Document-based macro malware flies under the security radar by first detecting existing documents on PC.
Tag Archives: Web Security
iSpy Keylogger Targets Passwords, Skype, Webcams
Zscaler identified a keylogger on steroids that targets passwords, webcam and software licenses.
Mozilla Patches Certificate Pinning Vulnerability in Firefox
A remote code execution in Firefox caused by the expiration of certificate pins was patched by Mozilla in Firefox 49 and Firefox ESR 45.4.
Apple Squashes 68 Security Bugs With Sierra Release
With the introduction of macOS Sierra 10.12, Apple has patched dozens of security vulnerabilities and also tackled a few Safari 10 bugs to boot.
Tesla Fixes Critical Remote Hack Vulnerability
Researchers were able to remotely brake Tesla model cars as well as freeze control panels and open the rear hatch while driving.
Vulnerability Patched in WordPress Theme That Allows Unrestricted Uploads
A vulnerability has been patched in a popular WordPress theme called Neosense that allows an attacker to upload code without authentication.
Mozilla Patching Firefox Certificate Pinning Vulnerability
Mozilla is expected tomorrow to patch a critical certificate pinning vulnerability in Firefox’s automated update process for extensions.
Facebook Fixes Vulnerability That Led to Account Takeover, Pays Researcher $16K
Facebook quickly resolved a vulnerability in its Business Manager late last month that could have let an attacker take over any Facebook page.
Threatpost News Wrap, September 16, 2016
The news of the week is discussed, including Schneier’s DDoS article, a patched IE/Edge zero day, a new OS X malware detection method, and Google’s Project Zero prize.
Neverquest Trojan Gets Big Summer Update
Developers behind Neverquest have had a busy summer adding new features to the potent Trojan.