IT News | Extol Corporation Sdn Bhd

Latest Cybersecurity News from the World

IT News

Simple Attack Allows Full Remote Access to Most Corporate Laptops

January 13, 2018 By aatech

Attack is Simple to Exploit, Has Incredible Destructive Potential Researchers have discovered a flaw in Intel’s Advanced Management Technology (AMT) implementation that can be abused with less than a minute of physical access to the device. An Evil Maid attack could ultimately give an adversary full remote access to a corporate network without having to […]

IT News

Critical Flaw Reported In phpMyAdmin Lets Attackers Damage Databases

January 12, 2018 By aatech

A critical security vulnerability has been reported in phpMyAdmin—one of the most popular applications for managing the MySQL database—which could allow remote attackers to perform dangerous database operations just by tricking administrators into clicking a link. Discovered by an Indian security researcher, Ashutosh Barot, the vulnerability is a cross-site request forgery (CSRF) attack and affects […]

IT News

Hundreds of GPS Location Tracking Services Leaving User Data Open to Hackers

January 11, 2018 By aatech

Security researchers have unearthed multiple vulnerabilities in hundreds of GPS services that could enable attackers to expose a whole host of sensitive data on millions of online location tracking devices managed by vulnerable GPS services. The series of vulnerabilities discovered by two security researchers, Vangelis Stykas and Michael Gruhn, who dubbed the bugs as ‘Trackmageddon’ […]

IT News

Android Trojan Targets 200+ Global Financial Apps

January 10, 2018 By aatech

An Android banking trojan that targets more than 232 banking apps has been uncovered, targeting financial institutions globally. According to Quick Heal Security Labs, Banker A2f8a is designed for stealing login credentials, hijacking SMS messages, uploading contact lists and texts to a malicious server, displaying an overlay screen (to capture details) on top of legitimate […]

IT News

Microsoft reveals how Spectre updates can slow your PC down

January 10, 2018 By aatech

It’s bad news for older Windows 7 and Windows 8 machines Microsoft is taking the surprise step of detailing how Spectre and Meltdown firmware updates may affect PC performance. The tech industry has been scrambling to issue updates to protect against the two CPU security flaws over the past week, and there have been many […]

IT News

Meltdown and Spectre: AWS, Google and Microsoft rush to patch cloud chip flaws

January 10, 2018 By aatech

Amazon, Google and Microsoft rush to fix chip flaws that could leave cloud customers at risk of having their data accessed or stolen by other users As the cloud provider community mobilises to protect users from two long-standing processor-based security flaws, researchers suggest a rip and replace of their underlying CPU hardware may be required […]

IT News

MACOS LPE EXPLOIT GIVES ATTACKERS ROOT ACCESS

January 9, 2018 By aatech

A researcher that goes by the handle “Siguza” released details of a local privilege escalation attack against macOS that dates back to 2002. A successful attack could give adversaries complete root access to targeted systems. Siguza released details of the attack on Dec. 31 via Twitter, wishing followers a “Happy New Year” and linked to […]

IT News

GOOGLE PLAY REMOVES 22 MALICIOUS ‘LIGHTSOUT’ APPS FROM MARKETPLACE

January 8, 2018 By aatech

Nearly two dozen Android flashlight and related utility apps were removed from the Google Play marketplace after researchers found a malicious advertising component dubbed “LightsOut” inside them. In total, the apps were downloaded between 1.5 and 7.5 million times. Security researchers at Check Point researcher discovered the family of malicious apps that “generated illegal ad […]

IT News

VMWARE ISSUES 3 CRITICAL PATCHES FOR VSPHERE DATA PROTECTION

January 7, 2018 By aatech

VMware, a Dell Technologies subsidiary, released several patches Tuesday fixing critical vulnerabilities affecting its vSphere cloud computing virtualization platform. The bugs address three vulnerabilities in VMware’s vSphere Data Protection (VDP), a backup and recovery solution used with its vSphere platform. According to the company, a remote attacker could exploit the vulnerabilities and take control of […]

IT News

APPLE RELEASES SPECTRE PATCHES FOR SAFARI, MACOS AND IOS

January 6, 2018 By aatech

Apple released iOS 11.2.2 software Monday for iPhones, iPads and iPod touch models that patch for the Spectre vulnerabilities. A macOS High Sierra 10.13.2 supplemental update was also released to bolster Spectre defenses in Apple’s Safari browser and WebKit, the web browser engine used by Safari, Mail, and App Store. This is the second update […]