Sunday , 24 September 2017
Home » Tag Archives: security (page 4)

Tag Archives: security

Premium LinkedIn accounts hijacked by Phishers

LinkedIn has bit the target of a new phishing campaign which has spread through users via direct messages and the LinkedIn InMail feature. They are sent from legitimate LinkedIn Premium accounts that have been hijacked by the phishers, thus increasing the likelihood that recipients will trust the message and click on the link. View Full Story ORIGINAL SOURCE: Helpnetsecurity Read More »

Backdoor located within WordPress Plugin

A WordPress plugin named Display Widgets has been used to install a backdoor on WordPress sites and has been installed more than 200,000 times. The backdoor  code was found between Display Widgets version 2.6.1 (released June 30) and version 2.6.3 (released September 2). The team has intervened and removed the plugin from the official WordPress Plugins repository. Despite the ... Read More »

US government bans agencies from using Kaspersky Lab security software

Federal agencies have been banned from using Kaspersky Lab security software, a Russian company, by the US government over concerns it may be tied to state-sponsored espionage. Acting Homeland Security Secretary Elaine Duke has issued a directive given at least six federal agencies a timeline to get rid of the software from government networks. The move comes amid parallel investigations by Congress, and the ... Read More »

Apps carrying the BankingBot malware find their way onto Google Play Store

It has been discovered that more apps on Google’s Play Store are carrying the malicious BankBot Android banking malware. The malware, which surfaced back in January, targets legitimate banking apps and uses fake overlay screens to trick unsuspecting users into providing their credentials. The malware is even able to hijack and intercept SMS messages, allowing it to bypass the SMS-based ... Read More »

Equifax data breach caused due to patch update being missed

A flaw that should have been patched weeks before, is what has been revealed as the root cause for the Equifax data breach. The company has updated its site with a new “A Progress Update for Consumers”. As the Apache Foundation pointed out earlier this week, it reported CVE-2017-5638 in March 2017. View Full Story ORIGINAL SOURCE: The Register Read More »

UK companies are still struggling to comply with latest data protection regulations

Nine in ten IT professionals in the UK are concerned with the security of the public cloud, and almost 20% do not deploy security for sensitive data stored outside the company’s infrastructure, according to a recent Bitdefender survey. Half of those surveyed admit cloud migration has significantly expanded the size of the border they have to defend, while only one ... Read More »

Imperva Incapsula Protects NTT TechnoCross Corporation and its Customers from Website Attacks

Imperva, Inc., committed to protecting business-critical data and applications in the cloud and on-premises, today announced that NTT TechnoCross Corporation, an IT services company, is using the Imperva Incapsula service to protect its website from cyberattacks. NTT TechnoCross deployed the Incapsula service across its customer-facing websites to ensure protection from business crippling DDoS attacks and malicious web application attacks using the service’s DDoS ... Read More »

SAS enables British Army to retain top talent and transform decision-making

The British Army has been able to make smarter use of data to transform how effective it is at managing its manpower and, crucially, prevent departures of key personnel. Working with SAS, the leader in analytics, the Army can now support the subjective decision-making of its leaders with a wider range of quality data, leading to more effective decisions and ... Read More »

Security Bugs in Flash Player, ColdFusion, RoboHelp are now patched by Adobe

Adobe has announced its monthly security updates which include patched vulnerabilities in three products — Adobe Flash Player, Adobe ColdFusion, and Adobe RoboHelp, the company’s lesser known help authoring tool (HAT), used for the creation of online or offline documentation and help files. In total, Adobe patched eight security bugs — two in Flash Player, four in ColdFusion, and two ... Read More »

POS malware found on over 4000 ElasticSearch Servers

It has been reported that over 4,000 ElasticSearch servers were found hosting PoS (Point of Sale) malware strains. The infections detected data as far back as 2016, with the latest infections observed as recently as August 2017. Nearly 99% of the infected servers are hosted in Amazon Web Services (AWS), according to security experts. The two malware strains – AlinaPOS and JackPOS – are very popular ... Read More »