VPN backdoors

Iran Backdoors ‘Dozens’ of Companies via VPN 1-Day Vulnerabilities

| | Iran, SB Blogwatch, VPN
A report claims government-backed Iranian groups have been hacking companies around the world, by exploiting bugs in VPNs ...
Security Boulevard
Chrome extensions

500+ Google Chrome Extensions Stealing Your Data for Years

Security researchers just found a huge cache of malicious Chrome extensions, infecting millions of browsers ...
Security Boulevard
Sign in with Apple

Apple Joins FIDO Alliance to Eliminate Passwords

The Fast Identity Online (FIDO) standard for authenticating browsers that reduces the reliance of passwords to access applications and devices advanced this week after an endorsement from Apple. The FIDO standard consists ...
Security Boulevard
WhiteSource Python

WhiteSource Adds Python Support to Vulnerability Discovery Tool

WhiteSource today announced it has extended to reach of its tool for scanning for vulnerabilities in open source application code to include support for the Python programming language. Jeffrey Martin, director of ...
Security Boulevard
Tufin cloud security

Tufin Unifies Management of Cloud Cybersecurity Policies

Tufin today announced the availability of Tufin SecureCloud, which combines two existing offerings to manage cybersecurity policies for both monolithic applications and emerging microservices-based application environments. Company CTO Reuven Harrison said rather ...
Security Boulevard
2017 Equifax Hack: ‘It was the Chinese Army,’ Alleges DoJ

2017 Equifax Hack: ‘It was the Chinese Army,’ Alleges DoJ

| | APT10, china, Equifax, SB Blogwatch
The U.S. government has indicted four Chinese citizens, accusing them of a hack of Equifax that leaked more than 150 million people’s data ...
Security Boulevard
Busted: Wacom Secretly Tracks How You Use Your Apps

Busted: Wacom Secretly Tracks How You Use Your Apps

Wacom drawing tablets track how you use programs on your Mac or PC, and continuously upload it to Google—without informed consent ...
Security Boulevard
Bitbucket

Cybereason Uncovers Malware Distributed via Bitbucket Repositories

Cybereason, a provider of endpoint protection software, today disclosed that it discovered a malware campaign that has been leveraging Bitbucket repositories from Atlassian to launch cyberattacks. Assaf Dahan, senior director for threat ...
Security Boulevard
OT

Siemens Mobility, Claroty Partner to Secure OT Networks

Siemens Mobility Inc. this week announced it has allied with Claroty to secure operational technology (OT) and industrial networking environments. Emanuel Salmona, vice president of partnerships for Claroty, said under the terms ...
Security Boulevard
certificate

Forgot to Renew Your TLS Certificate, Microsoft?

Microsoft Teams went dark for seven hours yesterday. It turns out the Teams team forgot to renew a TLS certificate ...
Security Boulevard