Duo's Security Blog

OCTOBER 25, 2023

Outdated software in particular can be exploited due to vulnerabilities and bugs in the code. If the vulnerabilities go unpatched, the device can be compromised, opening the door for an attacker to enter and inject malware. For example, in 2022 SecurityWeek reported on 456 vulnerabilities in Google Chrome including nine zero-days.

Software 109

Software Mobile Malware Risk 109

Security Boulevard

FEBRUARY 1, 2021

A roundup of UK focused Cyber and Information Security News, Blog Posts, Reports and general Threat Intelligence from the previous calendar month, January 2021. Throughout January further details about the scale and sophistication of SolarWinds suspected nation-state hack came to light. Cyber Security Careers Advice.

Artificial Intelligence 58

Artificial Intelligence Ransomware Education Cybersecurity 58

Security Affairs

OCTOBER 5, 2020

In 2015, the hacker who breached the systems of the Italian surveillance firm Hacking Team leaked a 400GB package containing hacking tools and exploits codes. RCS has a modular structure that allows it to compromise several targets by loading the necessary zero-day exploits. ” concludes the report.

Firmware 127

Firmware Spyware Surveillance Hacking 127

Spinone

OCTOBER 4, 2019

Ransom is usually paid in Bitcoin to keep hackers anonymous. Unless you pay a ransom, hackers will not give you the key to decrypt your information. Even hardware like flash drives or RW disks may be the source of infection. The point is, ransomware authors are constantly looking for new ways to spread their creations.

Ransomware 53

Ransomware Backups Encryption Government 53

McAfee

AUGUST 24, 2021

Though this partnership, our research led us to discover five previously unreported vulnerabilities in the medical system which include: CVE-2021-33886 – Use of Externally-Controlled Format String (CVSS 7.7). Per McAfee’s vulnerability disclosure policy, we reported our initial findings to B. Table of Contents. Background.

Computers and Electronics 145

Computers and Electronics Authentication Software Risk 145

Spinone

DECEMBER 16, 2019

This type may target only specific files, without blocking access to your system. Also, this ransomware served as a source for Bad Rabbit, a modified version of Petya, that disguised itself as an update for Adobe Flash Player. The sum paid to hackers exceeded $1.1 Who Does Ransomware Target? Even governments are targeted.

Ransomware 52

Ransomware Cybersecurity Backups Social Engineering 52

Scary Beasts Security

MAY 5, 2017

Overview This post explores an old but wonderful vulnerability that enables us to really showcase the (oft underestimated) power of the use-after-free vulnerability class. It’s hard to imagine a better real vulnerability exists for the study of this area. LTS, and find the same vulnerability present.

Hacking 126

Hacking Mobile Accountability 126