Go to Admin » Appearance » Widgets » and move Gabfire Widget: Social into that MastheadOverlay zone
PDF includes SMB Link https://isc.sans.edu/forums/diary/Suspicious+PDF+Connecting+to+a+Remote+SMB+Share/24646/QNAP Malware https://www.qnap.com/en/security-advisory/nas-201902-13Bomb Threat Spammers Arrested https://www.justice.gov/usao-cdca/pr/members-hacker-collective-face-federal-charges-attacking-computer-systems-emailing-massManaged Service Providers Targeted By Ransomware https://www.bleepingcomputer.com/news/security/ransomware-attacks-target-msps-to-mass-infect-customers/…
Fake Updates Campaign Still Active in 2019 https://isc.sans.edu/forums/diary/Fake+Updates+campaign+still+active+in+2019/24640/macOS Malware (Shlayer) Disables Gatekeeper https://www.carbonblack.com/2019/02/12/tau-threat-intelligence-notification-new-macos-malware-variant-of-shlayer-osx-discovered/Microsoft Exchange Server Patch (Errata for yesterday’s podcast) https://support.microsoft.com/en-ca/help/4490060/exchange-web-services-push-notifications-can-provide-unauthorized-acceCisco Network Assurance Engine Password Synchronization Issue https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190212-nae-dosVFEMail Backup Failure…
Microsoft Patch Tuesday https://isc.sans.edu/forums/diary/Microsoft+February+2019+Patch+Tuesday/24638/Adobe Updates https://helpx.adobe.com/security.htmlUbuntu Linux snapd “dirty_sock” exploit https://shenaniganslabs.io/2019/02/13/Dirty-Sock.html…
The Naked Security podcast pokes a stick into the latest critical security bugs in Android, investigates the dubious art of iOS screenshots you didn’t take yourself, and marvels at the…
Severe Docker runc Vulnerability https://seclists.org/oss-sec/2019/q1/119MacOS Mojave Privacy Flaw https://lapcatsoftware.com/articles/mojave-privacy3.htmlAndroid Malware Steals Crypto Addresses from Clipboard https://www.welivesecurity.com/2019/02/08/first-clipper-malware-google-play/Not An E-Mail Virus, Just Intersting Malware https://isc.sans.edu/forums/diary/Have+You+Seen+an+Email+Virus+Recently/24634/…
Phishing Kit with JavaScript Keylogger https://isc.sans.edu/forums/diary/Phishing+Kit+with+JavaScript+Keylogger/24622/Phishing Via Google Translate https://blogs.akamai.com/sitr/2019/02/phishing-attacks-against-facebook-google-via-google-translate.htmliPhone Apps Record Screens https://techcrunch.com/2019/02/06/iphone-session-replay-screenshots/Packet Challenge https://johannes.homepc.org/packet10.txt…
Value of UAC https://isc.sans.edu/forums/diary/UAC+is+not+all+that+bad+really/24620/Apple Releases Facetime Patch https://support.apple.com/en-us/HT201222Skype Video Now Allows For Blurred Background https://blogs.skype.com/news/2019/02/06/introducing-background-blur-in-skype/Microsoft Exchange Server Advisory https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/adv190007…
Android Monthly Security Update https://source.android.com/security/bulletin/2019-02-01.htmlSkia Graphics Library Vulnerability https://googleprojectzero.blogspot.com/2019/02/the-curious-case-of-convexity-confusion.htmlGoogle Chrome Password Check https://chrome.google.com/webstore/detail/password-checkup/pncabnpcffmalkkjpajodfhijclecjno/relatedHancitor HelloFax Malspam https://isc.sans.edu/forums/diary/Hancitor+malspam+and+infection+traffic+from+Tuesday+20190205/24616/…
Mitigations against Mimikatz Style Attacks https://isc.sans.edu/forums/diary/Mitigations+against+Mimikatz+Style+Attacks/24612/LibreOffice Macro Vulnerability https://insert-script.blogspot.com/2019/02/libreoffice-cve-2018-16858-remote-code.htmlFirefox 65 Breaks HTTPS AV Scanning https://bugzilla.mozilla.org/show_bug.cgi?id=1523701RDP Client Vulnerabilities https://research.checkpoint.com/reverse-rdp-attack-code-execution-on-rdp-clients/DNS “Lookingglass” https://isc.sans.edu/tools/dnslookup.html…
The Naked Security podcast looks at who was at fault in a network home invasion, investigates how both Google and Facebook fell foul of Apple’s developer rules, and answers the…