Attention readers, with the release of Chrome 78.0.3904.87, Google is warning billions of users to install an urgent software update immediately to patch two high severity vulnerabilities, one of which attackers are actively exploiting in the wild to hijack computers. Without revealing technical details of the vulnerability, the Chrome security team only says that both …
In a move seen as a swipe at Chrome, Firefox is continuing its fight against Facebook and Google’s online ad tracking empire. The browser, owned by Mozilla, will now block third-party tracking cookies by default. This Enhanced Tracking Protection will be automatically turned on for all global users as part of the standard setting. The …
A newly-discovered form of cryptocurrency-mining malware is capable of remaining so well-hidden that researchers investigating it found that it had spread to almost every computer at a company that had become infected. Dubbed ‘Norman’ due to references in the backend of the malware, the cryptojacker has been detailed by cybersecurity researchers at Varonis. The Monero-cryptomining …
Threat actors have started scanning the internet for Windows systems that are vulnerable to the BlueKeep (CVE-2019-0708) vulnerability. This vulnerability impacts the Remote Desktop Protocol (RDP) service included in older versions of the Windows OS, such as XP, 7, Server 2003, and Server 2008. Microsoft released fixes for this vulnerability on May 14, as part …
Researchers at Qihoo 360’s Core security unit say an advanced persistent threat (APT) group is using the IE vulnerability on a “global scale”, which is being delivered to select targets via malicious Office documents loaded with what it calls a “double-kill” vulnerability. Victims are required to open the Office document, which launches a malicious webpage …
More than 130 Android apps on the Google Play store have been found to contain malicious coding, possibly because the developers were using infected computers, according to security researchers. Google has already deleted the apps from its Play store. The developers behind the apps probably aren’t to blame for including the malicious code, Palo Alto …