security update
Lace Tempest Exploits SysAid Zero-Day Flaw
In a recent revelation, SysAid, a leading IT management software provider, has unveiled a critical security threat affecting its on-premises software. The threat actor, identified as DEV-0950 or Lace Tempest by Microsoft, ...
Over one billion Android devices at risk as they no longer receive security updates
More than one billion Android devices are at risk of being hacked or infected by malware, because they are no longer supported by security updates and built-in protection. That’s the conclusion of ...
New Shlayer Malware Variant Targeting Macs
Security researchers have found a new variant of a trojan program dubbed Shlayer that infects Mac computers and disables the macOS Gatekeeper security agent. Shlayer was discovered a year ago by researchers ...
85 Android Adware Apps Downloaded 9 Million Times
Researchers have found another batch of malicious Android applications on Google Play that spam users with annoying full-screen ads and make using their phones difficult. Trend Micro calls the adware AndroidOS_HidenAd and ...
Attack Kit Hijacks DNS of Home and Business Routers
For the past year, attackers have been using an exploit kit that changes the DNS settings of home and small-business routers through users’ browsers. The tool, dubbed Novidade, was first used in ...
Microsoft and Adobe Patch Zero-Day Vulnerabilities
Microsoft and Adobe Systems released their monthly scheduled security updates Nov. 14, both companies fixing some vulnerabilities that were known publicly before being patched. Microsoft fixed 62 vulnerabilities across its product portfolio, ...
Google marks all HTTP sites ‘not secure’ starting today
With the release of Google Chrome 68 today, technology behemoth Google is labeling all HTTP sites as “not secure,” in an effort to get developers to transition their websites to the safer ...
The iOS failed passcode option, plus security update 11.4
An underused passcode security option. And what did Apple just fix in iOS? ...
Ransomware Uses Process Hiding Technique to Evade Antivirus
A ransomware program called SynAck uses a sophisticated process hiding technique that was first documented last year as a proof-of-concept to evade detection. Dubbed Process Doppelgänging, the method was presented at the ...
Microsoft Fixes 66 Vulnerabilities Across Its Products
Microsoft’s April security updates include fixes for 66 vulnerabilities in Windows components, the Edge and Internet Explorer browsers, the Office suite, the Hyper-V hypervisor, Visual Studio and even a wireless keyboard. Of ...