SecureBlitz

APRIL 11, 2024

In a move that could significantly alter the landscape, Kape Technologies, the owner of the popular VPN service CyberGhost, has announced its intention to acquire Private […] The post Evolving VPN giant: CyberGhost Acquired PIA [2019] appeared first on SecureBlitz Cybersecurity.

VPN 65

VPN Technology Cybersecurity Internet 65

Krebs on Security

MARCH 12, 2019

One interesting patch from Microsoft this week comes in response to a zero-day vulnerability ( CVE-2019-0797 ) reported by researchers at Kaspersky Lab, who discovered the bug could be (and is being) exploited to install malicious software.

Internet 170

Internet Internet Backups Malware 170

Krebs on Security

AUGUST 13, 2019

“According to Microsoft, at least two of these vulnerabilities ( CVE-2019-1181 and CVE-2019-1182 ) can be considered ‘wormable’ and [can be equated] to BlueKeep,” referring to a dangerous bug patched earlier this year that Microsoft warned could be used to spread another WannaCry-like ransomware outbreak.

Backups 184

Backups Software Authentication Internet 184

Krebs on Security

JANUARY 9, 2019

All things considered, this first Patch Tuesday of 2019 is fairly mild, bereft as it is of any new Adobe Flash updates or zero-day exploits. Among the more eyebrow-raising flaws fixed this week is CVE-2019-0547 , a weakness in the Windows component responsible for assigning Internet addresses to host computers (a.k.a.

Internet 161

Internet Internet Engineering Software 161

Bleeping Computer

MAY 23, 2023

A relatively unknown advanced persistent threat (APT) group named 'GoldenJackal' has been targeting government and diplomatic entities in Asia since 2019 for espionage. [.]

Government 91

Government 91

Krebs on Security

SEPTEMBER 10, 2019

Two of the bugs quashed in this month’s patch batch ( CVE-2019-1214 and CVE-2019-1215 ) involve vulnerabilities in all supported versions of Windows that have already been exploited in the wild.

Software 146

Software Backups Malware Hacking 146

Security Affairs

JANUARY 18, 2020

According to the IC3 Annual Report released in April 2019 financial losses reached $2.7 The total cost of cybercrime for each company in 2019 reached US$13M. According to the 2019 Data Breach Investigations Report , 43% of all nefarious online activities impacted small businesses. Financial losses reached $2.7 billion in 2018.

Cybercrime 125

Cybercrime Small Business Data breaches Mobile 125

CyberSecurity Insiders

AUGUST 4, 2022

Data Protection Bill, that was presented in the Indian Parliament in 2019, has now been officially withdrawn by the government led by Prime Minister Shri Narender Modi. If we verify the facts, the Data Protection Bill of 2019 was giving more rights to the government to access sensitive information generated by the public.

Government 97

Government Internet Internet Cybersecurity 97

Bleeping Computer

JANUARY 18, 2022

Microsoft has released an emergency out-of-band (OOB) update for Windows Server 2019 that fixes numerous critical bugs introduced during the January 2022 Patch Tuesday. [.].

116

116

Security Affairs

FEBRUARY 18, 2020

Having said that I found Income Tax Department India and MIT Sloan was also vulnerable to CVE-2019-0604 a remote code execution vulnerability which exists in Microsoft SharePoint. Aside, MIT Sloan School of Management was also found to be vulnerable with CVE-2019-0604. SecurityAffairs – hacking, CVE-2019-0604).

DNS 118

DNS Advertising Government Hacking 118

Security Boulevard

FEBRUARY 8, 2023

OWASP revealed that Broken Object Level Authorization is among the top 10 most critical API security risks list The post OWASP API1: 2019 – Broken Object Level Authorization appeared first on Indusface. The post OWASP API1: 2019 – Broken Object Level Authorization appeared first on Security Boulevard.

Risk 52

Risk 52

Security Boulevard

MAY 29, 2023

The post API7:2019 Security Misconfiguration: The What, Sample Exploits, and Prevention Methods appeared first on Indusface. The post API7:2019 Security Misconfiguration: The What, Sample Exploits, and Prevention Methods appeared first on Security Boulevard.

Risk 52

Risk 52

Dark Reading

DECEMBER 9, 2020

After lagging 2019 numbers in the first quarter, vulnerabilities have surged in the rest of 2020, leading researchers to predict that final numbers for this year will meet or exceed those of last year, report says.

