Security Alerts & News
by Tymoteusz A. Góral

History
#1445 Two critical bugs and more malicious apps make for a bad week for Android
It was a bad week for millions of Android phone users. Two critical vulnerabilities were disclosed but remain unpatched in a large percentage of devices, while, separately, malicious apps were downloaded as many as 2.5 million times from Google's official Play Marketplace.

The vulnerabilities, which are similar in severity to the Stagefright family of bugs disclosed last year, have been fixed in updates Google began distributing Tuesday. A large percentage of Android phones, however, aren't eligible to receive the fixes. Even those that do qualify don't receive them immediately (the September updates are currently not available as over-the-air downloads for either of the Nexus 5X devices in my household). That gives attackers crude blueprints for exploiting vulnerabilities that remain unpatched on millions of devices.
Read more
#1449 Critical MySQL vulnerability disclosed
#1448 Fire drill knocks ING bank's data centre offline
#1447 Cisco’s network bugs are front and center in bankruptcy fight
#1446 Now you can buy a USB stick that destroys anything in its path
#1445 Two critical bugs and more malicious apps make for a bad week for Android
#1444 Re-thinking security fundamentals: How to move beyond the FUD
#1443 Blue light has a dark side
#1442 Cryptocurrency mining malware discovered targeting Seagate NAS hard drives
#1441 MalwareMustDie spotted a new ELF trojan backdoor, which is now targeting IoT devices
#1440 Wordpress urges users to update now to fix critical security holes
#1439 Picture perfect: CryLocker ransomware uploads user information as PNG files
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12