Security News > 2021

Perception Point announced it has raised $28 million in Series B, bringing the total funding to $48 million. Funds from this round will be used to fuel rapid growth, expand to new markets, accelerate product innovation and grow the team to support customer demand.

It is possible to hijack and manipulate Cellebrite's phone-probing software tools by placing a specially crafted file on your handset, it is claimed. Signal app supremo Moxie Marlinspike said in an advisory on Wednesday that he managed to get his hands on some of Cellebrite's gear, which is typically used by cops, government agents, big biz, and authoritarian regimes to forcibly access the contents of physically seized smartphones.

Multiple one-click vulnerabilities have been discovered across a variety of popular software applications, allowing an attacker to potentially execute arbitrary code on target systems. The issues were discovered by Positive Security researchers Fabian Bräunlein and Lukas Euler and affect apps like Telegram, Nextcloud, VLC, LibreOffice, OpenOffice, Bitcoin/Dogecoin Wallets, Wireshark, and Mumble.

Once they've identified a tempting asset to exploit, attackers employ techniques to find a vulnerability. Some attackers use tried-and-true methods, but the most creative in the group find ways to exploit systems through unexpected vectors.

Windows 10 now lets you run Linux GUI apps without using a virtual machine after Microsoft added GUI support to the Windows Subsystem for Linux. Microsoft designed the WSL compatibility layer to make it possible for Windows 10 customers to run Linux binaries in ELF format natively on their Windows computers, in a PowerShell or Windows 10 command prompt.

IBM is working with partners on its Digital Health Pass, which allows for easy sharing of health credentials such as a COVID-19 vaccine or test. IBM's GM Jason Kelley shares details.

Quanta Computer Inc. acknowledged the attack in a statement made to Bloomberg, stating that the company's information security team worked with external experts to deal with cyber attacks on a small number of servers. REvil demanded $50 million for the decryption key, according to a chat-room transcript reviewed by Bloomberg.

"Early in the pandemic, restaurants were using QR codes as menus or payment options, but as the pandemic continued throughout 2020, consumers used QR codes more frequently for practical things like visiting a doctor's office or picking up a prescription," according to Ivanti's report, issued on Wednesday. "Meanwhile, social activities like dining out or enjoying a drink at a bar saw QR code usage decrease in that six-month period. Even offices and places of work saw an increase in usage going from 11 percent to 14 percent, emphasizing the shift in how QR codes have been used during the pandemic."

Just ahead of Sunday's Oscars, the firm analyzed more than 800 million breached passwords out of a list of 2 billion and is revealing the top 20 movies exposed via breaches. "While we present this breached password list in good humor, what shouldn't be taken lightly is the negative impact that weak and compromised passwords can have on an organization's cybersecurity risk," the firm said.

Social media giant Facebook today announced that it took action against two groups of hackers originating from Palestine that abused its infrastructure for malware distribution and account compromise across the Internet. As part of the shutdown operation, Facebook took down accounts, blocked domains, sent alerts to people who were targeted, and released malware hashes to the public.