Google Play Touts Certs in Quest For Enterprise Security
Google has snagged three security and privacy certifications for Google Play as it tries to appeal to enterprises despite numerous malicious apps and security issues. Go to Source
Critical DoS Bug Bubbles Up in Facebook Fizz TLS 1.3 Project
Users of the open-source project should upgrade immediately. Go to Source
Analysis: Drone Tech Creates New Type of Blended Threat
Hacked drones are breaching physical and cyberdefenses to cause disruption and steal data, experts warn. Go to Source
WordPress Plugin Removed After Zero Day Discovered
The plugin, Social Warfare, is no longer listed after a cross site scripting flaw was found being exploited in the wild. Go to Source
Hackers Take Down Safari, VMware and Oracle at Pwn2Own
On the first day of Pwn2Own 2019 hackers poked holes in Apple Safari, VMware Workstation and Oracle VirtualBox. Go to Source
Facebook Stored Passwords in Plain Text For Years
The social media giant said that it is notifying users whose passwords it stored in plain text, which made them accessible for Facebook employees to view. Go to Source
MyPillow and Amerisleep Targeted in Magecart Group Attacks
In both breaches of MyPillow and Amerisleep, the customers whose payment information was potentially stolen were not informed. Go to Source
Cisco Patches High-Severity Flaws in IP Phones
The most serious vulnerabilities in Cisco’s 8800 Series IP Phones could allow unauthenticated, remote attackers to conduct a cross-site request forgery attack or write arbitrary files to the filesystem. Go to Source
Mac-Focused Malvertising Campaign Abuses Google Firebase DBs
Researchers said 1 million user sessions could have been exposed to the campaign, which downloads the Shlayer trojan. Go to Source
Post-Perimeter Security: Addressing Evolving Mobile Enterprise Threats
Experts from Gartner, Lookout and Google talk enterprise mobile security in this webinar replay. Go to Source