Recent Comments

    Blogroll

    Search

    Archive for Security Breeches

    Security Mailer Volume 21 Number 29

    July 25th, 2021 by

    Security Mailer Volume 21 Number 29

    • Apple security updates released
    • Cisco security advisories
    • Linux updates and patches;
    • Windows
      • update exposed system32\config files
      • Security Updates revised
      • Security Updates released
      • Edge updates released
    • General Security reviews last week,
    • Hotfix for D-Link routers
    • New Windows malware distributed via ads in search results

    Posted in Newsletters, Patches, Security Breeches, Updates | No Comments »

    New Windows 10 vulnerability allows anyone to get admin privileges

    July 21st, 2021 by

    New Windows 10 vulnerability allows anyone to get admin privileges

    “Windows 10 and Windows 11 are vulnerable to a local elevation of privilege vulnerability after discovering that users with low privileges can access sensitive Registry database files.

    The Windows Registry acts as the configuration repository for the Windows operating system and contains hashed passwords, user customizations, configuration options for applications, system decryption keys, and more.

    The database files associated with the Windows Registry are stored under the C:\Windows\system32\config folder and are broken up into different files such as SYSTEM, SECURITY, SAM, DEFAULT, and SOFTWARE.”

    Posted in Identity Theft, Security Breeches | No Comments »

    Using MyBook? Disconnect from the Internet and read here!

    June 26th, 2021 by

    MyBook Users Urged to Unplug Devices from Internet

    “Hard drive giant Western Digital is urging users of its MyBook Live brand of network storage drives to disconnect them from the Internet, warning that malicious hackers are remotely wiping the drives using a critical flaw that can be triggered by anyone who knows the Internet address of an affected device.”

    Posted in Malware, Security Breeches | No Comments »

    Security Mailer (2021 #16)

    April 25th, 2021 by

    Security Mailer Volume 21 Number 16

    • Mozilla updates
      • Firefox
      • Firefox ESR
      • Thunderbird,
    • Google
      • Releases Chrome 90
      • Announces new release cycle
    • Cisco Security Advisories
    • Linux
      • Mint has new update notifications
      • Synopsis
      • Updates and patches
    • Microsoft Security Update for EDGE
    • General Security reviews last week
    • Wireshark updates

    Posted in Newsletters, Patches, Security Breeches, Updates | No Comments »

    Ever use ParkMobile app? You may have been compromised!

    April 13th, 2021 by

    ParkMobile Breach Exposes License Plate Data, Mobile Numbers of 21M Users

    “Someone is selling account information for 21 million customers of ParkMobile, a mobile parking app that’s popular in North America. The stolen data includes customer email addresses, dates of birth, phone numbers, license plate numbers, hashed passwords and mailing addresses.”

    Posted in Malware, Newsletters, Security Breeches | No Comments »

    Security Mailer (2021 #13)

    April 5th, 2021 by

    Security mailer Volume 21 Number 13

    • Cisco security advisories
    • Open Source
      • Apache
      • Python
      • Samba
    • Linux updates & patches
    • Microsoft Security Updates
    • General Security reviews last week
    • Exchange Server requirement from CISA to run Safety Scanner

    Posted in Newsletters, Patches, Security Breeches, Updates | No Comments »

    Your Exchange Server Hacked? Not by Brian Krebs!!

    March 29th, 2021 by

    No, I Did Not Hack Your MS Exchange Server

    “New data suggests someone has compromised more than 21,000 Microsoft Exchange Server email systems worldwide and infected them with malware that invokes both KrebsOnSecurity and Yours Truly by name.”

    Posted in Identity Theft, Malware, Security Breeches | No Comments »

    New Chrome Zero Day Flaw

    March 16th, 2021 by

    Google Warns Mac, Windows Users of Chrome Zero-Day Flaw

    “The use-after-free vulnerability is the third Google Chrome zero-day flaw to be disclosed in three months.

    Google is hurrying out a fix for a vulnerability in its Chrome browser that’s under active attack – its third zero-day flaw so far this year. If exploited, the flaw could allow remote code-execution and denial-of-service attacks on affected systems.

    The vulnerability exists in Blink, the browser engine for Chrome developed as part of the Chromium project. Browser engines convert HTML documents and other web page resources into the visual representations viewable to end users.”

    Posted in Identity Theft, Malware, Patches, Security Breeches | No Comments »

    Multiple Security Updates Released for Exchange Server

    March 6th, 2021 by

    Multiple Security Updates Released for Exchange Server – updated March 5, 2021
    (Updated March 5, 2021)

    “Today we are releasing several security updates for Microsoft Exchange Server to address vulnerabilities that have been used in limited targeted attacks. Due to the critical nature of these vulnerabilities, we recommend that customers apply the updates to affected systems immediately to protect against these exploits and to prevent future abuse across the ecosystem. “

    Posted in Identity Theft, Malware, Security Breeches | No Comments »

    3.2 billion unique pairs of cleartext emails and passwords have just been leaked

    February 8th, 2021 by

    Largest compilation of emails and passwords leaked for free on public forum

    “More than 3.2 billion unique pairs of cleartext emails and passwords have just been leaked on a popular hacking forum, aggregating past leaks from Netflix, LinkedIn, Exploit.in, Bitcoin and more. This leak is comparable to the Breach Compilation of 2017, in which 1.4 billion credentials were leaked.

    However, the current breach, known as “Compilation of Many Breaches” (COMB), contains more than double the unique email and password pairs. The data is currently archived and put in an encrypted, password-protected container.”

    Posted in Identity Theft, Security Breeches | No Comments »

    « Previous Entries