December 7, 2017 Security Vulnerabilities in RFC-1342 Enable Spoofing and Code Injection Attacks 2 min read - Security vulnerabilities stemming from improper handling of non-ASCII characters in email headers could enable fraudsters to launch spoofing attacks.
November 30, 2017 Older Office Cybersecurity Vulnerability Exploited by Cobalt Attackers 2 min read - Fraudsters have used the MS Office Equation Editor cybersecurity vulnerability to craft an attack on financial institutions and users.
November 25, 2017 Managing Security Risk in the Face of Intel ME Vulnerabilities 5 min read - On November 22, Intel Corporation confirmed security vulnerabilities relating to Intel Management Engine (ME), Intel Server Platform Service (SPS),...
November 16, 2017 Security Patches Help IT Managers Address Microsoft Vulnerability 2 min read - Microsoft released security patches to deal with a 17-year-old flaw that could be exploited to remotely initiate malicious code on all Windows versions.
Network November 9, 2017 Don’t Worry About the KRACK Vulnerability — Just Create a Team of Superheroes! 3 min read - There is no silver bullet to thwart the KRACK vulnerability, but a security intelligence platform can help analysts become security superheroes.
November 7, 2017 Anonymity Gone Awry: New TorMoil Vulnerability Leaks User IPs 2 min read - A new vulnerability called TorMoil exploits a browser flaw to bypass security relays and expose real IP addresses belonging to Tor users.
November 2, 2017 WordPress Issues Security Patch to Mitigate SQL Injection 2 min read - With its latest update, WordPress patched a vulnerability that could enable malicious plugin and theme developers to execute SQL injection attacks.
October 31, 2017 Windows Vulnerability Puts NTLM Password Hashes at Risk 2 min read - A Colombian security researcher discovered a flaw that could enable attackers to steal Windows NTLM password hashes without any user interaction.
October 31, 2017 Catch-All Google Chrome Extension Conducts Wide-Ranging Data Theft 2 min read - A malicious Google Chrome extension dubbed Catch-All is using a simple phishing scheme to commit data theft against users in Brazil.
October 20, 2017 Security Vulnerability Puts Linux Kernel at Risk 2 min read - A security vulnerability in the Linux kernel could allow external attackers to escalate privileges and execute malicious code.