US authorities can hack iPhone, but may have difficulties with Android

Although the US authorities are persistent in waging a “cryptographic war” with technology companies, demanding weakening of encryption, they already have technical tools for cracking any phone. For example, US authorities can certainly hack any iPhone. Firstly, law enforcement agencies are successfully using forensic tools for mobile devices (for example, the FBI managed to crack… Continue reading US authorities can hack iPhone, but may have difficulties with Android

IS specialists studied working methods of the REvil (Sodinokibi) ransomware operators

Information security specialists of the Danish provider KPN applied sinkholing to REvil (Sodinokibi) cryptographic servers and studied the working methods of one of the largest ransomware threats today. Revall that REvil works under the “ransomware as a service” (RaaS) scheme, which means malware is leased to various criminal groups. “Due to the fact that there… Continue reading IS specialists studied working methods of the REvil (Sodinokibi) ransomware operators

97 of the 100 largest airports use vulnerable sites and web applications

Specialists from the Swiss company ImmuniWeb conducted an analysis of the cybersecurity level of the 100 world largest airports (in Asia, Europe, North America, Australia, Africa and South America). According to the study, 97 of the 100 largest airports in the world use vulnerable sites and web applications and may be a subject to other… Continue reading 97 of the 100 largest airports use vulnerable sites and web applications

Free Software Foundation encourages Microsoft to open Windows 7 source code

Admit that are you already tired of the news about Windows 7. Let it finally rest in peace. However, it’s hard to ignore that Microsoft, under pressure of the public opinion, will nevertheless release a patch from a bug that appeared as a result of installing the last “farewell” patch for all Windows 7 users,… Continue reading Free Software Foundation encourages Microsoft to open Windows 7 source code

Citrix releases new patches, racing with the hackers that install encryptors on vulnerable machines

Destructive race: Citrix releases new patches, and hackers are actively attacking vulnerable servers and installing encryption engines on them. It seems that users are losing. At the beginning of this year was discovered CVE-2019-19781 vulnerability, which affects a number of versions of Citrix Application Delivery Controller (ADC), Citrix Gateway, as well as two old versions… Continue reading Citrix releases new patches, racing with the hackers that install encryptors on vulnerable machines

Windows 7 users will not receive a patch for critical vulnerability in the IE

Microsoft said that Windows 7 users will not receive a patch for a critical vulnerability in IE. The fix will be available only to Windows 7 users, which paid for extended support. Just a few days after the end of official support for Windows 7, it became known about a critical vulnerability in Internet Explorer,… Continue reading Windows 7 users will not receive a patch for critical vulnerability in the IE

Windows EFS can help encryptors and make work of antiviruses more difficult

Safebreach Labs reported that attackers could use the Windows Encrypting File System (EFS) for their needs. Windows EFS can help encryptors and make work of antiviruses more difficult. EFS has been part of Windows operating systems since the release of Windows 2000. Unlike full BitLocker encryption, EFS can selectively encrypt individual files or folders. Researchers… Continue reading Windows EFS can help encryptors and make work of antiviruses more difficult

Temporary patch for 0-day vulnerability in Internet Explorer arrived on the Internet

Earlier this week, Microsoft announced about vulnerability in Internet Explorer, which is already exploited for “limited targeted attacks”. Now arrived temporary patch for this 0-day vulnerability in Internet Explorer. The problem received the identifier CVE-2020-0674 and it is associated with a vulnerability in the Firefox browser. Apparently, the mentioned “limited attacks” are part of a… Continue reading Temporary patch for 0-day vulnerability in Internet Explorer arrived on the Internet

Government hackers attacked companies more often in 2019

Organizations are more likely to become victims of state-sponsored cybercriminals. Government hackers in 2019 began to attack companies around the world more often. 25% of companies associate attacks on their business with cyber warfare or actions of other states, as showed results of a survey that conducted Radware specialists. In 2018, only 19% of organizations… Continue reading Government hackers attacked companies more often in 2019

Unknown hacker patches vulnerable Citrix servers

Recently, in the public domain appeared exploits for the critical vulnerability CVE-2019-19781, earlier found in the Citrix Application Delivery Controller (NetScaler ADC) and Citrix Gateway (NetScaler Gateway). Now it was reported that an unknown hacker accesses vulnerable Citrix servers and patches them. Recall that according to experts, this problem threatens 80,000 companies in 158 countries… Continue reading Unknown hacker patches vulnerable Citrix servers