Fake iOS Fitness Apps Steal Money
A series of iOS applications posing as fitness-tracking tools have been stealing users’ money by abusing the Touch ID feature, ESET has discovered. The trick used by the fake fitness…
Read MoreMalware Dropper Supports a Dozen Decoy Document Formats
A recently discovered malware dropper has the ability to use nearly a dozen decoy document file formats to drop various payloads, Palo Alto Networks security researchers warn. Dubbed CARROTBAT, the…
Read MoreSymantec Unveils USB Scanning Station for ICS, IoT Environments
Symantec on Wednesday unveiled a new product designed to protect critical infrastructure organizations, including industrial and Internet of Things (IoT) environments, against USB-borne threats. Industrial Control System Protection (ICSP) Neural…
Read MoreTTCSIRT-187.120518: TT-CSIRT Advisory – Cisco Security Updates
Cisco has released a security update stating that it has discovered a vulnerability in the web framework code of Cisco Prime License Manager (PLM) which could allow an unauthenticated, remote…
Read MoreTTCSIRT-186.120518: TT-CSIRT Advisory – Android Security Updates
Google has released a security update stating that the following issues have been discovered in the Android OS: a) Elevation of privilege vulnerability in Framework – (CVE-2018-9547). b) Information disclosure…
Read MoreTTCSIRT-185.112718: TT-CSIRT Advisory – Samba Security Updates
Samba Team has released a security update stating that all versions of Samba from ver 4.0.0 onwards are vulnerable to infinite query recursions caused by CNAME loops. Attackers can exploit…
Read More