Robert Abel

Content Coordinator/Reporter, SC Media US
Riltok banking trojan begins targeting Europe

Riltok banking trojan begins targeting Europe

Riltok is distributed from infected devices via SMS, disguised as apps for popular free ad services in Russia

Dell SupportAssist bug leaves millions of PCs vulnerable

Dell SupportAssist bug leaves millions of PCs vulnerable

A remote attack can exploit the flaw by tricking a victim into downloading a malicious file to a certain folder

Apache advisory addresses incomplete Tomcat update

Apache advisory addresses incomplete Tomcat update

The issue was caused by an incomplete fix for the CVE-2019-019 vulnerability that did not address the window exhaustion on write

Palo Alto's Unit 42 discovered 10 'Important' Microsoft bugs

Palo Alto's Unit 42 discovered 10 'Important' Microsoft bugs

All but one of the bugs were remote code execution (RCE) flaws - the exception was an escalation of privilege vulnerability bug caused by a Windows Error Reporting Elevation of Privilege Vulnerability

Apple releases eight updates for AirPort Base Station bugs

Apple releases eight updates for AirPort Base Station bugs

These vulnerabilities in AirPort Express, AirPort Extreme, and AirPort Time Capsule wireless routers with 802.11n could allow a remote attacker to take control of an affected system

Oracle releases second WebLogic Server patch in two months

Oracle releases second WebLogic Server patch in two months

The previous flaw, announced in April, was being used in cryptojacking and ransomware campaigns

Cisco announced 26 vulnerabilities in over the last two days, three critical

Cisco announced 26 vulnerabilities in over the last two days, three critical

Cisco also notified users of a remote command execution vulnerability in several of its routers that can allow a remote attacker to execute arbitrary code on an affected device

Firefox updates address takeover vulnerability

Firefox updates address takeover vulnerability

The issue was addressed and patched in Firefox 67.0.3 and Firefox ESR 60.7.1

Hoax PC cleaner software on the rise, report

Hoax PC cleaner software on the rise, report

These programs deliberately mislead the user by greatly overstating the risk or even reporting non-existent errors

Samba security updates address flaws that could be used to execute DoS attacks

Samba security updates address flaws that could be used to execute DoS attacks

The update two months after NamPoHyu, a ransomware strain that goes after vulnerable Samba servers, was discovered