Security News > 2020 > December

Cellebrite's details will make it easier for the Signal developers to patch the vulnerability. So either Cellebrite believes it is so good that it can break whatever Signal does, or the original blog post was a mistake.

Telemed is a two-way street; patients at home are using home networks and personal devices to access their care - which can be much more susceptible to attackers than doctors' office infrastructure. When it comes to the risks that cybersecurity professionals are concerned about, more than half of respondents said that the biggest security challenges stem from the risk of data breaches as more patient information moves to the cloud.

Here's our latest Naked Security Live talk, discussing IM scams and how to avoid them, as well as giving you some pointers on how to think like a scammer and thereby stay one step ahead. Don't forget that receiving a message from a friend's account doesn't always mean your friend actually sent the message - if their account has been hacked, then it could be a crook using your friend's name to trick you. Watch directly on YouTube if the video won't play here.

A company hailed as the UK's top tech employer tried to diddle a former trainee out of £2,000 in unlawfully withheld back pay - and a judge was startled when he discovered how Sparta Global treats its new hires. The £22k demand could be reduced depending on how long the trainee had worked for Sparta Global before quitting.

VMware is the latest company to confirm that it had its systems breached in the recent SolarWinds attacks but denied further exploitation attempts. VMware also disputed media reports that a zero-day vulnerability in multiple VMware products reported by the NSA was used as an additional attack vector besides the SolarWinds Orion platform to compromise high-profile targets.

According to new code references found in the open-source Chromium platform, Chromium-based browsers like Vivaldi and Brave should soon be able to take advantage of Google's personalized news feed called 'Discover'. Discover is currently accessible via the Google app and Chrome for Android and iOS only, but a new code commit suggests that other Chromium-based browsers should soon be able to take advantage of Discover feed.

Perhaps the most chilling aspect of the attack was how it propagated itself by installing itself as part of SolarWinds' standard distribution and update system. As with so many complex infrastructure compromises, it doesn't really matter and knowing the answer won't do much to help understand the scope of the attack or the damage done.

While analyzing artifacts from the SolarWinds Orion supply-chain attack, security researchers discovered another backdoor that is likely from a second threat actor. The analysis shows that the threat actor added in the legitimate SolarWinds file four new parameters to receive signals from the command and control infrastructure.

Microsoft has acknowledged a new issue impacting Windows 10 customers that might cause booting to fail on devices where the chkdsk tool has been used to repair logical file system errors. Chkdsk is a command-line utility that can be used to check a Windows device's volumes for file system and file system metadata logical and physical errors.

Because many businesses began relying on distributed workforces in 2020 and broadened their footprints with SaaS applications and cloud services, threat actors will likely prioritize these targets and find new ways to exploit them. These targets will target individual consumers as well as the organizations developing, distributing, researching, and administering actual vaccines.