What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in Vulnerabilities

‘Scheme Flooding’ Allows Websites to Track Users Across Browsers

A flaw that allows browsers to enumerate applications on a machine threatens cross-browser anonymity in Chrome, Firefox, Microsoft Edge, Safari and even Tor. A security researcher has discovered a vulnerability that allows websites to track users across a number of different desktop browsers — including Apple Safari, Google Chrome, Microsoft Edge, Mozilla . . . Read more

Verizon: Pandemic Ushers in ⅓ More Cyber-Misery

The DBRI – Verizon’s 2021 data breach report – shows spikes in sophisticated phishing, financially motivated cyberattacks and a criminal focus on web-application servers. Thanks for just showing up, said the team that cranked out the Verizon 2021 Data Breach Investigations Report (DBIR). It’s quite the accomplishment that we all . . . Read more

Ransomware Going for $4K on the Cyber-Underground

An analysis of three popular forums used by ransomware operators reveals a complex ecosystem with many partnerships. In the cybercriminal underground, ransomware samples and builders are going for anywhere between $300 to $4,000, with ransomware-as-a-service rentals costing $120 to $1,900 per year. That’s according to an analysis by Kaspersky of . . . Read more

Apple’s ‘Find My’ Network Exploited via Bluetooth

The ‘Send My’ exploit can use Apple’s locator service to collect and send information from nearby devices for later upload to iCloud servers. Apple’s “Find My device” function for helping people track their iOS and macOS devices can be exploited to transfer data to and from random passing devices without using . . . Read more

Researchers Flag e-Voting Security Flaws

Paper ballots and source-code transparency are recommended to improve election security. A group of election security experts said after a deep dive into Australia’s electronic voting systems that they have “serious problems” with the accuracy, integrity and privacy with elections run by the Australian Capital Territory (ACT) Electoral Commission. The . . . Read more

Wormable Windows Bug Opens Door to DoS, RCE

Microsoft’s May 2021 Patch Tuesday updates include fixes for four critical security vulnerabilities. Microsoft’s May Patch Tuesday release addressed a modest 55 cybersecurity vulnerabilities, including just four critical bugs. It’s the smallest monthly update from the computing giant since 2020, but it does contain a patch for a concerning wormable . . . Read more