Ionut Arghire

Security Experts:

WRITE FOR US

Contact Ionut Arghire

Ionut Arghire is an international correspondent for SecurityWeek.

Recent articles by Ionut Arghire

New GitHub Security Lab Aims to Secure Open Source Software

GitHub Security Lab will help developers and maintainers identify and report security flaws, and leverage GitHub to create fixes, coordinate disclosure, and update projects.
Two Massachusetts Men Arrested and Charged in SIM Swapping Scheme

Two Massachusetts men were arrested and charged this week for employing SIM swapping in attacks aimed at stealing cryptocurrency from their victims’ accounts.
InfoTrax Settles With FTC Over Data Breach

Backend operation services provider InfoTrax Systems has reached a settlement with the FTC over a data breach discovered in 2016.
LINE Launches Public Bug Bounty Program on HackerOne

Messaging app LINE launches public bug bounty program with rewards of up to $30,000.
DLL Hijacking Flaw Impacts Symantec Endpoint Protection

Symantec Endpoint Protection is the latest antivirus product found to unsafely load DLLs into a process that runs with SYSTEM privileges.
Visa Warns of New JavaScript Skimmer 'Pipka'

A new JavaScript skimmer targets data entered into the payment forms of ecommerce merchant websites, Visa warns.
New MITRE Foundation Aims to Boost Critical Infrastructure

American not-for-profit organization MITRE launches a tech foundation focused on strengthening critical infrastructure through partnerships with the private sector.
Vulnerability in McAfee Antivirus Products Allows DLL Hijacking

A vulnerability affecting several McAfee antivirus products could allow an attacker to evade self-defense mechanisms and achieve persistence.
Trend Micro Launches New ICS Security Solutions

Trend Micro announces the launch of new smart factory security solutions designed to protect ICS environments.
SAP Updates Four Hot News Notes on November 2019 Patch Day

SAP this week released 11 Notes as part of the November 2019 Security Patch Day, along with four updates to previously released Security Notes.
New PureLocker Ransomware Linked to MaaS Provider for Cobalt Gang, FIN6

A newly discovered piece of ransomware written in PureBasic has been linked to a Malware-as-a-Service (MaaS) provider that has been used by Cobalt Gang, FIN6, and other threat groups.
Mexican Oil Company Pemex Hit by Ransomware

Mexican state-owned oil company Petróleos Mexicanos (Pemex) has suffered a ransomware attack that took down parts of its network.
Magento Users Warned of Remote Code Execution Vulnerability

Magento is advising users to apply patches for a remote code execution flaw that could allow unauthenticated attackers to deliver malicious payloads.
OpenText to Acquire Data Protection Firm Carbonite

Enterprise information management firm OpenText to acquire data protection and cybersecurity provider Carbonite in a $1.42 billion deal.
Hosting Provider SmarterASP.NET Recovering From Ransomware Attack

ASP.NET hosting provider SmarterASP.NET is currently working on recovering customer data after being hit by a ransomware attack over the weekend.
Hackers Receive $500,000 in One Week via Bugcrowd

Crowdsourced security platform Bugcrowd paid over half a million dollars in bug bounty rewards during the last week of October alone.
Platinum Cyberspies Use Sophisticated Backdoor in Attacks

A newly discovered backdoor associated with the Platinum APT has a long sequence of dropping, downloading and installing stages.
DHS Warns of Critical Flaws in Medtronic Medical Devices

Critical vulnerabilities impacting Medtronic Valleylab products could allow attackers to overwrite files and achieve remote code execution, DHS warns.
Microsoft: BlueKeep Exploit Will Likely Deliver More Damaging Payloads

Microsoft warns that the BlueKeep exploit will likely be used to deliver payloads more damaging than cryptocurrency miners.
Hackers Can Target LEADTOOLS Users With Malicious Image Files

Cisco Talos security researchers have discovered multiple vulnerabilities in the LEADTOOLS imaging toolkits that could lead to code execution on the victim system.
Actively Developed Capesand Exploit Kit Emerges in Attacks

A new exploit kit named Capesand is being employed in live attacks despite still being in an unfinished state.
Cisco Patches Vulnerabilities in Small Business Routers, RoomOS Software

Cisco patches multiple vulnerabilities across products such as Small Business Routers, TelePresence Collaboration Endpoint, RoomOS, and others.
Google Teams Up With Security Firms to Fight Bad Android Apps

Google this week announced a partnership with several security solutions providers, aimed at fighting bad applications in the Android ecosystem.
NVIDIA Patches Flaws in GPU Display Driver, GeForce Experience

NVIDIA this week released security updates to address multiple vulnerabilities in GPU Display Driver and GeForce Experience.
Libarchive Vulnerability Impacts Multiple Linux Distributions

A vulnerability discovered in multi-format archive and compression library libarchive could lead to arbitrary code execution and denial of service.

SECURITYWEEK NETWORK:

Security Experts:

Ionut Arghire

Recent articles by Ionut Arghire

SecurityWeek Daily Briefing

Popular Topics

Security Community

Stay Intouch

About SecurityWeek