Security Now!

SN 846: HTTP Request Smuggling - NetGear Routers 0-Day, The Most Brute Forced Passwords, GoDaddy Breach

Hinzugefügt: 24. November 2021

Picture of the Week.
An idea whose time has passed...
The stats of brute force password attacks.
The Most Common Passwords.
GoDaddy Breached Bigtime!
A heads-up about NetGear routers.
HTTP Request...

SN 845: Blacksmith - Patch Tuesday's 55 Flaws, The Zen of Code, Ryuk Ransomware Gang

Hinzugefügt: 17. November 2021

Picture of the week.
~10,000 VPN/Firewall appliances from Palo Alto Networks vulnerable.
The 0-Patch Guys Produce a Micropatch
This brings me to "The Zen of Code"
November's Patch Tuesday
November...

SN 844: Bluetooth Fingerprinting - Pwn2Own Austin, Unpatched GitLab Servers, Cisco's DEFAULT SSH Key

Hinzugefügt: 10. November 2021

Picture of the Week.
Lots of welcome progress on the ransomware front.
Pwn2Own Austin: Last Tuesday-Thursday largest ever 3-day Fall 2021 Pwn2Own.
Windows 11 snipping tool, its emoji picker, and...

SN 843: Trojan Source - Chrome 0-days, Windows 11 confusion, VoIP DDos attacks, Dune

Hinzugefügt: 3. November 2021

Chrome 0-days, Windows 11 confusion, VoIP DDoS attacks, Dune
More 0-days for Chrome.
Two naughty Firefox add-ons have been caught abusing an extension API.
Windows 11 News: Can we print yet?
A new...

SN 842: The More Things Change... - Gummy Browsers Attack, What Happened to REvil, Comms Hub, Win 11 Fixes

Hinzugefügt: 27. Oktober 2021

Picture of the Week.
A sneak peak at November 9th upcoming Win11 fixes.
Leo gets his wish!! REvil WAS recently re-taken down by Law Enforcement!
Microsoft: "We're Excited to Announce the Launch of...

SN 841: Minh Duong's Epic Rickroll - REvil Gone for Good? Tianfu Cup 2021, Patch Tuesday Aftermath

Hinzugefügt: 20. Oktober 2021

Picture of the week.
Windows 11 Watch - Don't update to Windows 11 unless you need to.
Patch Tuesday - PrintNightmare fix to fix the previous print nightmare fix that broke other things.
Point and...

SN 840: 0-Day Angst - Windows 11 Watch, Google's Universal 2SV, Twitch Hack, Patch Tuesday

Hinzugefügt: 13. Oktober 2021

Picture of the week.
Windows 11 Watch: "AllowUpgradesWithUnsupportedTPMOrCPU"
AMD processors running some apps up to 15% slower.
The Windows 10 taskbar on Windows 11.
Microsoft is disagreeing......

SN 839: “Something Went Wrong” - Windows 11 Released, New Android Trojan, Windows Explorer Memory Leak

Hinzugefügt: 6. Oktober 2021

Picture of the Week.
Another two, in-the-wild, true 0-days found and fixed in Chrome.
Windows 11 arrives.
A known memory leak in Windows Explorer.
Ransomware and cyber warfare.
On the topic of...

SN 838: autodiscover.fiasco - Epik Confirms Hack, Apple Annoys Bug Reporters, Chrome's 12th 0-Day in 2021

Hinzugefügt: 29. September 2021

Picture of the Week.
Chrome's 12th 0-day this year.
Next up on this week's 0-day Watch... is Apple.
Apple appears to be annoying their bug reporters.
Epik Confirms Hack, Gigabytes of Data on...

SN 837: Cobalt Strike - Android Auto-Revokes Permissions, DDoS on VoIP.ms, Patch Tuesday, Was GRC Pwned?

Hinzugefügt: 22. September 2021

Picture of the week.
The DDoS attack on VoIP.ms.
Patch Tuesday's Mixed Blessing.
Android to auto-reset app permissions on many more devices.
BREAKING: FBI held back ransomware decryption key from...

