16.8 C

TikTok Riddled With Security Flaws

The video sharing app has fixed several flaws allowing partial account takeover and information exposure. Read more

Google Fixes Critical Android RCE Flaw

Google's first security update of 2020 addressed seven high and critical severity Android flaws. Read more

FBI Taps Apple to Unlock Pensacola Shooter’s iPhone

It's unclear yet whether the Cupertino giant will assist, given past history of court battles over such incidents. Read more

AA20-006A: Potential for Iranian Cyber Response to U.S. Military Strike in Baghdad

Original release date: January 6, 2020SummaryThe Cybersecurity and Infrastructure Security Agency (CISA) is sharing the following information with the cybersecurity community as a primer for assisting in the protection...

2020 Cybersecurity Trends to Watch

Mobile becomes a prime phishing attack vector, hackers will increasingly employ machine learning in attacks and cloud will increasingly be seen as fertile ground for compromise. Read more

Top Zero Days, Data Breaches and Security Stories of 2019: News Wrap

From ransomware ramp up, to voice assistant privacy perils, the Threatpost team breaks down the top news stories from this past year. Read more

It’s Time for Your SOC to Level Up

Artificial intelligence can provide manpower, context and risk assessment. Read more

Apple’s Bug Bounty Opens for Business, $1M Payout Included

The tech giant is looking for full working exploits with any vulnerability submission. Read more

Smart Krampus-3PC Malware Targets iPhone Users

The malware affected 100 different online publishers. Read more

AT&T, Verizon Subscribers Exposed as Mobile Bills Turn Up on the Open Web

Names, addresses, phone numbers, call and text message records and account PINs were all caught up in a cloud misconfiguration. Read more

Latest article

Framework Developer ‘Ragequits’ Open Source Community, Citing Negative Comments, ‘Very Few Provide Help’

The maintainer of the popular Rust web framework Actix has quit the project -- though he's backed off threats to make its code private...

EFF Defends Bruce Perens Victory Against ‘Open Source Security’ in Appeals Court

Bruce Perens (Slashdot reader #3872) co-founded the Open Source Initiative with Eric Raymond in 1998. (And then left it this January 2nd.) But in...

Realtek SDK Information Disclosure / Code Execution

Realtek SDK based routers suffer from information disclosure, incorrect access control, insecure password storage, code execution, and incorrectly implemented CAPTCHA vulnerabilities. Read more