmware Bug; Millions of Devices Still Vulnerable
A flaw in the Secure Boot trusted hardware root-of-trust affects enterprise, military and government network gear, including routers, switches and firewalls.
HCL Exposes Customer, Personnel Info in Wide-Ranging Data Leak
HCL domain pages exposed sensitive data - including passwords and project analysis reports - for thousands of employees and customers.
Millions of Golfers Land in Privacy Hazard After Cloud Misconfig
A database with millions of data points on games played plus sensitive information was left right in the middle of the internet fairway for all to see.
Sharing Threat Intelligence: Time for an Overhaul
All too often, information-sharing is limited to vertical market silos; to build better defenses, it's time to take a broader view beyond the ISAC.
Windows 10 Update Bricks PCs, Microsoft Offers Workarounds
A glitch in Microsoft's Windows 10 update is causing systems to freeze after users tried to use the System Reboot function. Luckily, workarounds exist.
Salesforce Woes Linger as Admins Clean Up After Service Outage
An accidental permissions snafu caused a massive outage for all Salesforce customers that continues to affect some businesses.
Behind the Naming of ZombieLoad and Other Intel Spectre-Like Flaws
A lot of thought and meaning goes into the naming of infamous CPU side channel flaws, like ZombieLoad, Spectre and Meltdown.
Slack Bug Allows Remote File Hijacking, Malware Injection
An attacker can supply a malicious hyperlink in order to secretly alter the download path for files shared in a Slack channel.
The First Stop For Security News
Subscribe to Alerts feed
0732150500/7, 0703044000/7
KENET WEBSITE
