Hackers exploiting Exim vulnerabilities
Hackers have been recently targeting at least two vulnerabilities on unpatched Exim email systems. Exim has already released two updates in September that fixes each of the flaws.
Phosphorus threat group targets email accounts
Microsoft has warned a cyber threat group dubbed Phosphorus has recently targeted email accounts belonging to Microsoft customers.
23 Texas towns hit in coordinated ransomware attack
The Texas Department of Information Resources (DIR) has confirmed late Friday that 23 towns across Texas were victims of a coordinated ransomware attack.
Critical Exim vulnerability discovered and patched (update)
Researchers at Qualys discovered a critical remote command execution vulnerability in Exim, a popular mail transfer agent (MTA) used on mostly Unix-like operating systems.
WhatsApp vulnerability could be exploited to install spyware
A vulnerability in Facebook's WhatsApp could allow attackers to install spyware on impacted smartphones.
Samba fixes two security vulnerabilities
Samba has released fixes for two security vulnerabilities that impact Samba products. A remote attacker could take advantage of these bugs and exploit unpatched systems.
Firefox Send – a new free encrypted file transfer service
Mozilla just introduced Firefox Send, a free encrypted file transfer service that allow users to safely and simply share files via any browser.
NIST SP 800-177 Revision 1: “Trustworthy Email”
The National Institute of Standards and Technology (NIST) has releases its Security Publication (SP) 800-177 Revision 1, that include security guidelines and recommendations for achieving "trustworthy email".
Apple releases iOS 12.1.4, fix for Group FaceTime bug
Apple has released iOS 12.1.4 that addresses multiple vulnerabilities, to include a Group FaceTime bug discovered by an Arizona high school student and a security researcher from Texas.
Microsoft issues new advisory for “PrivExchange” vulnerability
Microsoft has released a new security advisory for an Elevation of Privilege vulnerability "PrivExchange" that impacts multiple versions of Microsoft Exchange Server.