IT Lines

What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in Vulnerabilities

IoT Device Takeovers Surge 100 Percent in 2020

23 Oct, 2020 Android, COVID-19, device infection, device takeover, Hacks, Internet of things, IoT, IoT security, Malware, mobile networks, nat, network address translation, Nokia, Pandemic, Security News, threat intelligence report, Vulnerabilities, Web Security, Windows 0 Comments

The COVID-19 pandemic, coupled with an explosion in the number of connected devices, have led to a swelling in IoT infections observed on wireless networks. Connected cameras, refrigerators and other seemingly-mundane internet-of-things (IoT) devices are a cybercriminal favorite this year, with new research showing a sharp increase (100 percent) in . . . Read more

Election Security: Beyond Mail-In Voting

23 Oct, 2020 election results, election security, Government, Hackers, Hacks, InfoSec Insider, infrastructure, joseph carson, mail in voting, Security News, security risks, Thycotic, Vulnerabilities, Web Security 0 Comments

There are many areas of the election process that criminal hackers can target to influence election results. As a highly publicized event, every four years the U.S presidential election comes with inevitable security risks — and interest from high-level hackers and sophisticated cybercriminals looking to sway its results. The upcoming . . . Read more

Nvidia Warns Gamers of Severe GeForce Experience Flaws

23 Oct, 2020 Bug, code execution, CVE-2020-5977, CVE-2020-5990, Denial of Service, DoS, enthusiast gaming, gamer, geforce experience, GeForce GTX graphics card, GPU, graphics driver, Hacks, high severity flaw, Nvidia, Nvidia GeForce 3.20.5.70, Security News, security vulnerability, Vulnerabilities, Web Security, Windows 0 Comments

Versions of Nvidia GeForce Experience for Windows prior to 3.20.5.70 are affected by a high-severity bug that could enable code execution, denial of service and more.

Microsoft Teams Phishing Attack Targets Office 365 Users

22 Oct, 2020 Credentials, Hacks, malicious email, malicious link, Microsoft, microsoft teams, Office 365, phishing campaign, Phishing emails, phishing link, Security News, Vulnerabilities, Web Security 0 Comments

Up to 50,000 Office 365 users are being targeted by a phishing campaign that purports to notify them of a “missed chat” from Microsoft Teams. Researchers are warning of a phishing campaign that pretends to be an automated message from Microsoft Teams. In reality, the attack aims to steal Office . . . Read more

Facebook, News and XSS Underpin Complex Browser Locker Attack

22 Oct, 2020 browser locker, Cross Site Scripting, Facebook, grupo ppe, Malwarebytes, news site, Open Redirect, peru, redirections, security bug, Security News, tech support scam, Vulnerabilities, Web Security, XSS 0 Comments

An elaborate set of redirections and hundreds of URLs make up a wide-ranging tech-support scam. A sophisticated “browser locker” campaign is spreading via Facebook, ultimately pushing a tech-support scam. The effort is more advanced than most, because it involves exploiting a cross-site scripting (XSS) vulnerability on a popular news site, . . . Read more

Bug Parade: NSA Warns on Cresting China-Backed Cyberattacks

21 Oct, 2020 advanced persistent threats, apt, bluekeep, bug parade, Bugs, Cactus Pete, China, china backed, chinese, CVE-2019-11510, Cyberattacks, Exchange, f5, Government, Microsoft Windows, most exploited, nation state, NSA, Patches, pulse vpn, Security News, Security Vulnerabilities, TA413, top 25, top exploits, vicious panda, Vulnerabilities, winniti, zerologon 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Cisco Warns of Severe DoS Flaws in Network Security Software

21 Oct, 2020 Adaptive Security Appliance, Bugs, Cisco, Cross-site request forgery, CSRF, CVE-2020-3456, CVE-2020-3499, CVE-2020-3562, CVE-2020-3563, CVE-2020-3571, Denial of Service, DoS, firepower threat defense, Patches, Security News, Security Vulnerabilities, Vulnerabilities, Web Security 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Oracle Kills 402 Bugs in Massive October Patch Update

21 Oct, 2020 CPU, Critical Patch Update, CVE-2020-14871, CVE-2020-1953, Oracle, Oracle Communications, Oracle E-Business Suite, Oracle Financial Services Applications, Oracle Fusion Middleware, Oracle MySQL, Oracle Retail Applications, quarterly patch update, remote code execution, Security News, Security Update, Vulnerabilities, Web Security 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Google Patches Actively-Exploited Zero-Day Bug in Chrome Browser

21 Oct, 2020 Browser, chrome, freetype, google, Google Project Zero, Linux, Mac, Security News, Security Researchers, Sergei Glazunov, Vulnerabilities, Windows, zero day, Zero Day Project 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Adobe Fixes 16 Critical Code-Execution Bugs Across Portfolio

20 Oct, 2020 adobe, after effects, animate, arbitrary code execution, creative cloud installer, critical, dreamweaver, illustrator, InDesign, marketo, Media Encoder, october 2020, out of band, Patches, photoshop, premiere pro, Security News, Security Updates, Vulnerabilities, XSS 0 Comments

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.