XRSI may have found a way around the new Oculus Quest 2 Facebook login. Technical users will sometimes root a device to gain complete control over the device. This option for users commonly occurs with most of the popular phones and tablets available so usually, it doesn't mean much. We do find a reason to root this device The Quest2 VR, owned by Facebook, requires a Facebook … [Read more...]
Top Election Security Threats
With the US elections only a week away, we're talking election security on this week's episode. We'll cover what we do and don't think attackers will target in the coming week and what we can do as a country to improve our security posture. … [Read more...]
Are Your Company Credentials Exposed on the Dark Web?
The dark web is a collection of anonymous websites that are publicly available, yet hide the IP addresses to make it impossible for users to identify the host. It’s very common that sensitive information made available by data breaches ends up becoming available illicitly for sale on the dark web. According to the 2019 Global State of Cybersecurity in Small and Medium-Sized … [Read more...]
UK, Canada and US All Warn of New Attacks on Covid-19 Research
The UK Cyber Security Center (NCSC) and Canada’s Communications Security Establishment (CSE) with the help of the NSA released an advisory today on attacks from APT29 (also known as ‘the Dukes’ or ‘Cozy Bear’), a group with ties to the Russian intelligence services. "APT29 is using custom malware known as ‘WellMess’ and ‘WellMail’ to target a number of organisations … [Read more...]
VMware Cloud Server Takeover Vulnerability
Earlier this week, Citadelo published a vulnerability they found in the VMware Cloud software. Small Cloud providers use VMware Cloud software to support virtual servers and manage the environment through the Director module in the software. Citadelo found a remote execution vulnerability in this management software. Citadelo also noted they could do the following … [Read more...]
