Zeljka Zorz, Author at Help Net Security

“Classic” bugs open TP-Link’s SafeStream Gigabit Broadband VPN Router to attack

November 20, 2018
Cisco
router
security update

Cisco Talos researchers have flagged four serious vulnerabilities in TP-Link’s SafeStream Gigabit Broadband VPN Router (TL-R600VPN). All four affect the device’s …

New security feature to prevent Amazon S3 bucket misconfiguration and data leaks

Hardly a week goes by that we don’t hear about an organization leaving sensitive data exposed on the Internet because they failed to properly configure their Amazon S3 …

Helping researchers with IoT firmware vulnerability discovery

November 19, 2018
automation
Finite State
firmware

John Toterhi, a security researcher with IoT security company Finite State, believes that many of the security problems plaguing IoT devices are solvable problems through …

November 2018 Patch Tuesday: Microsoft fixes 63 flaws, one actively exploited zero-day

November 14, 2018
0-day
Kaspersky Lab
Microsoft

As part of the November 2018 Patch Tuesday, Microsoft has released 62 security patches and several advisories. There are 12 critical vulnerabilities among those patched this …

BEC scammers stole €19m from film company Pathé

November 14, 2018
BEC scams
CEO
cybercrime

The Dutch branch of the French film production and distribution company Pathé has lost over 19 million euros to BEC scammers, Dutch News reported. The scam Information about …

Cybersecurity and ethical data management: Getting it right

Data can provide information, information can lead to insight and knowledge, and knowledge is power. It’s no wonder, then, that seemingly everybody in this modern, …

1 in 5 merchants compromised by Magecart get reinfected

The Magecart threat looms large for online retailers and their customers, as the criminal groups that have been assigned this collective name are constantly trying out new …

Chrome will start warning users about shady mobile subscription pages

November 9, 2018
browser
Chrome
Google

Google has announced that, starting from Chrome 71, users will be explicitly warned when attempting to visit pages that try to trick them into signing up for mobile-based …

How email fraud tactics continue to find new life

November 9, 2018

Almost as soon as email became widely used, crooks and scammers began using it as a means to defraud people. In today’s world, malicious fake emails continue to be a …

VirtualBox Guest-to-Host escape 0day and exploit released online

November 7, 2018
0-day
exploit
open source

Independent vulnerability researcher Sergey Zelenyuk has made public a zero-day vulnerability he discovered in VirtualBox, the popular open source virtualization software …