Senate Bill Would Ban Social Networks’ Social Engineering Tricks

Enterprise VulnerabilitiesFrom DHS/US-CERT’s National Vulnerability Database CVE-2017-14199PUBLISHED: 2019-04-12 A buffer overflow has been found in the Zephyr Project’s getaddrinfo() implementation in 1.9.0 and 1.10.0. CVE-2018-6239PUBLISHED: 2019-04-12 NVIDIA Jetson TX2 contains a vulnerability by means of speculative execution where local and unprivileged code may access the contents of cached information in an unauthorized manner, which may lead to information disclosure. The updates apply to all versions prior to and including R28.3….

April 10, 2019
Read More >>

25% of Phishing Emails Sneak into Office 365: Report

Researchers analyzed 55.5 million emails and found one out of every 99 messages contains a phishing attack. One in every 99 emails is a phishing attack, and a new study shows 25% of those phishing attacks bypass default security measures built into Office 365, researchers reported today. The data comes from Avanan’s Global Phish Report, which analyzed 55.5 million emails sent to Microsoft Office 365 and Google G Suite accounts….

April 10, 2019
Read More >>

New Android Malware Adds Persistence, Targets Australian Banking Customers

Malware campaign, which finds and exfiltrates a user’s contact list and banking credentials, could potentially grow to global proportions. A new malware campaign that targets Android-using Australian banking customers has been discovered and, while the approach is not particularly sophisticated, elements of the malware have put security professionals around the world on guard. The campaign, built around Gustuff malware, was discovered by Cisco Talos researchers and disclosed in a blog…

April 10, 2019
Read More >>