Nasty WinRAR bug is being actively made use of to set up hard-to-detect malware

Nasty WinRAR bug is being actively made use of to set...

Malicious hackers wasted no time exploiting a nasty code-execution vulnerability recently disclosed in WinRAR, a Windows file-compression program with 500 million users worldwide. The in-the-wild attacks install malware that, at the time this post was going live, was undetected by the vast majority of antivirus product. The flaw, disclosed last month by Check Point Research,…
A brand-new rash of extremely concealed card-skimming malware contaminates ecommerce websites

A brand-new rash of extremely concealed card-skimming malware contaminates ecommerce websites

The rash of e-commerce sites infected with card-skimming malware is showing no signs of abating. Researchers on Thursday revealed that seven sites—each with more than 500,000 collective visitors per month—have been compromised with a previously unseen strain of sniffing malware designed to surreptitiously swoop in and steal payment card data as soon as visitors make…
Iran pumps up “huge” offending workout with as numerous as 50 drones

Iran pumps up “huge” offending workout with as numerous as 50...

A display (non-flying) version of an Iranian "Saegheh" drone based on the US RQ-170 Sentinel. Iran TV A more recent version of the Saegheh ("Thunderbolt') carries ground strike missiles based on Iran's domestic TV-guided antitank missile. It has no landing gear and is recovered by parachute; another version has landing skids. Sepahnews Another Iranian knockoff—this…
A world of hurt after GoDaddy, Apple, and Google misissue >> 1 million certificates

A world of hurt after GoDaddy, Apple, and Google misissue >>...

A major operational error by GoDaddy, Apple, and Google has resulted in the issuance of at least 1 million browser-trusted digital certificates that don’t comply with binding industry mandates. The number of non-compliant certificates may be double that number, and other browser-trusted authorities are also likely to be affected. The snafu is the result of…
“Yelp, however for MAGA” reddens over security disclosure, threatens scientist

“Yelp, however for MAGA” reddens over security disclosure, threatens scientist

Enlarge / 63red Safe... wasn't. A new application from the "conservative news" site 63red, called 63Red Safe, is advertised as a sort of "Green Book" for the MAGA set. It lets users rate local businesses "from a conservative perspective," according to the app's Google Play listing, "helping insure[sic] you're safe when you shop and eat!"…
Sprint steps up battle versus AT&T’s “phony 5G” with full-page Sunday NYT advertisement

Sprint steps up battle versus AT&T’s “phony 5G” with full-page Sunday...

Enlarge / Screenshot from an AT&T commercial. Sprint is warning customers not to be fooled by AT&T's "fake 5G" claims. One month after suing AT&T, Sprint took out a full-page ad in the Sunday New York Times to spread the word that AT&T's "5G E" is really just 4G. The ad takes the form of…
A short history of Wi-Fi security procedures from “oh my, that’s bad” to WPA3

A short history of Wi-Fi security procedures from “oh my, that’s...

Enlarge / Netgear's RAX-120 router. Netgear Thanks to upcoming developments in Wi-Fi, all of us connectivity-heads out there can look forward to getting familiar with new 802.11 protocols in the near future. Ars took a deep look at what's on the horizon last fall, but readers seemed to have a clear request in response—the time had come…
An e-mail marketing business left 809 million records exposed online

An e-mail marketing business left 809 million records exposed online

Enlarge / (GERMANY OUT) Leerstehendes Fabrikgebäude im Bonner Stadtteil Friesdorf. Vernagelte Eingangstüre mit zerschlagenen Scheiben (Photo by JOKER / Karl-Heinz Hick/ullstein bild via Getty Images) Ullstein Bild | Getty Images By this point, you've hopefully gotten the message that your personal data can end up exposed in all sorts of unexpected internet backwaters. But increased…
Citrix states its network was breached by global lawbreakers

Citrix states its network was breached by global lawbreakers

Enlarge / The query window for username and password on a Web page can be seen on the monitor of a laptop. Jens Büttner/Getty Images Virtualization and software provider Citrix said its internal network was breached by international criminals who most likely exploited weak passwords to gain limited access before working to gain more privileged…
A “major” Windows zeroday is being actively made use of in the wild

A “major” Windows zeroday is being actively made use of in...

As a reminder, here's what the default Start menu looked like in Windows 7. Google security officials are advising Windows users to ensure they’re using the latest version 10 of the Microsoft operating system to protect themselves against a “serious,” unpatched vulnerability that attackers have been actively exploiting in the wild. Unidentified attackers have been…
951,190FansLike
47,267FollowersFollow
4,586SubscribersSubscribe

Recent Posts