Web Security Archives | CW Enterprises

Articles targeted at Web App Security, hacks, guides, how to’s and the latest vulnerabilities.

Cisco Webex Flaw Lets Unauthenticated Users Join Private Online Meetings

24th January 2020Lindsey O Donnell

The flaw could allow a remote, unauthenticated attacker to enter a password-protected video conference meeting. Source: Threat Post – Web Security – [...]

Fake Smart Factory Honeypot Highlights New Attack Threats

24th January 2020Elizabeth Montalbano

The honeypot demonstrates the various security concerns plaguing vulnerable industrial control systems. Source: Threat Post – Web Security – Fake Smart Factory [...]

Shlayer, No. 1 Threat for Mac, Targets YouTube, Wikipedia

23rd January 2020Tara Seals

The malware uses thousands of partner websites to spread malvertising code. Source: Threat Post – Web Security – Shlayer, No. 1 Threat [...]

Cisco Warns of Critical Network Security Tool Flaw

23rd January 2020Lindsey O Donnell

The critical flaw exists in Cisco’s administrative management tool, used with network security solutions like firewalls. Source: Threat Post – Web Security [...]

Google: Flaws in Apple’s Private-Browsing Technology Allow for Third-Party Tracking

23rd January 2020Elizabeth Montalbano

New research outlines vulnerabilities in Safari’s Intelligent Tracking Protection that can reveal user browsing behavior to third parties. Source: Threat Post – [...]

Vivin Nets Thousands of Dollars Using Cryptomining Malware

22nd January 2020Lindsey O Donnell

A newly discovered threat actor named Vivin is raking in Monero from cryptomining malware, showing that this type of attack isn’t going away [...]

Microsoft Leaves 250M Customer Service Records Open to the Web

22nd January 2020Tara Seals

The trove of information is potentially a scammer’s bonanza. Source: Threat Post – Web Security – Microsoft Leaves 250M Customer Service Records [...]

PoC Exploits Do More Good Than Harm: Threatpost Poll

22nd January 2020Lindsey O Donnell

More than half of security experts think that the good outweighs the bad when it comes to proof-of-concept exploits, according to a recent [...]

16Shop Phishing Gang Goes After PayPal Users

21st January 2020Tara Seals

A sophisticated malware-as-a-service phishing kit includes full customer service and anti-detection technologies. Source: Threat Post – Web Security – 16Shop Phishing Gang [...]

Microsoft Zero-Day Actively Exploited, Patch Forthcoming

21st January 2020Tara Seals

CVE-2020-0674 is a critical flaw for most Internet Explorer versions, allowing remote code execution and complete takeover. Source: Threat Post – Web [...]