Microsoft Lab Offers $300K For Working Azure Exploits
Microsoft says its Azure Security Lab will allow researchers to attack its cloud environment in a customer-safe way. Go to Source
Google and ARM Tackle Android Bugs with Memory-Tagging
Buffer overflows, race conditions, use-after-free and more account for more than half of all vulnerabilities in the Android platform. Go to Source
MegaCortex Ransomware Revamps for Mass Distribution
Manual steps have been replaced by automation. Go to Source
Critical Bug in Android Antivirus Exposes Address Books
Comprehensive testing of 21 free Android antivirus apps revealed big security vulnerabilities and privacy concerns; especially for AEGISLAB, BullGuard, dfndr and VIPRE. Go to Source
Nation-State APTs Target U.S. Utilities With Dangerous Malware
Researchers spotted the never-before-seen LookBack malware being used in spearphishing campaigns against three U.S. utilities. Go to Source
90% of Enterprise iPhone Users Open to iMessage Spy Attack
Vast majority of Apple iOS users haven’t updated to iOS 12.4, leaving themselves wide open to a public exploit. Go to Source
Apple Suspends Siri Program After Privacy Backlash
Apple’s Siri follows Amazon Alexa and Google Home in facing backlash for its data retention policies. Go to Source
Brand-New SystemBC Proxy Malware Spotted Using SOCKS5 for Stealth
The proxy is being distributed by the RIG and Fallout exploit kits. Go to Source
Unpatched Flaws in IoT Smart Deadbolt Open Homes to Danger
Researchers are warning that unpatched flaws found in the Hickory Smart Bluetooth Enabled Deadbolt allow an attacker with access to a victim’s phone to break into their houses. Go to Source
For $8.6M, Cisco Settles Suit Over Bug-Riddled Video Surveillance Software
The complaint claims the networking giant knowingly sold bug-riddled software to federal and state governments, that would allow complete network compromise. Go to Source