Kapersky Labs

Subscribe to Kapersky Labs feed
The First Stop For Security News
Updated: 18 min 12 sec ago

Sharing Threat Intelligence: Time for an Overhaul

Mon, 20/05/2019 - 21:08
All too often, information-sharing is limited to vertical market silos; to build better defenses, it's time to take a broader view beyond the ISAC.
Categories: News

Windows 10 Update Bricks PCs, Microsoft Offers Workarounds

Mon, 20/05/2019 - 19:44
A glitch in Microsoft's Windows 10 update is causing systems to freeze after users tried to use the System Reboot function. Luckily, workarounds exist.
Categories: News

Salesforce Woes Linger as Admins Clean Up After Service Outage

Mon, 20/05/2019 - 16:55
An accidental permissions snafu caused a massive outage for all Salesforce customers that continues to affect some businesses.
Categories: News

Behind the Naming of ZombieLoad and Other Intel Spectre-Like Flaws

Mon, 20/05/2019 - 16:14
A lot of thought and meaning goes into the naming of infamous CPU side channel flaws, like ZombieLoad, Spectre and Meltdown.
Categories: News

Slack Bug Allows Remote File Hijacking, Malware Injection

Mon, 20/05/2019 - 15:22
An attacker can supply a malicious hyperlink in order to secretly alter the download path for files shared in a Slack channel.
Categories: News

ZombieLoad: How Intel’s Latest Side Channel Bug Was Discovered and Disclosed

Mon, 20/05/2019 - 14:42
Daniel Gruss, the researcher behind Spectre, Meltdown - and most recently, ZombieLoad - Intel CPU side channel attacks, gives an inside look into how he discovered the flaws.
Categories: News

WordPress WP Live Chat Support Plugin Fixes XSS Flaw

Fri, 17/05/2019 - 20:28
A cross-site scripting flaw in a popular WordPress plugin enables an unauthenticated attacker to insert JavaScript payloads into impacted websites.
Categories: News

Ransomware ‘Remediation’ Firm Exposed: Researchers Weigh in on Paying

Fri, 17/05/2019 - 18:06
The decision to pay a ransom in the case of a ransomware attack can be a complex one for businesses.
Categories: News

How Decoding Network Traffic Can Save Your Data Bacon

Fri, 17/05/2019 - 16:44
The importance of reading the network tealeaves of a company’s network traffic to head off an attack.
Categories: News

News Wrap: WhatsApp, Microsoft, Intel and Cisco Flaws

Fri, 17/05/2019 - 12:37
From a zero day flaw in WhatsApp, to Patch Tuesday fixes, Threatpost breaks down the top vulnerabilities of this week.
Categories: News

Mobile Risks Boom in a Post-Perimeter World

Thu, 16/05/2019 - 19:36
The bloom is on mobile, whether it be the enterprise, employees or the cybercriminals plotting new ways to slip past a corporate defenses in a post-parameter world.
Categories: News

Forbes Becomes Latest Victim of Magecart Payment Card Skimmer

Thu, 16/05/2019 - 19:01
The web skimming script was recently found stealing payment data on the websites of Forbes Magazine as well as seven others.
Categories: News

Cisco Service Provider, WebEx Bugs Offer Up Remote Code Execution

Thu, 16/05/2019 - 14:53
The vendor also issued a patch schedule for the still-unpatched bug in its Secure Boot trusted hardware environment, which affects most of its enterprise and SMB portfolio, amounting to millions of vulnerable devices.
Categories: News

Cybercrime Gang Behind GozNym Banking Malware Dismantled

Thu, 16/05/2019 - 14:05
Europol said it has dismantled the cybercrime network behind the GozNym malware, which siphoned more than $100 million from businesses.
Categories: News

Google Titan Security Key Recalled After Bluetooth Pairing Bug

Wed, 15/05/2019 - 21:01
Google is offering free replacements for its Titan Security Key after discovering a misconfiguration in its pairing protocols.
Categories: News

Intel ZombieLoad Side-Channel Attack: 10 Takeaways

Wed, 15/05/2019 - 17:48
Here are 10 top takeaways from Intel's most recent class of Spectre-like speculative execution vulnerabilities, disclosed this week.
Categories: News

Billions of Malicious Bot Attacks Take to Cipher-Stunting to Hide

Wed, 15/05/2019 - 15:50
Attackers have been tampering with TLS signatures at a scale never before seen using a technique called cipher-stunting.
Categories: News

Microsoft Patches Zero-Day Bug Under Active Attack

Tue, 14/05/2019 - 21:49
Microsoft Patch Tuesday security bulletin tackles 22 critical vulnerabilities.
Categories: News

Apple Patches Intel Side-Channel Bugs; Updates iOS, macOS and More

Tue, 14/05/2019 - 21:31
A massive update addresses the breadth of the computing giant's product portfolio.
Categories: News

Intel CPUs Impacted By New Class of Spectre-Like Attacks

Tue, 14/05/2019 - 19:01
Intel has disclosed a new class of speculative execution side channel attacks.
Categories: News