AirTags Are Used for Stalking Far More than Previously Reported

Ever since Apple introduced AirTags, security people have warned that they could be used for stalking. But while there have been a bunch of anecdotal stories, this is the first vaguely scientific survey: Motherboard requested records mentioning AirTags in a recent eight month period from dozens o...

CVE-2021-27574

An issue was discovered in Emote Remote Mouse through 4.0.0.0. It uses cleartext HTTP to check, and request, updates. Thus, attackers can machine-in-the-middle a victim to download a malicious binary in place of the real update, with no SSL errors or warnings...

FBI shuts down malware on hundreds of Exchange servers, opens Pandora’s box

A rather remarkable story has emerged, setting the scene for lively debates about permissible system access. A press release from the US Department of Justice Judge has revealed that the FBI were granted permission to perform some tech support backdoor removal. Bizarrely, they did this without...

Inspecting TLS Web Traffic - Part 2

In the first blog post I covered why HTTPS web traffic has grown to unprecedented levels, provided a TLS primer and looked at the basic concept of intercepting and inspecting HTTPS web traffic with Man-In-The-Middle techniques MITM. In the second part, I will dive a bit deeper into how the TLS MI...

CVE-2017-7765

The "Mark of the Web" was not correctly saved on Windows when files with very long names were downloaded from the Internet. Without the Mark of the Web data, the security warning that Windows displays before running executables downloaded from the Internet is not shown. Note: This attack only...

The Habituation of Security Warnings

We all know that it happens: when we see a security warning too often -- and without effect -- we start tuning it out. A new paper uses fMRI, eye tracking, and field studies to prove it. EDITED TO ADD 6/6: This blog post summarizes the findings...

75% of the 'Left to Get Hacked' Redis Servers Found Infected

Despite the continual emergence of new cyber attacks because of misconfigured servers and applications, people continue to ignore security warnings. A massive malware campaign designed to target open Redis servers, about which researchers warned almost two months ago, has now grown and already...

Taking HTTPS Denial to an Absurd Level

Sometimes fighting good security is harder than embracing it. That appears to be the case with at least one company that went to great lengths to avoid insecure HTTPS browser security warnings from appearing on the thousands of sites it managed. The company in question is ShopCity.com, a...

Legacy Office Feature Used In Novel Document Attacks

Recent document-based attacks have leveraged malicious macros that if enabled install malware. But, researchers at SensePost have developed a proof-of-concept attack that does not require macros and instead uses an old Microsoft Office feature called Dynamic Data Exchange to execute code on...

Mozilla Firefox and Firefox ESR for Windows Security Bypass Vulnerability

Mozilla Firefox for Windows is an open source web browser for the Windows platform from the Mozilla Foundation in the U.S. Firefox ESR for Windows is an extended support version of Firefox for the Windows platform. A security bypass vulnerability exists in Windows-based versions of Mozilla Firefo...

[SECURITY] [DLA 487-1] debian-security-support - Long term security support update

Package : debian-security-support Version : 2016.05.24deb7u1 The Debian Long Term Support LTS Team is unable to continue supporting different packages in the extended life cycle of Wheezy LTS. The debian-security-support package provides the check-support-status tool that helps to warn the...

Brain Science and Browser Warnings

Browser and other types of security warnings generally don’t stop computer users in their tracks, especially when they’re in the middle of some task. Clicking through them seems to be the accepted response, rather than to halt and evaluate the situation. Researchers at Brigham Young University...

Google Adds Warnings About Deceptive Software to Safe Browsing Service

The Google Safe Browsing service has become an integral part of most of the major browsers, integrating malware alerts, warnings about malicious Web sites and suspicious content. The company has been expanding the capabilities of the service steadily over the last few years, and now Google is...

Apple iOS 4.2.1 - facetime-audio: Security Bypass

Apple iOS 4.2.1 - facetime-audio: Security Bypass source: https://www.securityfocus.com/bid/66108/info Apple iOS is affected by a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security warnings. This may aid in further attacks. These...

Apple iOS 4.2.1 - 'facetime-audio://' Security Bypass

source: https://www.securityfocus.com/bid/66108/info Apple iOS is affected by a security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security warnings. This may aid in further attacks. These issues affect Apple iOS versions prior to 7.1...

Apple Safari For Windows - PhishingAlert Security Bypass

source: https://www.securityfocus.com/bid/64543/info Apple Safari for Windows is affected by a security-bypass weakness. Successfully exploiting this issue may allow an attacker to bypass certain security warnings. This may aid in conducting phishing attacks. http://example.com:/@/xsser.me/...

Oracle Delays Java 8 Features for Security Overhaul

It’s not quite the development freeze Microsoft underwent during the Trustworthy Computing push, but it’s a start for Oracle, which will delay the release of Java 8 until Q1 of next year, largely because the platform and browser plug-in is such a security disaster. This year has done nothing but...

Java MBeanInstantiator findClass and Introspector Sandbox Escape

Added: 03/04/2013 CVE: CVE-2013-0431 BID: 57726 OSVDB: 89613 Background Java is a programming language that compiles programs to bytecode, which is then executed inside a Java Virtual Machine. This is optimal for applications that must run on various hardware platforms, such as web applets. Probl...

RHEL 5 / 6 : thunderbird (RHSA-2012:1089)

An updated thunderbird package that fixes multiple security issues is now available for Red Hat Enterprise Linux 5 and 6. The Red Hat Security Response Team has rated this update as having critical security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity...

Anonabees 'SpexSecurity' Appear, Leak Data On Thousands, Disappear

A new Anonymous-styled hacktivist group, SpexSecurity, has surfaced and then vanished, but not before allegedly siphoning the personal information of over 100,000 residents of a Tennessee town, including individuals’ e-mail passwords, social security numbers and birth dates. Details of the hack...