It can open web pages that have WAP billing and click buttons that initiate payments, all while the user suspects nothing.
Android Toast Flaw Can Burn Users with Malware, DoS and Info-Theft
The flaw can be used to more easily enable an “overlay attack.”
MongoDB Ransom Victims Had No Account Passwords
Database provider tries to improve customers’ security awareness
Toolsmith Tidbit: Windows Auditing with WINspect
WINSpect recently hit the toolsmith radar screen via Twitter, and the author, Amine Mehdaoui, just posted an update a couple of days ago, so no time like the present to give you a walk-through. WINSpect is a Powershell-based Windows Security Audit…
Equifax Breach, Affecting 45% of US Population, Raises Big Questions
Questions abound as to the company’s governance and stewardship of citizen data.
Bug Exposed .UK Domains to Hijacking Risk for Months
Registrar Enom has now fixed the issue
Equifax Reports 143 Million Records Breached
US-based credit monitoring service Equifax has reported a data breach of 143 million records.
Mexican VAT Refund Giant Exposes Half-Million Passports, Credit Cards Online
MoneyBack left a misconfigured database open, with passport info, credit card numbers, travel tickets and other credentials.
SMBs Largely Unprepared for IoT, Ransomware Attacks
Nearly half of them would pay a ransom on connected things to reclaim their data.