software Archives - Help Net Security

software

Micropatch simulates workaround for recent zero-day IE flaw, removes negative side effects

January 21, 2020

ACROS Security has released a micropatch that implements the workaround for a recently revealed actively exploited zero-day RCE flaw affecting Internet Explorer …

Worldwide IT spending to total $3.9 trillion in 2020

January 17, 2020

Worldwide IT spending is projected to total $3.9 trillion in 2020, an increase of 3.4% from 2019, according to the latest forecast by Gartner. Global IT spending is expected …

Attackers exploiting critical Citrix ADC, Gateway flaw, company yet to release fixes

January 9, 2020

Nearly a month has passed since Citrix released mitigation measures for CVE-2019-19781, a critical vulnerability affecting Citrix Application Delivery Controller and Citrix …

App on Google Play exploited Android bug to deliver spyware

January 8, 2020

Google has pulled three malicious apps from Google Play, one of which exploits a recently patched kernel privilege escalation bug in Android (CVE-2019-2215) to install the app …

Cisco Data Center Network Manager flaws fixed, Cisco ASA appliances under attack

January 6, 2020

Cisco has fixed 12 vulnerabilities in Cisco Data Center Network Manager (DCNM), a platform for managing Cisco switches and fabric extenders that run NX-OS, and has warned …

Windows 7 is reaching end-of-extended-support, what to do?

December 16, 2019

Windows 7, released in October 2009, was one of Microsoft’s big successes. Ten years later and despite its end-of-extended-support deadline being imminent (January 14, …

Enterprises reaching a security tool tipping point

December 11, 2019

A rapid increase in the number of security tools used by large companies is limiting their return on investment while increasing the risk of cyber threats, according to …

CrackQ: Efficient password cracking for pentesters and red teamers

December 4, 2019

CrackQ employs automation to make password cracking a faster and more efficient undertaking for pentesters and red teamers. CrackQ dashboard “Regular security testing is …

Android camera apps could be hijacked to spy on users

November 19, 2019

A vulnerability in the Google Camera app may have allowed attackers to surreptitiously take pictures and record videos even if the phone is locked or the screen is off, …

WhatsApp RCE flaw can be exploited by sending malicious MP4 files

November 18, 2019

Facebook has patched a critical vulnerability (CVE-2019-11931) affecting various versions of its popular WhatsApp Messenger app and is urging users to update as soon as …

Attack tools and techniques used by major ransomware families

November 15, 2019

Ransomware tries to slip unnoticed past security controls by abusing trusted and legitimate processes, and then harnesses internal systems to encrypt the maximum number of …

New, improved Microsoft 365 security and compliance features

November 6, 2019

Microsoft has announced a number of enhancements to help its business and enterprises customers improve security and compliance efforts. Among these is a new solution for …

software

Micropatch simulates workaround for recent zero-day IE flaw, removes negative side effects

Worldwide IT spending to total $3.9 trillion in 2020

Attackers exploiting critical Citrix ADC, Gateway flaw, company yet to release fixes

App on Google Play exploited Android bug to deliver spyware

Cisco Data Center Network Manager flaws fixed, Cisco ASA appliances under attack

Windows 7 is reaching end-of-extended-support, what to do?

Enterprises reaching a security tool tipping point

CrackQ: Efficient password cracking for pentesters and red teamers

Android camera apps could be hijacked to spy on users

WhatsApp RCE flaw can be exploited by sending malicious MP4 files

Attack tools and techniques used by major ransomware families

New, improved Microsoft 365 security and compliance features

Don't miss

First patches for the Citrix ADC, Gateway RCE flaw released

Researchers create OT honeypot, attract exploits and fraud

Mitsubishi Electric discloses data breach, possible data leak

Data-driven vehicles: The next security challenge

Review: Enzoic for Active Directory