Sophos – Page 123 – PossibleThreat Articles

Robbin Hood – the ransomware that brings its own bug

February 7, 2020 0 Comments Exploit, malware, Ransomware, robbin hood, SophosLabs

Credit to Author: Paul Ducklin| Date: Fri, 07 Feb 2020 16:35:28 +0000

When you need a vulnerability to exploit, but there isn’t one… why not simply bring your own, along with your malware?<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/x9tpCryFXTA” height=”1″ width=”1″ alt=””/>

Security Sophos

Researchers transmit data covertly by altering screen brightness

February 7, 2020 0 Comments air gapped, air-gapping, ben-gurion university of the negev, lcd pixels, optical covert channel, pixel density, security threats

Credit to Author: Danny Bradbury| Date: Fri, 07 Feb 2020 12:02:41 +0000

Researchers have retrieved data from a disconnected computer by altering its LCD’s pixel density just enough for a camera to pick it up.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/057xpJvNRZ0″ height=”1″ width=”1″ alt=””/>

Security Sophos

Facebook, Google, YouTube order Clearview to stop scraping faceprints

February 7, 2020 0 Comments AI, Artificial intelligence, biometrics, BIPA, CFAA, class action, clearview ai, david mutnick, DCMA, facebook, faceprints, facial recognition, first amendment, Google, hiQ Labs, hoan ton-that, Illinois, illinois biometric information privacy act, Instagram, Law & order, law enforcement, lawsuit, LinkedIn, Machine Learning, Privacy, privacy law, Social networks, twitter, youtube

Credit to Author: Lisa Vaas| Date: Fri, 07 Feb 2020 11:30:03 +0000

It’s my First Amendment right to scrape publicly available face images, its CEO says. Besides, we’re just doing what Google Search does.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/X7rOITrf5_c” height=”1″ width=”1″ alt=””/>

Security Sophos

Wacom driver caught monitoring third-party software use

February 7, 2020 0 Comments data collection, Google, Google Analytics, Privacy, privacy policy, wacom

Credit to Author: John E Dunn| Date: Fri, 07 Feb 2020 11:22:06 +0000

Graphics tablet company Wacom can collect data unconnected to its products, such as which applications users open on their computers.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/x2JzRp08MfM” height=”1″ width=”1″ alt=””/>

Security Sophos

Cybercrooks busted for multimillion-dollar identity fraud

February 7, 2020 0 Comments australia, cryptocurrency, cybercrime squad, data loss, emily walker, financial data, identity theft, jason lees, Law & order, Money Laundering, new south wales, security threats, sydney

Credit to Author: Lisa Vaas| Date: Fri, 07 Feb 2020 11:21:30 +0000

Organizations were attacked for employees’ data, including names, addresses and birthdates used to set up hundreds of bank accounts.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/fdxyW-Y19KM” height=”1″ width=”1″ alt=””/>

Security Sophos

Living off another land: Ransomware borrows vulnerable driver to remove security software

February 6, 2020 0 Comments SophosLabs, SophosLabs Uncut

Credit to Author: Andrew Brandt| Date: Thu, 06 Feb 2020 15:22:24 +0000

Sophos has been investigating two different ransomware attacks where the adversaries deployed a legitimate, digitally signed hardware driver in order to delete security products from the targeted computers just prior to performing the destructive file encryption portion of the attack. The signed driver, part of a now-deprecated software package published by Taiwan-based motherboard manufacturer Gigabyte, […]<img src=”http://feeds.feedburner.com/~r/sophos/dgdY/~4/uepwaOU8_Ek” height=”1″ width=”1″ alt=””/>

Security Sophos

S2 Ep25: You’ve seen WHAT on public Trello boards? – Naked Security Podcast

February 6, 2020 0 Comments microchipping, Naked Security Podcast, opensmtpd, Podcast, trello

Credit to Author: Alice Duckett| Date: Thu, 06 Feb 2020 16:08:16 +0000

New episode available now.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/BS3Xx4OqI0A” height=”1″ width=”1″ alt=””/>

Security Sophos

Update now – WhatsApp flaw gave attackers access to local files

February 6, 2020 0 Comments facebook, Google, perimeterx, Privacy, remote code execution, security threats, whatsapp

Credit to Author: John E Dunn| Date: Thu, 06 Feb 2020 15:39:57 +0000

The flaw affecting WhatsApp’s desktop client when it’s paired with the iPhone app allowed attackers access to local file systems.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/z97jnHoyCbQ” height=”1″ width=”1″ alt=””/>

Security Sophos

Twitter bans deepfakes, but only those ‘likely to cause harm’

February 6, 2020 0 Comments alphabet, assembler, cheapfakes, deepfakes, disinformation, facebook, fake news, gan, generative adversarial network, Google, jigsaw, Machine Learning, shallowfakes, Social networks, stylegan, the current, twitter

Credit to Author: Lisa Vaas| Date: Thu, 06 Feb 2020 13:52:30 +0000

Twitter isn’t interested in how the “synthetic or manipulated” media is created, but if it has the potential to cause harm it’ll be removed.<img src=”http://feeds.feedburner.com/~r/nakedsecurity/~4/6IJPjMtC2sA” height=”1″ width=”1″ alt=””/>