Tags » Softpedia

New Linux VM Rowhammer attack

Catalin Cimpanu has a story in Softpedia about a new use of Rowhammer:

Rowhammer jacking Linux VMs https://t.co/dQfis0BZp6

— dragosr (@dragosr) August 16, 2016

New FFS Rowhammer Attack Hijacks Linux VMs: Attack was successful in tests against Debian and Ubuntu…

78 more words

Gotham Security Daily Threat Alerts

July 22, Softpedia – (International) Decrypter available for ODCODC ransomware. Security researchers from BloodyDolly released a decrypter for the ODCODC ransomware that circumvents ODCODC’s RSA-2048 encryption to recover the victim’s files without paying the ransom. 95 more words

Security

Gotham Security Daily Threat Alerts

July 11, Softpedia – (International) MIUI vulnerability affects millions of Xiaomi Android devices. Security researchers from IBM’s Security Intelligence team reported that a remote code execution (RCE) vulnerability exists in MIUI analytics component in versions prior to MIUI Global Stable 7.2 after researchers discovered that the self-update mechanism can be hijacked via a Man-in-the-Middle (MitM) attack and used to deliver malicious update packages. 199 more words

Security

Gotham Security Daily Threat Alerts

June 17, Softpedia – (International) Losses from business email scams reach a whopping $3 billion. The FBI’s Internet Crime Complaint Center (IC3) reported that global Business Email Compromise (BEC) scams and campaigns were increasing with companies losing over $3 billion in global scams and over $960 million in U.S-targeted scams from October 2013 – May 2016. 36 more words

Security

Gotham Security Daily Threat Alerts

May 23, SecurityWeek – (International) Exploit for recently patched flash flaw added to Magnitude EK. A French security researcher discovered that attackers were integrating the Magnitude exploit flaw against previously patched Flash Player 21.0.0.213 installations to potentially deliver various pieces of malware, including Locky and Cerber ransomware. 178 more words

Security

Gotham Security Daily Threat Alerts

May 10, Softpedia – (International) SS7 attack leaves WhatsApp and Telegram encryption useless. Positive Technologies researchers unveiled a new attack that utilizes Signaling System No. 7 (SS7) to carry out attacks on encrypted communications apps such as WhatsApp and Telegram by spoofing a mobile network node and intercepting the initial phase of a chat between two users. 106 more words

Security

Gotham Security Daily Threat Alerts

April 26, Softpedia – (International) Facebook bug allowed attackers to take over accounts on other sites. Facebook patched a flaw in its account registration process after security researchers from Bitdefender discovered the flaw could allow attackers to take over users’ profiles on Web sites where the Facebook Social Login feature was available by adding an attacker’s email address as a secondary address, enabling the attacker to verify the profile and make modifications to the account information. 87 more words

Security