VLC Media Player Plagued By Unpatched Critical RCE Flaw
A patch does not yet exist for a critical buffer overflow vulnerability in VLC Media Player that could enable remote code execution. Go to Source
Critical RCE Flaw in Palo Alto Gateways Hits Uber
The bug is previously unknown but yet still fixed in later releases. However, many organizations are likely still vulnerable. Go to Source
Tackling the Collaboration Conundrum
Enterprises should recognize the data security risk that Slack, Teams or TeamViewer could introduce and address it. Go to Source
Large-Scale Government Hacks Hit Russia, Bulgaria
The Bulgarian attack impacted almost all tax information for the entire country. Go to Source
Amazon Alexa, Google Home On Collision Course With Regulation
Threatpost talks to Tim Mackey with Synopsys about recent Amazon Echo and Google Home privacy faux pas. Will GDPR and other regulations catch up to the voice assistants? Go to Source
Equifax to Pay $700 Million in 2017 Data Breach Settlement
Equifax will dish out as much as $700 million on the heels of its infamous 2017 data breach that impacted 150 million customers. Go to Source
Iran-Linked APT34 Invites Victims to LinkedIn for Fresh Malware Infections
The group was posing as a researcher from Cambridge, and was found to have added three new malware families to its spy arsenal. Go to Source
Adult Sites Lack Privacy, Open the Door for Harassment and Tracking
Third-party tracking is rampant on sites like Pornhub, with users’ sexual preferences on full view. Go to Source
Bug in NVIDIA’s Tegra Chipset Opens Door to Malicious Code Execution
Researcher creates ‘Selfblow’ proof-of-concept attack for exploiting a vulnerability that exists in “every single Tegra device released so far”. Go to Source
Security Watch: Elon Musk’s NeuraLink Links Brains to iPhones via Bluetooth
Directly linking thoughts to a phone via Bluetooth — what could go wrong? Go to Source