SN 836: The Mēris Botnet - 0-Day Attack on Office Docs, WFH and Security, Return of REvil

Hinzugefügt: 15. September 2021

Picture of the Week.
A new worrisome 0-day attack against Office documents.
Work From Home (WFH) — No problem?
"Attacks only ever get better"
The return of REvil — Apparently, vacation's...

SN 835: TPM v1.2 vs 2.0 - BlueTooth Troubles, Internet Anonymity, Apple CSAM, Light Chaser

Hinzugefügt: 8. September 2021

Picture of the Week.
The Razor mouse & keyboard.
The wishful phrase "Internet Anonymity" is an oxymoron.
And speaking of Apple's client-side image matching...
BlueTooth has new troubles.
Attackers...

SN 834: Life: Hanging by a PIN - Credit Freeze vs. Credit Lock, SSD Bait & Switch, ProxyToken, Windows 11

Hinzugefügt: 1. September 2021

Picture of the Week.
Credit Freeze vs Credit Lock.
T-Mobile hacker speaks!
Where will Windows 11 run?
ProxyToken.
Tailscale Open Source?
SSD Bait & Switch.
SpinRite.
Life: Hanging by a PIN.
We...

SN 833: Microsoft's Reasoned Neglect - T-Mobile's Major Data Leak, Razer Mouse Hack, Overlay Networks

Hinzugefügt: 25. August 2021

Picture of the week.
Firefox soon to be blocking mixed-content downloads by default.
The news from T-Mobile is all bad.
Introducing ProxyLogon's kissing cousin, ProxyShell.
The Razer mouse hack.
A...

SN 832: Microsoft's Culpable Negligence - Firefox Update, Magniber, Merger of Avast and NortonLifeLock

Hinzugefügt: 18. August 2021

Picture of the week.
Firefox Update.
Facebook finally adds end-to-end encryption to Messenger.
Exploitation of PrintNightmare has begun.
And "Magniber" Ransomware Uses PrintNightmare.
Crypto-mining...

SN 831: Apple's CSAM Mistake - Flawed Random Number Generator, Super Duper Secure Mode, TCP Stack Error

Hinzugefügt: 11. August 2021

Picture of the week.
"You're Doing IoT RNG"
The Pulse Secure VPN remains in trouble.
And Cisco, too...
Flaws found in another popular embedded TCP/IP library.
Microsoft Edge gets "Super Duper...

SN 830: The BlackMatter Interview - Bad News for Firefox, DarkSide Returns, Tailscale, Google to Assume HTTPS

Hinzugefügt: 4. August 2021

Picture of the Week.
Mozilla's Firefox Monthly Active Users (MAU) slowly but steadily drops.
Google to finally assume HTTPS.
The evolution of "Initial Access Brokers".
DarkSide Returns.
"A...

SN 829: SeriousSAM & PetitPotam - Kaseya Universal Decryptor, Window's Process Hacker, Chrome 92

Hinzugefügt: 28. Juli 2021

Picture of the Week.
Faster and more efficient phishing detection in Chrome 92.
A Universal Decryptor for all Kaseya victims.
The printer driver used by millions of HP, Samsung and Xerox Printers...

SN 828: REvil Vanishes! - Chrome Zero-Day Vulnerability, iOS WiFi SSID Bug, Patch Tuesday Review

Hinzugefügt: 21. Juli 2021

Picture of the week
Browser NewsThe attacks on Google Chrome continue.
Firefox special-cases anti-tracking for "Login With" functions.

Security NewsiOS WiFi SSID bug
We still can't awaken from the...

SN 827: REvil's Clever Crypto - Microsoft Fails to Patch PrintNightmare & Sodinokibi Malware's Crypto Design

Hinzugefügt: 14. Juli 2021

Picture of the Week
The "PrintNightmare Continues"
Kaseya - Not nearly as bad as it could have been
Ransomwhere site
Microsoft Office Users: There's a new malware-protection bypass
Ransomware...