google-site-verification: google30a059f9a075f398.html

Category: Vulnerability

Twitter: No big deal, but everyone needs to change their password

CyberWisdom Safe Harbor Commentary: A recent story from theregister.co.uk warns the truth about Twitter issued a loud notice on World Password Day, informing its users (all users were 330 million) that their login credentials were not encrypted in the internal log file and should be changed. Parag Agrawal, chief technology officer, announced on Wednesday that its

Faulty Patch for Oracle WebLogic Flaw Opens Updated Servers to Hackers Again

CyberWisdom Safe Harbor Commentary on Faulty Patch thehackernews.com opens up a revealing that earlier this month, Oracle patched a highly critical Java deserialization remote code execution vulnerability in its FusionSphere Middleware WebLogic Server component that could allow an attacker to easily and completely control a vulnerable server. However, a security researcher who handled @pyn3rd via Twitter

Malicious Payload Evasion Techniques to Bypass Antivirus with Advanced Exploitation Frameworks

CyberWisdom Safe Harbor Commentary on Malicious Payload Evasion Techniques, with Advanced Exploitation Frameworks A must-read story from gbhackers.com thinks things we don’t talk about but advanced threats continue to evolve, have more advanced features, bring more pain to analysis, and can even escape advanced security software such as anti-virus software. This comparison is based on the

A faked master key gives hackers access to millions of hotel rooms

CyberWisdom Safe Harbor Commentary: A recent story from wired.co.uk says after “thousands of hours of work,” F-Secure researchers created a master key that can be used to access any room in the hotel using VingCard digital lock technology. The company stated that the master key dedicated to the Assa Abloy Vision system can be generated

Facebook will exclude 1.5 billion users from Europe’s data privacy standards

CyberWisdom Safe Harbor Commentaries on  Facebook Undermines Privacy A recent story from thenextweb.com lays out things we don’t talk about but, Facebook made a wonderful show pretending to protect data, but today it undermines this illusion. The company has confirmed to Reuters that it will not extend the EU’s General Data Protection Regulation (GDPR) law to the

Senate Gives Nod To Controversial CLOUD Act Cross-Border Data Access Bill

CyberWisdom Safe Harbor Commentary on CLOUD Act This story from threatpost.com dissects a little known controversial cross-border data access act, dubbed the CLOUD Act, that was part of the overall omnibus government spending bill. Buried on page 2,201 of the government spending bill is the Clarifying Lawful Overseas Use of Data Act (the CLOUD Act), a

7 Ways to Prepare for a Cybersecurity Audit

CyberWisdom Safe Harbor Commentary on Cybersecurity Audit What is most likely to be an overlooked story from csoonline.com defines a revealing data leaks, phishing attacks and information leaks – The Internet may be a scary place. Conducting cybersecurity audits (or obtaining third-party assessments) is a good way to understand your organization’s cybersecurity situation. However, preparing for

AMD Acknowledges Vulnerabilities, Will Roll Out Patches In Coming Weeks

CyberWisdom Safe Harbor Commentary on AMD Acknowledges Vulnerabilities Today I came across this story from threatpost.com that explains a revealing article on AMD acknowledged on Tuesday some of the vulnerabilities it found on its Ryzen and EPYC chips and stated that it will introduce firmware patches for these vulnerabilities in the coming weeks. The response was