Threatpost for B2B

Syndicate content
The First Stop For Security News
Updated: 10 hours 54 min ago

Microsoft SHA-2 Advisory Causing ‘Infinite Loop’ Issues

Thu, 03/12/2015 - 10:16
Windows users are having issues with a security update issued this week meant to add SHA-2 code-signing and verification support to Windows 7 and Windows Server 2008 R2 machines.

Dropbox Patches Remotely Exploitable Vulnerability in SDK

Wed, 03/11/2015 - 14:56
Developers at Dropbox recently fixed a remotely exploitable vulnerability in the Android SDK version of the app that enabled attackers to connect applications on some devices to a Dropbox account without the user's consent.

Details Surface on Stuxnet Patch Bypass

Wed, 03/11/2015 - 13:01
HP's Zero Day Initiative published details of a bypass for a five-year-old Windows patch for the .LNK vulnerability exploited by Stuxnet.

Facebook Issues Present Possible Threat to Users

Wed, 03/11/2015 - 11:39
UPDATE–A security researcher has identified a pair of security issues in Facebook, one of which can be used to to upload an arbitrary file to the site, and the other of which can allow an attacker to gain control of a victim’s machine under some limited circumstances with user interaction. The more serious of the vulnerabilities, which […]

Equation APT Group Attack Platform A Study in Stealth

Wed, 03/11/2015 - 07:00
The EquationDrug cyberespionage platform is a complicated system that is used selectively against only certain target machines, one that can be extended via a collection of 116 malware plug-ins, researchers at Kaspersky Lab said.

Microsoft Patches Old Stuxnet Bug, FREAK Vulnerability

Tue, 03/10/2015 - 14:24
Microsoft's March 2015 Patch Tuesday security bulletins include patches for an old Stuxnet LNK vulnerability and the FREAK SSL vulnerability.

Patched Windows Machines Exposed to Stuxnet LNK Flaw All Along

Tue, 03/10/2015 - 13:00
Microsoft released a new patch for the LNK vulnerability exploited by Stuxnet after it learned original patch from 2010 failed and left Windows machines exposed.

CloudFlare Aims to Defeat Massive DDoS Attacks with Virtual DNS

Tue, 03/10/2015 - 11:13
DDoS attacks have been a persistent problem for the the better part of 20 years, and as ISPs and enterprises have adjusted their defenses, attackers have adapted their tactics. One of the more effective tools in the attackers’ arsenal now is the use of botnets to generate massive numbers of DNS queries for a target […]

Apple Fixes FREAK Bug, iCloud Flaw in iOS 8.2

Tue, 03/10/2015 - 10:28
Apple has patched the FREAK SSL vulnerability, along with a nasty bug that could’ve allowed a remote attacker to restart a user’s iPhone via SMS, with the release of iOS 8.2. The new version of Apple’s mobile operating system contains a number of vulnerability fixes, with the FREAK patch being the most prominent among them. […]

OpenSSL Security Audit Ready to Start

Tue, 03/10/2015 - 09:46
NCC Group Cryptography Services announced it will shortly begin an audit of OpenSSL.

Yahoo Patches Critical eCommerce, Small Business Vulnerabilities

Tue, 03/10/2015 - 07:17
Yahoo has fixed a handful of vulnerabilities that could have given an attacker free reign over all of its user-run eCommerce websites and caused multiple headaches for small business owners.

Rowhammer Hardware Exploit Poses Threat to DRAM Memory in Many Laptops, PCs

Tue, 03/10/2015 - 06:00
Software, from web apps, to operating systems to firmware, has been abused and exploited every which way from Sunday for decades by both researchers and attackers. Now, it is hardware’s turn in the spotlight, as researchers have published details of a new method for exploiting a problem with some DRAM memory devices that can allow […]

New Technique Complicates Mutex Malware Analysis

Mon, 03/09/2015 - 14:26
A recent malware sample dynamically generates the name of a mutex object by using Windows product ID, lessening its predictability and complicating detection.

Seagate Confirms NAS Zero Day, Won’t Patch Until May

Mon, 03/09/2015 - 10:52
Seagate confirmed a publicly disclosed vulnerability in one of its network attached storage products, but said it won't have a patch available until May.

TextSecure to Drop Support for Encrypted SMS

Mon, 03/09/2015 - 10:09
Open Whisper Systems is phasing out support for encrypted SMS and MMS messages in its TextSecure messaging product. The move does not spell the end for encrypted messaging for users of the Android app, as the company plans to switch to its own transport protocol to address some of the security and performance issues inherent […]

Dridex Banking Trojan Spreading Via Macros in XML Files

Fri, 03/06/2015 - 14:38
A phishing campaign that spiked this week is pushing the Dridex banking Trojan via malicious macros embedded in XML file attachments.

Threatpost News Wrap, March 6, 2015

Fri, 03/06/2015 - 12:50
Dennis Fisher and Mike Mimoso talk about the FREAK SSL vulnerability and the glorious debut of CSI: Cyber!

Confusion Reigns Over FBI’s Plans for National Security Letter Gag Orders

Fri, 03/06/2015 - 12:28
The way that National Security Letters are approved and used is one of the government’s more opaque processes. Now, you can add some more confusion into the mix, courtesy of some new comments from the FBI about when recipients are able to disclose the fact that they have received an NSL. More than a year […]

Adobe Starts Vulnerability Disclosure Program on HackerOne

Fri, 03/06/2015 - 10:49
Adobe launched its first vulnerability disclosure program this week. It will use the HackerOne platform and will not pay out bounties, instead researchers can bulk up their HackerOne reputation scores. Only vulnerabilities in Adobe web applications or web-based services are in scope.

Anthem Refusing Security Audit Following Breach

Fri, 03/06/2015 - 08:00
Anthem has refused to undergo vulnerability scans and configuration compliance tests in the aftermath of a breach that may have leaked the personal information of nearly 100,000 customers and non-customers.