Mike Mimoso and Chris Brook discuss the week in news–including how researchers disrupted a campaign using the Angler Exploit Kit, how a researcher was forced to pull a talk from a conference, and how a practical SHA-1 collision could be months away, not years.
Browsing Category: Web Security
Researchers took a big step towards eradicating the Angler exploit kit, disrupting a large ransomware campaign connected to the kit that purportedly netted a hacker behind it more than $60 million annually.
Citing vendor pressure, a researcher pulled a talk at HITB GSEC Singapore on the security of IP-enabled surveillance cameras.
The popular Jetpack WordPress plugin was updated this week in order to patch a critical stored cross-site scripting vulnerability.
Unsupported versions of Honeywell distributed control system software are vulnerable to publicly available remote exploits.
The Dyreza, or Dyre, Trojan has been spotted phishing credentials in attacks against the IT supply chain.
Developers at Mozilla pushed out Firefox 41 this week and brought some much needed relief to AdBlockPlus users by finally fixing a 14-year old bug in the browser.
DHS CERT published an alert prompted by a paper delivered at USENIX regarding the security of browser cookies.
Researchers with Google and a handful of universities believe security practitioners need to focus on evaluating how cybercriminals adapt to interventions instead of trying to protect users.