Security Alerts & News
by Tymoteusz A. Góral

History
#2086 Vault 7: WikiLeaks docs hint CIA could bypass 21 security products
One of the hidden gems included in the Vault 7 data, dumped yesterday by WikiLeaks, is a document detailing bypass techniques for 21 security software products.

The document is part of a data dump of nearly 9,000 other files, all documentation files and manuals for various hacking tools, which WikiLeaks claims belong to the CIA.

One particular document, labeled "Personal Security Products (PSPs)" lists 21 security products, each linking to a separate document, containing descriptions of various exploits and techniques that could be used to bypass the named security tools.

The list covers almost all major antivirus vendors, including Comodo, Avast, Kaspersky, AVG, ESET, Symantec, and others.

For most security products included in this list, the bypass/exploit technique has been redacted. Yesterday, when it announced the Vault 7 leak, WikiLeaks said it made 70,875 redactions in total, mainly to remove any harmful code and personal details, such as names and IP addresses.
Read more
#2093 Aggressive ad-displaying Google Play app tricks users into leaving high ratings
#2092 Facebook Lite infected with spy FakePlay
#2091 Cisco and Apache issue warnings over 0day flaw being targeted in the wild
#2090 Emsisoft releases a decryptor for the CryptON ransomware
#2089 Another challenge for IoT: Open backdoors
#2088 Apple has already fixed most of the iOS exploits the CIA used
#2087 Leaked docs suggest NSA and CIA behind Equation cyberespionage group
#2086 Vault 7: WikiLeaks docs hint CIA could bypass 21 security products
#2085 China mulls national cryptocurrency in race to digital money
#2084 After CIA leaks, tech giants scramble to patch security flaws
#2083 Product Security Advisory – PSA0002 – dnaLIMS
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12