Information Security newsfeed from around the world in English and French. Find it all in one place… here.
A newly devised variant of the NAT Slipstreaming attack can be leveraged to compromise any device on the local network, according to researchers at enterprise IoT security firm Armis. read more Source: Security Week
Continue ReadingHackers masquerade as security researchers to befriend analysts and eventually infect fully patched systems at multiple firms with a malicious backdoor. Source: Threatpost.com
Continue ReadingA security flaw in TikTok could have allowed attackers to query query the platform’s database – potentially opening up for privacy violations. Source: Threatpost.com
Continue ReadingGoogle late Monday raised the alarm about a “government-backed entity based in North Korea” targeting — and hacking into — computer systems belonging to security researchers. read more Source: Security Week
Continue ReadingAn ongoing phishing campaign delivering fake Office 365 password expiration reports has managed to compromise tens of C-Suite email accounts to date, according to a warning from anti-malware vendor Trend Micro. read more Source: Security Week
Continue ReadingThe high-severity security vulnerability (CVE-2021-1257) allows cross-site request forgery (CSRF) attacks. Source: Threatpost.com
Continue ReadingThe security vendor is investigating potential zero-day vulnerabilities in its Secure Mobile Access (SMA) 100 series. Source: Threatpost.com
Continue ReadingOne of the vulnerabilities that Microsoft addressed on January 2021 Patch Tuesday could allow an attacker to relay NTLM authentication sessions and then execute code remotely, using a printer spooler MSRPC interface. read more Source: Security Week
Continue ReadingIndustrial organizations have been informed about the existence of several potentially serious vulnerabilities affecting an OPC UA product made by Honeywell subsidiary Matrikon. read more Source: Security Week
Continue ReadingThe “KindleDrip” attack would have allowed attackers to siphon money from unsuspecting victims. Source: Threatpost.com
Continue Reading