Recently Amazon, Microsoft, and others have taken a step back to review the use of their own face recognition software. Some users of this technology may use only face recognition to identify a person. This idea that you only need the face recognition software to identify a person doesn’t allow for errors in the programming and we all know that programs have errors. Understand … [Read more...]
ClearSky’s $200 Million Lesson on Security for High Value Targets
Yesterday ClearSky, a security research group, released a report on a threat actor group called CryptoCore. As you may guess by the name, CryptoCore specifically targets cryptocurrency wallets and exchanges. This group carefully and methodically social engineers companies that run exchanges for cryptocurrency like Bitcoin. At first, they target the personal account of an … [Read more...]
RIpple20 Causes Waves in Network Security
Last week JSOF, a cybersecurity team, released 19 vulnerabilities found in a library developed by Treck, Inc. Two of these include code execution vulnerabilities. According to the report, millions of devices ranging from printers to other embedded networking devices use the Treck library as the TCP/IP stack. JSOF hasn't released too many details on most of the … [Read more...]
FBI Warns of an Increase in Malicious Banking Apps
This week the FBI issued a warning on the increased use of mobile banking apps. With more mobile banking usage by Americans, the FBI predicts an increased threat by cyber criminals targeting these apps. The FBI estimates that more than 75% of Americans used mobile banking in 2019. Another study indicated a 50% increase in mobile banking this year. These exploits come as … [Read more...]
VMware Cloud Server Takeover Vulnerability
Earlier this week, Citadelo published a vulnerability they found in the VMware Cloud software. Small Cloud providers use VMware Cloud software to support virtual servers and manage the environment through the Director module in the software. Citadelo found a remote execution vulnerability in this management software. Citadelo also noted they could do the following … [Read more...]
