Security News

• No recent updates.

• Iran-Linked APT34 Invites Victims to LinkedIn for Fresh Malware Infections
  The group was posing as a researcher from Cambridge, and was found to have added three new malware families to its spy arsenal.
  
• Adult Sites Lack Privacy, Open the Door for Harassment and Tracking
  Third-party tracking is rampant on sites like Pornhub, with users' sexual preferences on full view.
  
• Bug in NVIDIA’s Tegra Chipset Opens Door to Malicious Code Execution
  Researcher creates 'Selfblow' proof-of-concept attack for exploiting a vulnerability that exists in "every single Tegra device released so far".
  
• Security Watch: Elon Musk’s NeuraLink Links Brains to iPhones via Bluetooth
  Directly linking thoughts to a phone via Bluetooth -- what could go wrong?
  
• Mirai Botnet Sees Big 2019 Growth, Shifts Focus to Enterprises
  Mirai activity has nearly doubled between the first quarter of 2018 and the first quarter of 2019.
  
• Slack Initiates Mass Password Reset
  More victims of a 2015 credential-harvesting incident have come to light.
  
• Google Triples Some Bug Bounty Payouts
  Google is announcing much higher bug bounty payouts for Chrome, Chrome OS and Google Play.
  
• Ke3chang APT Linked to Previously Undocumented Backdoor
  The cyberspy group's activities are broader than originally thought.
  
• Wormable BlueKeep Bug Still Threatens Legions of Windows Systems
  Two months after the alarm sounded warning of a WannaCry-level event, progress in patching exposed Windows systems varies by country and industry.
  
• Firmware Bugs Plague Server Supply Chain, 7 Vendors Impacted
  Lenovo, Acer and five additional server manufacturers are hit with supply-chain bugs buried in motherboard firmware.