Friday, May 26, 2017
           (757) 873-6707                     Monday - Friday, 9 am - 5:30pm
Android Overlay and Accessibility Features Leave Millions at Risk Researchers warn two features, not flaws, in Android can be used together to open devices up to attack.
Twitter Flaw Could Have Allowed Attacker to Tweet From Any Account Twitter fixed a flaw in its Twitter Ads service could have allowed an attacker to tweet as any user.
Malware Network Communication Provides Better Early Warning Signal An academic paper to be presented today at IEEE posits that analysis of network signals provides a better early warning of malware than infections than current practices.
WordPress Fixes CSRF, XSS Bugs, Announces Bug Bounty Program WordPress fixed six vulnerabilities with version 4.7.5 and announced a bug bounty program with HackerOne this week.

Latest News

Trump’s Cybersecurity Boss Talks Priorities

The country's top cybersecurity boss said the country is headed the wrong way when it comes to cybersecurity.

Verizon Patches XSS Issues in its Messaging Client

Verizon patched late last year persistent- DOM-based cross-site scripting vulnerabilities in its Message+ messaging client that could allow an attacker to control a user's session.

EternalRocks Worm Spreads Seven NSA SMB Exploits

A worm called EternalRocks has been spreading seven Windows SMB exploits leaked by the ShadowBrokers, including EternalBlue, which was used to spread WannaCry.

Jaya Baloo on WannaCry and Defending Against Advanced Attacks

Jaya Baloo, CISO of KPN, the Netherlands’ leading telecommunications provider, talks to Mike Mimoso about the WannaCry ransomware outbreak and how large network providers and enterprises must contend with advanced attacks.

Terror Exploit Kit Evolves Into Larger Threat

The Terror exploit kit has matured into a greater threat and carefully crafts attacks based on a user's browser environment.

Available Tools Making Dent in WannaCry Encryption

Tools are beginning to emerge that can be used to begin the process of recovering files encrypted by WannaCry on some Windows systems.

VMware Patches Multiple Security Issues in Workstation

VMware fixed two bugs in its VMware Workstation late Thursday night, including an insecure library loading vulnerability and a NULL pointer dereference vulnerability.

Threatpost News Wrap, May 19, 2017

Mike Mimoso and Chris Brook discuss WannaCry, Microsoft's response, the killswitches, a potential link with Lazarus Group, and what the future holds for the ShadowBrokers.

PATCH Act Calls for VEP Review Board

The PATCH Act proposes the formation of a review board that would formalize and make transparent the processes by which the government determines whether it will use or disclose a zero-day vulnerability.

Android Gets Security Makeover With Google Play Protect

Google announces big changes for Android security including new features, a rebranding of old services and an updated UI, all streamlined under a new service called Google Play Protect.