Threatpost for B2B

Syndicate content
The First Stop For Security News
Updated: 6 hours 3 min ago

Black Energy Malware May Be Exploiting Patched WinCC Flaw

Thu, 12/11/2014 - 10:34
Experts at ICS-CERT say that the BlackEnergy malware that has been seen infecting human-machine interface systems may be exploiting a recently patched vulnerability in the Siemens SIMATIC WinCC software in order to compromise some systems.

Mozilla to Support Certificate Transparency in Firefox

Thu, 12/11/2014 - 07:00
Mozilla is planning to add support for Certificate Transparency checks in Firefox in the near future, but the company says that the feature won't be turned on by default at first.

Microsoft Enables Removal of SSL 3.0 Fallback In IE

Wed, 12/10/2014 - 16:40
Microsoft has given Windows admins the option to remove the SSL 3.0 fallback from Internet Explorer. By disabling SSL 3.0, IE is no longer vulnerable to POODLE attacks.

Potential Security Concerns in Comcast Hotspot Class-Action

Wed, 12/10/2014 - 13:53
A class-action suit has been filed against Comcast for using customer routers as public Wi-Fi hotspots. Can attackers exploit router bugs to jump from public to private networks?

Some Recursive DNS Implementations Patch DoS Vulnerability

Wed, 12/10/2014 - 11:59
Some domain name server (DNS) implementations are at risk for denial-of-service attacks after a vulnerability was disclosed and patched in a few popular server packages, including BIND, PowerDNS and NLnetLabs.

Red October Attackers Return With CloudAtlas APT Campaign

Wed, 12/10/2014 - 11:12
The attackers behind the Red October APT campaign that was exposed nearly two years ago have resurfaced with a new campaign that is targeting some of the same victims and using similarly constructed tools and spear phishing emails.

Payment Gateway Provider Breached, Plain Text Data Accessed

Wed, 12/10/2014 - 10:03
Payment gateway and mobile payment app provider CHARGE Anywhere disclosed it had been breached and hackers had access to plain text payment card transaction authorization requests.

Yahoo Plans to Disclose All New Bugs It Finds Within 90 Days

Wed, 12/10/2014 - 08:00
Yahoo officials say that the company will disclose any new vulnerabilities that the company’s security team finds within 90 days of discovery. The new policy is the same one used by Google’s Project Zero, a team of researchers that looks for vulnerabilities in a variety of commonly used software packages and platforms. That team has […]

New Version of Destover Malware Signed by Stolen Sony Certificate

Tue, 12/09/2014 - 14:49
Researchers have discovered a new version of the Destover malware that was used in the recent Sony Pictures Entertainment breaches, and in an ironic twist, the sample is signed by a legitimate certificate stolen from Sony. The new sample is essentially identical to an earlier version of Destover that was not signed. Destover has been used […]

IE, Schannel Bulletins Re-Released With Patch Tuesday Updates

Tue, 12/09/2014 - 14:16
Microsoft released seven security bulletins, three of them rated critical, as part of its December 2014 Patch Tuesday updates. It also re-released November updates for IE and SChannel

Yik Yak Patches Privacy Vulnerability in iOS App

Tue, 12/09/2014 - 14:13
Yik Yak, an application that allows users to share purportedly anonymous status updates with others near them, has fixed a critical privacy vulnerability in the iOS version of its app.

Adobe Patches Flash Player Vulnerability Under Attack

Tue, 12/09/2014 - 12:17
Adobe released security updates for Flash Player, Reader, Acrobat and ColdFusion. The Flash vulnerability is being exploited in the wild, Adobe said.

Linux Modules Connected to Turla APT Discovered

Tue, 12/09/2014 - 10:26
Researchers at Kaspersky Lab have found two Linux modules connected to the Turla APT campaigns.

Researchers Say POODLE Attack Affects Some TLS Implementations

Tue, 12/09/2014 - 10:20
The POODLE attack against SSLv3 that researchers from Google revealed earlier this year also affects some implementations of TLS and vendors now are scrambling to release patches for gear affected by the vulnerability. Soon after the POODLE attack was disclosed in October, researchers began looking into whether it might affect protocols other than SSLv3. It quickly […]

VMware Patches XSS, Certificate Validation Issues

Mon, 12/08/2014 - 15:08
VMware released patches late last week to fix several vulnerabilities, including a cross-site scripting issue, in one of its server virtualization platforms.

FISC Approves 90-Day Extension of Section 215 Surveillance Authority

Mon, 12/08/2014 - 14:44
The secret Foreign Intelligence Surveillance Court has authorized a 90-day extension to the Section 215 bulk telephone collection program used by the National Security Agency, giving the agency through the end of February to run the program in the absence of legislation establishing a new authority.

Several Vulnerabilities Found in Google App Engine

Mon, 12/08/2014 - 10:41
A group of security researchers in Poland say they have discovered a long list of vulnerabilities in the Google App Engine, some of which enable an attacker to escape the Java sandbox.

Banks Get Green Light in Target Breach Suits

Fri, 12/05/2014 - 14:17
A Minnesota District Court ruling this week related to the 2013 Target data breach has opened the door for banks to pursue damages from retailers victimized by a data breach.

EC3 Head Paints Bleak Cybercrime Picture

Fri, 12/05/2014 - 12:45
Troels Oerting, head of Europol's EC3, explains the extreme difficulties law enforcement faces when investigating and prosecuting cybercrime at Georgetown Law's Cybercrime 2020.

Upcoming Adobe Reader, Acrobat Update to Patch Sandbox Escape

Fri, 12/05/2014 - 09:19
Adobe announced security updates for Reader and Acrobat that likely include patches for a sandbox escape vulnerability. Google's Project Zero released details and exploit code earlier this week.