A concerted, targeted phishing campaign took aim at 600 different staffers and officials, using Norway as a lure. Advertise on IT Security News. Read the complete article: U.N. Weathers Storm of Emotet-TrickBot Malware
CVE-2020-0601 Followup, (Wed, Jan 15th)
Among the patches Microsoft released yesterday, the vulnerability in the CryptoAPI got by far the most attention. Here are some answers to questions we have received about this vulnerability. Many of these questions also came from our webcast audience (for…
Russian Campaign Against Burisma Highlights Risk to Companies With Political Ties
Russia: A recent investigation revealed that members of Russian intelligence appear to have heavily targeted the Ukrainian energy company Burisma. It appears that employees of Burisma were targeted with a “sophisticated network of fake websites.” The websites were all designed…
VMware addresses flaws in VMware Tools and Workspace ONE SDK
VMware has released security updates to address a local privilege escalation vulnerability in VMware Tools version 10 for Windows. VMware has released VMware Tools 11.0.0 that addresses a local privilege escalation issue in Tools 10.x.y tracked as CVE-2020-3941. The issue,…
Remote Desktop Vulnerable to Remote Code Execution
Microsoft had a particularly important Patch Tuesday this week. Not only were flaws found in the CryptoAPI library, but arguably more severe flaws were found with the Remote Desktop Client and Gateway that allow for unauthenticated remote code execution. CVE-2020-0609…
Texas School District Phished for $2.3 Million
The Manor Independent School District in Texas revealed that an investigation has begun into a series of phishing emails sent to multiple employees that eventually resulted in a loss of $2.3 million USD. While multiple employees received emails requesting money…
Public Bug Bounty Program Launched for Kubernetes
The Cloud Native Computing Foundation (CNCF) this week announced the launch of a public bug bounty program for Kubernetes, with rewards of up to $10,000 per vulnerability. read more Advertise on IT Security News. Read the complete article: Public…
Equifax Settles Class-Action Breach Lawsuit for $380.5M
Class members have until Jan. 22, next week, to claim benefits. Advertise on IT Security News. Read the complete article: Equifax Settles Class-Action Breach Lawsuit for $380.5M
Serious Facebook Glitch Temporarily Exposed Page Admin Accounts
Once again, Facebook has (unintentionally) breached users’ privacy. Facebook developed a glitch that exposed page admin accounts to the public. Serious Facebook Glitch Temporarily Exposed Page Admin Accounts on Latest Hacking News. Advertise on IT Security News. Read the…
Announcing MSRC 2019 Q4 Security Researcher Leaderboard
Following the first Security Researcher Quarterly Leaderboard we published in October 2019, we are excited to announce the MSRC Q4 2019 Security Researcher Leaderboard, which shows the top contributing researchers for the last quarter. In each quarterly leaderboard, we recognize…
Microsoft’s Chromium Edge Browser for Mac Officially Launches
Microsoft today announced the first stable launch of its Edge browser built on the Google Chromium open source project. Microsoft Edge can be downloaded on both Windows machines and Macs. A beta version of the Microsoft Edge browser has been…
Balancing Power and Capacity in NetApp Data Centers with AFF, FlexPod and More
One of the greatest challenges in a data center is balancing the two biggest expenses: power and capacity. Historically, as the two costs increased together, more racks of hardware and more power would be needed. Today, the relationship has changed…