Threatpost for B2B

Syndicate content
The First Stop For Security News
Updated: 4 hours 47 min ago

Google Fixes 51 Bugs in Chrome 41

Wed, 03/04/2015 - 14:58
Google released the latest build of its browser Tuesday, Chrome 41.0.2272.76, patching 51 different bugs and paying out over $50,000 in bounties.

D-Link Working on Firmware Updates for Three Critical Bugs

Wed, 03/04/2015 - 13:20
D-Link is in the midst of pushing out firmware updates for eight of its home router models, addressing three serious remote code injection vulnerabilities.

Patrick Gray on the State of Security and State Security

Wed, 03/04/2015 - 12:32
Worlds collide as Dennis Fisher talks with Patrick Gray of the Risky Business podcast about security journalism, how much and how little has changed in the industry in the last 15 years and whether we're making any progress in the fight against attackers.

Firefox 37 to Include New OneCRL Certificate Blocklist

Wed, 03/04/2015 - 11:47
The next version of Mozilla Firefox will include a new certificate revocation list that will speed up and streamline the process of revoking intermediate certificates trusted by the browser. The new feature, known as OneCRL, is meant as a replacement for the old OCSP (online certificate status protocol) system that is used now to check […]

Domain Shadowing Latest Angler Exploit Kit Evasion Technique

Tue, 03/03/2015 - 17:30
The Angler Exploit Kit has begun using domain shadowing as a technique to avoid detection and blocking, researchers at Cisco Talos said.

New POS Malware Uses Mailslots to Avoid Detection

Tue, 03/03/2015 - 16:57
A new type of POS malware, LogPOS, is using technology that evades detection by letting the malware inject code while it shuttles stolen credit card numbers to its C+C server.

New FREAK Attack Threatens Many SSL Clients

Tue, 03/03/2015 - 15:30
For the nth time in the last couple of years, security experts are warning about a new Internet-scale vulnerability, this time in some popular SSL clients. The flaw allows an attacker to force clients to downgrade to weakened ciphers and break their supposedly encrypted communications through a man-in-the-middle attack. Researchers recently discovered that some SSL […]

Change to Lollipop Encryption Policy May Not Have Much Effect, Experts Say

Tue, 03/03/2015 - 12:05
Google has made a subtle, but important, shift in the requirements for Android handset makers, saying now that OEMs manufacturing phones that will run Lollipop do not have to enable disk encryption by default. This is a major change from the company’s stated position from just a few months ago, but it may not have […]

Government Report Critical of FAA Security Controls

Tue, 03/03/2015 - 11:10
A GAO report takes the Federal Aviation Administration to the woodshed over its sub-par information security controls and policies.

Signal 2.0 Brings Encrypted Messaging to iPhone

Mon, 03/02/2015 - 16:22
Signal 2.0 is available from Open WhisperSystems, and brings encrypted messaging to the iPhone.

D-Link Routers Haunted by Remote Command Injection Bug

Mon, 03/02/2015 - 15:02
Some D-Link routers contain a vulnerability that leaves them open to remote attacks that can give an attacker root access, allow DNS hijacking and other attacks. The vulnerability affects affects a number of D-Link’s home routers and the key details of the flaw have been made public by one of the researchers who discovered it. […]

Older Keen Team Use-After-Free IE Exploit Added to Angler Exploit Kit

Mon, 03/02/2015 - 14:58
Attackers behind one of the more popular exploit kits, Angler, have added a tweaked version of an exploit from last fall, a use after free vulnerability in Microsoft's Internet Explorer browser.

Mozilla Pushes Hot Fix to Remove Superfish Cert From Firefox

Mon, 03/02/2015 - 10:53
Mozilla has issued a hot fix for Firefox that removes the Superfish root certificate from the browser’s trusted root store. The patch only removes the certificate if the Superfish software has been removed from the machine already, however. The Superfish adware performs SSL interception–essentially running man-in-the-middle attacks on connections to secure sites–in the name of […]

Seagate Business NAS Firmware Vulnerabilities Disclosed

Mon, 03/02/2015 - 10:43
Remote code execution vulnerabilities in Seagate Business NAS firmware were disclosed after a 100-plus day deadline passed without a fix from the vendor.

Uber Announces Breach of ‘Partner’ Information

Mon, 03/02/2015 - 10:32
Uber announced that attackers had compromised databases containing current and former driver partner names and license numbers.

Pharming Attack Targets Home Router DNS Settings

Fri, 02/27/2015 - 15:07
A pharming attack has been detected targeting home routers distributed from Brazil's largest telco, a rare instance of a web-based attack changing DNS settings in order to redirect traffic.

Threatpost News Wrap, February 27, 2015

Fri, 02/27/2015 - 12:30
Mike Mimoso and Dennis Fisher discuss the news of the last week, including the Superfish fiasco, the Gemalto SIM hack controversy and the continuing NSA drama.

Video: Vitaly Kamluk on The Equation Group APT

Fri, 02/27/2015 - 12:17
Kaspersky Lab researcher Vitaly Kamluk discusses the Equation Group, claiming it is the most sophisticated advanced persistent threat group in the world.

Twitter Changes Abuse Reporting Process to Address Doxing

Fri, 02/27/2015 - 12:11
Twitter has revised and simplified its rules and process for reporting abusive behavior on the service, and users now have the ability to report people who are posting their personal information. The change essentially gives Twitter users a method to combat doxing, which is the process of dumping a victim’s personal information online. This often […]

Komodia Certificate Manipulation Likely Led To Man-In-The-Middle Attacks

Thu, 02/26/2015 - 17:02
The EFF's Decentralized SSL Observatory turned up 1,600 certificates that should have been rejected but instead passed browser checks because they were manipulated by Komodia's SSL Digester interception module.