SoundCloud Tackles DoS, Account Takeover Issues
Among other issues, the music platform didn’t limit the number of login attempts someone could make.
Source: Threat Post – Web Security
[...]
issues
Microsoft Issues Advisory for Windows Hello for Business
An issue exists in Windows Hello for Business when public keys persist after a device is removed from Active Directory, if the AD
[...]
Microsoft Issues 9 Critical Security Patches
None of the total 59 patches were for previously known vulnerabilities nor are any under active attack, Microsoft reports.
Source: Dark Reading
[...]
FBI Plans to Monitor Social Media May Spark Privacy Issues
A new initiative to pull data from social media platforms may clash with policies prohibiting the use of information for mass surveillance.
[...]
FBI Issues Relationship Fraud/Confidence Scheme Warning
Criminals are getting increasingly sophisticated in their efforts to commit fraud and recruit ‘money mules,’ according to the FBI.
Source: Dark Reading
[...]
Apple Issues Silent Update Removing Zoom’s Hidden Server
The tech giant addressed a widely publicized Zoom bug with an automatic update mechanism usually reserved for removing malware.
Source: Threat Post
[...]
NIST Issues IoT Risk Guidelines
A new report offers the first step toward understanding and managing IoT cybersecurity risks.
Source: Dark Reading – Threat Intelligence – NIST
[...]
Tor Browser Issues Update for Critical System Takeover Flaw
The update patches critical flaw (CVE-2019-11707), a type confusion vulnerability in the Mozilla Firefox code that Tor uses.
Source: Threat Post –
[...]
Microsoft Issues Fixes for 88 Vulnerabilities
Four of the flaws are publicly known but none have been listed as under active attack.
Source: Dark Reading – Threat Intelligence
[...]
NSA Issues Advisory for 'BlueKeep' Vulnerability
The National Security Agency joins Microsoft in urging Windows admins to patch wormable bug CVE-2019-0708.
Source: Dark Reading – Threat Intelligence –
[...]