Security News

Interesting article and paper. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered. Read my blog posting guidelines here....

A group of security researchers from German universities has devised a new class of web cache poisoning attacks that could render victim services unreachable. read more

Fortinet security researchers took a deep dive into NukeSped malware samples that share multiple similarities with other malware families used by North Korean threat actors. read more

Researchers have found a flaw that could lead to denial of service attacks on content distribution networks around the world.

The researchers' "Smart Spies" apps showed how Amazon Alexa and Google Home users could be exposed to vishing and eavesdropping.

A security researcher has published a proof-of-concept (PoC) exploit for the recently addressed Android zero-day vulnerability that impacts Pixel 2 devices. read more

Late last month Google Project Zero researcher Maddie Stone detailed a zero-day Android privilege escalation vulnerability (CVE-2019-2215) and revealed that it is actively being exploited in...

FireEye Says Financial Hacking Group Is Deploying New Dropper and PayloadDespite a crackdown on some of its members in 2018, the FIN7 gang has returned with new malicious tools, including a...

ESET security researchers were able to identify a new backdoor associated with the threat actor known as the Winnti Group. read more

The tiny ATtiny85 chip doesn’t look like the next big cyberthreat facing the world, but sneaking one on to a firewall motherboard would be bad news for security were it to happen.