PhishLabs publishes first Phishing Trends and Intelligence Report
Bad news for the good guys. PhishLabs, a company focused on providing phishing defense, has released their first report on phishing trends and they show “a thriving phishing underground.” Key findings...
View ArticlePreorder ‘The Car Hacker’s Handbook’
A new book titled The Car Hacker’s Handbook – A Guide for the Penetration Tester from publisher No Starch Press is available for pre-order from Amazon.com. The topic is cutting edge and helps you build...
View ArticleESET antivirus false positive blocks website access
ESET experienced a false positive this morning. It was falsely identifying various websites as Javascript or HTML threats. The definition database, version 13102, was pushed out and expanded...
View ArticleMicrosoft announces Windows Defender Advanced Threat Protection for Windows 10
Microsoft announced increased capability coming to the Windows 10 built-in malware protection service Windows Defender. The new abilities will be labeled Windows Defender Advanced Threat Protection and...
View ArticlePwn2Own 2016 results
With some slight changes to Pwn2Own this year, the hacking event is underway with one day completed. Day One So far, there have been 6 attempts against the targets, which include VMware Workstation,...
View ArticleBuilt-in browser functions prove server-side validation necessary
Web developers can easily make a wrong assumption in what they place their trust in. You create a web application and test it out to verify it works to spec. It only allows certain functionality,...
View ArticleProtect your organization from ransomware by blocking macros in Office 2016...
Microsoft has updated the available Office 2016 Administrative Templates for Group Policy configuration. The updated admx files include new settings to block macros from running in Word documents,...
View ArticleSymantec Cloud portal suffers all-day outage
The portal to access and manage Symantec.cloud (the antivirus and other services hosted by Symantec in order to reduce the local infrastructure required) is suffering an outage that has been going on...
View ArticlePopular ARRIS (formerly Motorola) SURFboard 6141 cable modem vulnerable to...
For those with cable Internet providers like Comcast, Mediacom, Time Warner Cable, and others, there is a common cost savings method of buying your own cable modem. One of the most popular modems to...
View ArticleUninstall QuickTime from Windows, Apple deprecates product rather than patch it
Two vulnerabilities in Quicktime for Windows have been reported since November 2015. Apple has decided to deprecate QuickTime for Windows rather than update it with a patch for these vulnerabilities....
View ArticleGoogle releases Android Security 2015 annual report
Google has recapped 2015 with their annual Android Security report. When it comes to Android security the main security concerns are keeping devices updates and on current versions of Android and...
View ArticleKeePass 2.34 update brings https update check
KeePass, my preferred password manager, released version 2.34 this weekend. The changelog includes: New Features: The version information file (which the optional update check downloads to see if there...
View ArticleGoToMyPC resets all users’ passwords
Citrix GoToMyPC has published to their status page an incident that has resulted in all users’ passwords being reset. As explained in an email to customers, the service was “targeted by a very...
View ArticleMicrosoft Hardware fixes their Twitter link problem
I stumbled upon a minor problem while looking into a Microsoft Hardware issue. The Microsoft Hardware Twitter account used to be at @MSFTHardware. They stopped tweeting to the account in 2013 and...
View ArticleHow to report abuse and security issues on Microsoft services
A suspicious website was reported and it was rather convincing. The website was impersonating Microsoft and with Microsoft’s latest Windows 10 pushes, it did not seem implausible. Part of the disguise...
View ArticleAvast to acquire AVG for $1.3 billion
Antivirus company Avast announced this morning that it is in agreement to acquire fellow security company AVG. From the Avast blog: Under an agreement signed with AVG, Avast will be making an offer...
View ArticleWeighing printer security risks
This post brought to you by HP MPS. The content and opinions expressed below are that of 404 Tech Support. In this month’s batch of Windows Updates, Microsoft included KB3170005 in Microsoft Security...
View ArticleNo More Ransom Project combines Intel Security, Kaspersky, and police to...
The combined forces of Intel Security, Kaspersky Lab, the Dutch National Police,and Europol has resulted in a project called ‘No More Ransom’. The cooperations has the goal of assisting the public with...
View ArticleNIST launches cyber security self-assessment tools for organizations
NIST, the National Institute of Standards and Technology, created and released their Cybersecurity Framework in 2014. A collaborative process from industry, academia and government agencies through...
View ArticleNational Cyber Security Awareness Month 2016
October is National Cyber Security Awareness Month. It is an effort in its 13th year between government and industry to remind Americans of the resources available to stay safe and secure online. The...
View Article