Skip to content

Gotham Security Daily Threat Alerts

by on January 20, 2015

January 16, Softpedia – (International) Google reveals security flaw in Windows 7, 8.1, patch to be shipped in February. Researchers with Google released details and a proof of concept (PoC) for a vulnerability in Windows 7 and Windows 8.1 that could allow an attacker to encrypt or decrypt data. Microsoft stated that a fix for the vulnerability will be released in February. Source

January 16, Help Net Security – (International) One-click mobile fraud variant throws browser for a loop. Symantec researchers observed a variant of a mobile one-click fraud scam currently being used against users in Japan that creates a continuous barrage of pop-up ads when a user tries to close the ad which directs them to sign up for a paid service. The attack incapacitates the browser but other apps can be used and the attack can be stopped by clearing the contents of the browser cache. Source

January 16, Softpedia – (International) Teen arrested for last year’s DDoS attack on PSN and Xbox networks. Authorities in the U.K. in cooperation with the FBI arrested a man January 16 for allegedly participating in distributed denial of service (DDoS) attacks against the Sony Playstation and Microsoft Xbox gaming networks during 2014. Source

January 16, Help Net Security – (International) Typosquatting abuse of 500 most popular websites analyzed. Researchers with the University of Leuven in Belguim and Stony Brook University in the U.S. released a report on their research into typosquatting domains where attackers register domains for misspelled popular domains to attempt to capture traffic. The researchers found that half of all typosquatting domains can be traced back to four page hosters, and that 95 percent of the most popular domains are targeted by typosquatters, among other findings. Source

 

From → Security

Comments are closed.

%d bloggers like this: