Microsoft released 14 security bulletins today, six rated critical. Among the fixes is a patch for a Windows kernel zero-day vulnerability disclosed by Google that was being used in attacks by the Sofacy APT gang.
TrickBot Banking Trojan Adds New Browser Manipulation Tools
The banking Trojan TrickBot is evolving fast, according to researchers, and within weeks will expand its victim list and attack scope.
Teen pleads guilty to creating DDoS tool used in 1.7 million attacks
Adam Mudd created the tool when he was only 15 and went on to make $385,000 from its sale and a DDoS-for-hire service.
WeMo smart home devices can be used to spy on Android phones
Researchers found vulnerabilities, now fixed, that could have turned your crockpot into a launching pad for malicious JavaScript.
Glasses make facial recognition think you’re a celebrity
These biometric-baffling babies cost mere pennies. Just in time: Facebook’s said that users can’t stop it from using our biometrics.
Berners-Lee raises spectre of weaponized open data
Tim Berners-Lee warns hackers could use open data to create societal chaos. What’s going on here? The fear of data sabotage, that’s what.
There’s no best way to handle disclosure of zero-day vulnerabilities
Earlier this week, the headlines flashed with news that Google had disclosed a vulnerability to Microsoft that allows local privilege escalation in Windows 10.
Monday review – the hot 17 stories of the week
From getting busted on the Dark Web and the ‘super cookie’ stopped by Firefox to the grandmother billed $5K for alleged piracy, and more!
Ukrainian hackers ‘snatch huge email cache from Kremlin’
The emails reportedly show Russia’s organizing Ukrainian separatists. The hack, if legit, shows Russian leaders are as vulnerable as others.
Oil exec accused of impersonating Elon Musk in an email sues Tesla over Twitter hack
Todd Katz says Tesla illegally accessed his Twitter account in its investigation of a Yahoo email crafted to look like it came from Musk.