Security News

• No recent updates.

• How Web Apps Can Turn Browser Extensions Into Backdoors
  Researchers show how rogue web applications can be used to attack vulnerable browser extensions in a hack that gives adversaries access to private user data.
  
• Google Fined $57M in Largest GDPR Slap Yet
  The French Data Protection Authority (DPA) found a lack of transparency when it comes to how Google harvests and uses personal data for ad-targeting purposes.
  
• Adobe Issues Unscheduled Updates for Experience Manager Platform
  The patches are part of Adobe's second unscheduled update this month.
  
• Google Play Removes Malicious Malware-Ridden Apps
  Two apps on Google Play were infecting devices with the Anubis mobile banking trojan.
  
• Fallout EK Retools for a Fresh New 2019 Look
  The Fallout EK has added the latest Flash vulnerability to its bad of tricks, among other tune-ups.
  
• Threatpost News Wrap Podcast For Jan. 18
  Threatpost editors break down the top headlines from the week ended Jan. 18.
  
• Critical, Unpatched Cisco Flaw Leaves Small Business Networks Wide Open
  A default configuration allows full admin access to unauthenticated attackers.
  
• Twitter Android Glitch Exposed Private Tweets for Years
  Twitter has fixed the issue, which has been ongoing since 2014.
  
• Microsoft Launches Azure DevOps Bug Bounty Program
  Microsoft is offering rewards of up to $20,000 for flaws in its Azure DevOps online services and the latest release of the Azure DevOps server.
  
• Apple CEO Demands Federal Data Privacy Legislation
  Apple CEO Tim Cook has called on the government to double down on data privacy regulation in 2019.