Security News

Sony's new PS5 is one topic ripe for exploitation, especially since the new console is in short supply due to a scarcity of semiconductor chips. A Friday report from security firm Kaspersky explains how a new scam promising a PS5 is playing out and offer tips on how to avoid taking the bait.

Microsoft has fixed a bug that could allow a threat actor to create specially crafted downloads that crash Windows 10 simply by opening the folder where they are downloaded. Last month, we reported on a bug in the Windows 10 console multiplexer driver, condrv.

Microsoft has fixed a bug that could allow a threat actor to create specially crafted downloads that crash Windows 10 simply by opening the folder where they are downloaded. Last month, we reported on a bug in the Windows 10 console multiplexer driver, condrv.

BitDam announced that it is enhancing its offering for MSPs by adding a unique MSP console to its Advanced Threat Protection solution. The new BitDam MSP console's centralized dashboard view allows MSPs to view and manage all customers at one time and on one screen.

On Thursday Johannes Ullrich, Dean of Research at the SANS Technology Institute, spotted a massive spike in traffic on research "Honeypot" systems as somebody tried to identify public-facing WebLogic servers that weren't patched against CVE-2020-14882. If you find a vulnerable server in your network: Assume it has been compromised.

Hewlett Packard Enterprise has fixed a maximum severity remote authentication bypass vulnerability affecting the company's HPE StoreServ Management Console data center storage management solution. HPE SSMC is a management and reporting console for HPE Primera and HPE 3PAR StoreServ systems data center arrays.

A vulnerability that Google has addressed in one of its official WordPress plugins could be abused by attackers to gain access to the Google Search Console of an impacted website. During the initial connection with Google Search Console, the plugin generates a proxySetupURL through which the site admin is redirected to Google OAuth, and leverages a proxy to run the verification process.

Even seemingly insignificant Internet of Things devices such as LED light control consoles can be abused to launch malicious attacks, Microsoft's security researchers warn. Proof of that comes from an incident uncovered in Taiwan, where such a device was used to spew malware as part of an operation that leveraged a botnet of IoT products to distribute malware and ransomware, send phishing emails, and launch distributed denial-of-service attacks.

Vulnerable, improperly protected Out of Band consoles expose ships, drilling rigs, remote shore-based facilities, and even mobile vehicles to attackers, researchers from security firm Pen Test Partners warn. What may cause an issue is keeping poorly protected OOB consoles exposed to the Internet, Pen Test Partners' Ken Munro says.

Kanguru Remote Management Console offers a robust solution for IT Security Admins looking to meet high-end security demands by allowing administrators to easily manage and monitor their encrypted USB devices containing sensitive data around the world. KRMC is ideal for protecting data, enabling administrators to set policies, disable or delete lost/stolen drives, track and monitor secure USB drives worldwide, generate reports, and much more.