November 29, 2017
Recently Apple introduced its operating system “High Sierra” which does not set by default a password for the highest privilege account “root”. As a consequence, there is a root login vulnerability in macOS High Sierra. Apple is aware of this as the vulnerability was actually discussed it on their Developer Forum (as a solution to another problem) (Read full entry)
October 20, 2017
In recent weeks security researchers announced a newly discovered vulnerability dubbed KRACK (Key Reinstallation Attack), which affects several common security protocols for Wi-Fi, including WPA (Wireless Protected Access) and WPA2. This vulnerability likely affects billions of devices globally. While concerning and though receiving overblown media coverage it is important to keep things in perspective. (Read full entry)
June 28, 2017
A large-scale ransomware attack reported to be caused by a variant of the Petya ransomware is currently hitting various users, particularly in Europe. This variant, which Trend Micro already detects as RANSOM_PETYA.SMA, is known to use both the EternalBlue exploit and the PsExec tool as infection vectors. (Read full entry)
Published on and maintained in Cascade CMS.