89

89

Security Affairs

FEBRUARY 12, 2020

The FBI’s Internal Crime Complaint Center (IC3) released the FBI 2019 Internet Crime Report , a document that outlines cybercrime trends over the past year. Here we are to analyze the annual FBI 2019 Internet Crime Complaint Center (IC3) , one of the most interesting documents on the crime trends observed in the last 12 months.

Internet 112

Internet Internet Scams Cybercrime 112

The Hacker News

JUNE 21, 2022

for her role in the theft of personal data of no fewer than 100 million people in the 2019 Capital One breach. A 36-year-old former Amazon employee was convicted of wire fraud and computer intrusions in the U.S.

Data breaches 98

Data breaches 98

Security Affairs

MARCH 7, 2020

A new vulnerability, tracked as CVE-2019-0090 , affects all Intel chips that could allow attackers to bypass every hardware-enabled security technology. Security experts from Positive Technologies warn of a new vulnerability, tracked as CVE-2019-0090, that affects all Intel processors that were released in the past 5 years.

Firmware 130

Firmware Technology Advertising Authentication 130

Bleeping Computer

APRIL 2, 2021

US bank Capital One notified additional customers that their Social Security numbers were exposed in a data breach announced in July 2019. [.].

Data breaches 123

Data breaches Banking 123

Security Affairs

MARCH 23, 2019

Pwn2Own 2019 Day 3 – Experts earned $35,000 and a Tesla Model 3 after hacking the vehicle’s web browser. Pwn2Own 2019 Day 3 – Hackers focused their efforts on car hacking, two teams participated in the competitions but only one of them reached the goal. SecurityAffairs – Pwn2Own 2019, hacking). Pierluigi Paganini.

Hacking 109

Hacking Advertising Internet Internet 109

Trend Micro

NOVEMBER 10, 2022

This blog entry details our investigation of CVE-2019-8561, a vulnerability that exists in the macOS PackageKit framework, a component used to install software installer packages (PKG files).

Software 77

Software 77

SiteLock

AUGUST 27, 2021

We are excited to announce that SiteLock ® INFINITY ™ was recently recognized as a winner of the 2019 Cloud Computing Excellence Product of the Year Award by TMC’s Cloud Computing Magazine. Thank you to TMC’s Cloud Computing Magazine for honoring SiteLock INFINITY with a 2019 Cloud Computing Product of the Year Award!

Surveillance 98

Surveillance Malware Internet Internet 98

Adam Shostack

MARCH 19, 2019

RSA has posted a video of my talk, “Threat Modeling in 2019”

100

100

Heimadal Security

MAY 17, 2021

In 2019, Toyota Motor Company Australia was hit by a cyberattack, leaving employees with no access to their email accounts for days. The post Toyota Australia Rebuilt IT System Following the 2019 Cyberattack appeared first on Heimdal Security Blog. Two years later, the company managed to rebuild its entire […].

Accountability 78

Accountability Cybersecurity 78

Security Affairs

DECEMBER 23, 2019

Critical CVE-2019-19781 flaw in Citrix NetScaler ADC and Citrix NetScaler Gateway could be exploited to access company networks, 80,000 companies at risk worldwide. The CVE-2019-19781 vulnerability was discovered by Mikhail Klyuchnikov from Positive Technologies. SecurityAffairs – Citrix, CVE-2019-19781). Pierluigi Paganini.

Risk 97

Risk Technology Advertising Internet 97

Threatpost

DECEMBER 30, 2019

Cybercrime increasingly went mobile in 2019, with everything from Apple iPhone jailbreaks and rogue Android apps to 5G and mobile-first phishing dominating the news coverage. Here are Threatpost's Top 10 mobile security stories of 2019.

Mobile 63

Mobile Cybercrime Phishing IoT 63

Security Affairs

APRIL 1, 2019

The company also fixed the security flaws disclosed at the Pwn2Own 2019 hacking competition. VMware released updates to address vulnerabilities in vCloud Director, ESXi, Workstation and Fusion products, including ones disclosed at the Pwn2Own 2019. x running on macOS (CVE-2019-5514). Universal Host Controller Interface (UHCI).

