23 Texas towns hit in coordinated ransomware attack
The Texas Department of Information Resources (DIR) has confirmed late Friday that 23 towns across Texas were victims of a coordinated ransomware attack.
Critical Exim vulnerability discovered and patched (update)
Researchers at Qualys discovered a critical remote command execution vulnerability in Exim, a popular mail transfer agent (MTA) used on mostly Unix-like operating systems.
WhatsApp vulnerability could be exploited to install spyware
A vulnerability in Facebook's WhatsApp could allow attackers to install spyware on impacted smartphones.
Samba fixes two security vulnerabilities
Samba has released fixes for two security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
Firefox Send – a new free encrypted file transfer service
Mozilla just introduced Firefox Send, a free encrypted file transfer service that allow users to safely and simply share files via any browser.
NIST SP 800-177 Revision 1: “Trustworthy Email”
The National Institute of Standards and Technology (NIST) has releases its Security Publication (SP) 800-177 Revision 1, that include security guidelines and recommendations for achieving "trustworthy email".
Apple releases iOS 12.1.4, fix for Group FaceTime bug
Apple has released iOS 12.1.4 that addresses multiple vulnerabilities, to include a Group FaceTime bug discovered by an Arizona high school student and a security researcher from Texas.
Microsoft issues new advisory for “PrivExchange” vulnerability
Microsoft has released a new security advisory for an Elevation of Privilege vulnerability "PrivExchange" that impacts multiple versions of Microsoft Exchange Server.
Microsoft Exchange 2013 and newer versions vulnerable to NTLM relay attacks
Microsoft Exchange 2013 or newer versions are vulnerable to NTLM relay attacks and privileged escalation. Administrators should review and apply the necessary workarounds until a permanent patch is made available.
Serious iPhone FaceTime bug allows eavesdropping
A serious bug has been discovered in FaceTime, Apple's video and chat app for iPhones. The bug can allow a user to listen in on another iPhone users conversation before they pickup and without the recipient's knowledge.