Advertising 84

Advertising Hacking 84

Security Affairs

MAY 28, 2020

National Security Agency (NSA) is warning that Russia-linked APT group tracked Sandworm Team has been exploiting a critical vulnerability (CVE-2019-10149) in the Exim mail transfer agent (MTA) software since at least August 2019. The CVE-2019-10149 flaw, aka “The Return of the WIZard,” affects versions 4.87

Software 100

Software System Administration Advertising Technology 100

Tech Republic Security

OCTOBER 15, 2019

The number of attacks on IoT devices in 2019 is nine times greater than the number found in the first half of 2018.

IoT 166

IoT 166

Security Affairs

APRIL 2, 2019

The privilege escalation vulnerability ( CVE-2019-0211 ) affecting the Apache HTTP server could be exploited by users with the right to write and run scripts to gain root on Unix systems. — Mark J Cox (@iamamoose) April 2, 2019. The second one, tracked as CVE-2019-0215 , affects Apache 2.4.37 releases 2.4.17 and 2.4.38.

Advertising 105

Advertising Authentication Hacking Risk 105

Security Affairs

MAY 20, 2019

Experts discovered a privilege escalation vulnerability in the Linux Kernel, tracked as CVE-2019-11815, that affects the implementation of RDS over TCP. The vulnerability tracked as CVE-2019-11815 could lead to privilege escalation, it received a CVSS base score of 8.1. . SecurityAffairs – Linux, CVE-2019-11815).

Advertising 106

Advertising Cybersecurity Information Security Hacking 106

Threatpost

JANUARY 31, 2020

Microsoft OS flaws, out-of-bounds reads, ICS gear and a record number of high-severity bugs marked 2019 for the ZDI program.

IoT 104

IoT Mobile Hacking 104

Security Affairs

FEBRUARY 11, 2020

According to IBM, OT attacks increased by over 2000 percent in 2019, most of them involved the Echobot IoT malware. IBM’s 2020 X-Force Threat Intelligence Index report analyzes the threat landscape in 2019, the experts observed a spike in the number of OT attacks. “ OT attacks hit an all-time high. ” continues the report.

Advertising 94

Advertising Malware IoT Technology 94

Thales Cloud Protection & Licensing

DECEMBER 28, 2018

As we head into 2019, one thing is clear: more convenience is directly proportional to industry-wide risk. Security is a necessity for retailers, especially in 2019 as emerging technologies are breaking into the market and cyberattacks are getting more advanced. But do these connected experiences actually live up to the hype?

Retail 100

Retail Data breaches Digital transformation Risk 100

Security Affairs

APRIL 3, 2021

More clients of Capital One have been impacted in the 2019 data breach, the US bank is notifying them of their SSNs exposure. US bank Capital One notified a number of additional customers that their Social Security numbers were exposed in the data breach that took place in July 2019. District Court in Seattle. Pierluigi Paganini.

Hacking 72

Hacking Data breaches Banking Small Business 72

Security Affairs

MARCH 21, 2019

Pwn2Own 2019 hacking competition is started and participants hacked Apple Safari browser, Oracle VirtualBox and VMware Workstation on the first day. As you know I always cover results obtained by white hat hackers at hacking competitions, for this reason, today I’ll share with you the results of the first day of the Pwn2Own 2019.

Hacking 101

Hacking Advertising 101

Duo's Security Blog

FEBRUARY 1, 2021

We are proud to announce the Duo has achieved ISO 27001:2013, 27017:2015, and 27018:2019 certification! What is ISO 27001:2013, 27017:2015 and 27018:2019? What’s the benefit of ISO 27001:2013, 27017:2015 and 27018:2019 certification to our customers? You can thank ISO for that!

Manufacturing 100

Manufacturing Surveillance CISO Information Security 100

Threatpost

DECEMBER 27, 2019

2019 was a tumultuous year for Facebook as it continued to grapple with privacy fallout after Cambridge Analytica, as well as dealing with a slew of security challenges.

Media 80

Media Data privacy 80

Security Affairs

APRIL 10, 2019

Microsoft has released its April 2019 Patch Tuesday updates that address over 70 vulnerabilities, including two Windows zero-day flaws. Microsoft has released the April 2019 Patch Tuesday updates that address 74 vulnerabilities, including two Windows zero-days under active attack. Pierluigi Paganini.

Advertising 86

Advertising Authentication Accountability Hacking 86